Versions Compared

Version Old Version 1 New Version Current
Changes made by

Michael Dreher

Daylan Araz

Saved on

Key

  • This line was added.
  • This line was removed.
  • Formatting was changed.

...

Unique Finance GPT provides SCIM compliant endpoints to be able to connect an IDP via the SCIM protocol. This protocol defines a standard for managing groups and users across multiple applications. An IDP is therefore able to sync its users and groups with other applications which supports this standard protocol.
The SCIM integration has been tested thoroughly with Microsoft Entra ID. This documentation guides through the setup process for Microsoft Entra ID.

Info

Unique FinanceGPT is working on adding the SCIM integration as clickable application available in as Microsoft Entra Application

Setup

This setup guide leads you through the process of connecting the Microsoft Entra ID application with Unique Finance GPT

Info

The service user which until now synced the changes from Zitadel (events) with Unique FinanceGPT requires now more privileges (IAM Org Owner Viewer & IAM User Manager). This service user now needs to also be able to create, modify and delete users from any organisation on Zitadel via API (IAM User Manager). But also fetch information about Organisations to be able to assign roles and IDPs to new created users (IAM Owner Viewer).

[Zitadel] Adjusting permission of service user

  1. Login to Zitadel with a user that has IAM Owner capabilities (instance manager).

  2. Switch to Cluster IAM organisation on top left.

...

  1. Switch to the instance view on top right.

...

  1. Open the instance users managing view.

...

  1. There should be a service user (robot icon) which has currently at least

    IAM Owner Viewer capability called user-sync or scope-management-user.

...

  1. Adjust the Permission of this user including IAM Owner Viewer and IAM User Manager

...

[MS Portal] Creating the SCIM Enterprise Application

...