Note: this feature is available only on the Enterprise plans.
You will need to ensure that you have a custom SAML application for Zight in Okta before setting up SCIM. If you have not yet set up a SAML application, read here for more instructions.
Once you have SAML set up and have SSO set up by sharing with us your URLs and Certificate. Please follow these steps.
Step-By-Step Instructions
- Ensure you have an autojoin set up on your Zight team dashboard.
- Go to your Okta Admin portal.
- Select your Zight application. If you have not yet set up a SAML application, read here for more instructions.
- Click the "General" tab and select "Edit" under the App Settings.
- Check the box that reads "Enable SCIM provisioning."
- Save the changes.
- Notice that a new tab appears named "Provisioning." Select this tab.
- Select "Edit" next to "SCIM provisioning."
- Input SCIM connector base URL. https://share.zight.com/saml/scim/v2
- Specify the unique identifier for users as "email".
- Check the following options: "import new users and profile updates", "push new users", and "push profile updates."
- Use the "Authentication mode" drop-down and select "HTTP header".
- Reach out to support@zight.com or your Customer Success Manager for your bearer token.
- Save the changes.
- On the left-side of the "Provisioning" tab page, you should now notice a "Settings" option.
- Select "To App"
- Select "Edit" next to "Provisioning to App"
- Check the following options: "create users", "update user attributes", and "deactivate users."
- Save the changes.
- Go to your Team settings in your dashboard.
- Click "Authentication."
- Ensure "SSO" and "SCIM" are both checked.
- Select "Update."
- Return to your SAML application in Okta.
- Assign this application to new users to provision.
- Remove users to disable.
Comments
0 comments
Please sign in to leave a comment.