Provision Users with SCIM
This guide is designed to help enterprise administrators setup SCIM on their existing SSO config.
Last updated
This guide is designed to help enterprise administrators setup SCIM on their existing SSO config.
Last updated
You can provision and manage users on enterprise-enabled Poggio workspaces through System for Cross-domain Identity Management (SCIM) API standard.
Poggio supports the and the following operations:
Create and remove members in your workspace.
You must have a .
Your IdP must support SAML 2.0.
In the enterprise settings page, enterprise admins have the ability to generate a SCIM key. You can access this page via Settings -> SSO (under the Enterprise section)
.
Hit the Create key
button to generate the API key.
This key grants access to the Poggio SCIM endpoints for that enterprise.
In the Sign-on Options
view, select Email
for the Application username
format on the Sign On application
tab.
Under the Provisioning
tab, select Configure API integration
, and click on the Enable API integration
checkbox.
Enter the SCIM API token you copied in Step 1 into the API Token
text box, and select Save
.
Click Edit
next to Provisioning to App
, and enable your preferred features, then click Save
.
Poggio supports the following attribute mappings:
email
: this represents the email of the user.
emailType
: this is always "work".
userName
: this also represents the email of the user.
displayName
: this is typically the users’ full name.
Poggio also supports name.formatted
for the same information if displayName
is not present.
Poggio does not currently track names in piecemeal (e.g first and last names). Within Poggio givenName
and familyName
are always tracked together under displayName
.