JumpCloud SCIM configuration

Enabling SCIM in 1Password SaaS Manager

A pre-requisite for configuring SCIM in JumpCloud is enabling SCIM in 1Password SaaS Manager.

Go to Settings > Users and find the Single Sign-On (SSO) > SCIM section. You will need the Base URL and Bearer token when configuring in JumpCloud, and you must click Enable SCIM for the token to become valid.

Configuring a JumpCloud app

If you do not have an existing SaaS Manager application (e.g. configured for SAML2 SSO), go to SSO Applications and click Add new Application, then click Select under Custom Application.

Once you have done this, or if you already have a SaaS Manager application in JumpCloud go to the Identity Management tab.

  1. Choose SCIM API.
  2. SaaS Manager supports the SCIM 2.0 standard.

  3. Paste in the Base URL from SaaS Manager.

    JumpCloud does not work if there is a trailing / (forward-slash) character. Make sure this is removed.
  4. Paste in the Bearer token from SaaS Manager.

  5. Enter a dummy user email address - this will be used by JumpCloud to test provisioning.

    This must be from a domain that is registered in SaaS Manager as valid for user requests. Check this in SaaS Manager by going to Settings > Organization. Under Your organization, click through on the Domains section. The domain should have a checkmark in the User requests column.

Testing the connection

Click Test Connection. JumpCloud will then try to read a list of users from SaaS Manager.

If this fails, then recheck the Base URL (ensure there is no terminating / character) and recheck the Token.

If you still encounter problems, JumpCloud doesn't report specific errors, but 1Password SaaS Manager support can enable additional logging to help diagnose issues.

If the test is successful, you will be shown a new Group Management section. You must disable Group Management, then click Activate to finalize the settings

This will create a test user with the email you specified, test updating them, and then delete them. After this is done, you should be shown a success message.

Now click Save to close the app settings.

What SaaS Manager role will be assigned to users?

JumpCloud does not support more advanced SCIM configuration. Users will be created with the default SaaS Manager role. This is visible in SaaS Manager under Settings > Users, in the Default role section.

Was this article helpful?

0 out of 0 found this helpful

Comments

0 comments

Please sign in to leave a comment.