Skip to main content

Check out Interactive Visual Stories to gain hands-on experience with the SSE product features. Click here.

Skyhigh Security

Configure the IdP Connection for Microsoft Entra ID

  1. Last updated
  2. Save as PDF
Limited Availability: To access SCIM Provisioning, contact Skyhigh Support.

 

To establish a connection between Skyhigh Security and SCIM, administrators must configure the SCIM flow in the Identity Provider (IdP). After setting up the connection, you can create users or groups and push them to the Skyhigh Security dashboard to assign permissions for monitoring and recording activities.

Follow these steps to set up SCIM in Microsoft Entra ID:

  1. Create a Skyhigh Security Service Edge (SSE) tenant using the desired email ID of the primary user. You will receive an activation link notification via email.
  2. Click the activation link to log in to the tenant and set the user password.
  3. Enable Single Sign-On (SSO) for the tenant.
  4. Log in to the Microsoft Entra admin center as an administrator.
  5. Navigate to Home > Entra ID > Enterprise apps to create a new application. This application connects to the previously created SSE tenant. To create a new application with SAML 2.0, see Integrate Microsoft Entra SSO with Skyhigh SSE Dashboard.
  6. Select the desired application from the All applications page to enable SCIM provisioning for the application.

    Select App.png
     
  7. Select Manage > Provisioning.
  8. Click + New configuration.

    2 - select new configuration.png
     
  9. On the New provisioning configuration page, under Admin credentials, configure the connection settings using the details from Skyhigh Security:
    • Select authentication method. From the menu, select the OAuth2 client credentials grant.
    • Tenant URL and OAuth token endpoint. Enter the copied Base URL and OAuth Token Endpoint URL from the Create API Credentials page.
    • Client identifier and Secret token. Enter the Client ID and Client Secret generated when creating API credentials.
  10. Click Test connection to authenticate the application against the Skyhigh Security API.
    A successful test connection message appears in the top right corner.

    3 - click test connection.png
     
  11. Click Create to finish SCIM setup. You can now assign users and groups to the application.

You have successfully established a connection between the SCIM application in Microsoft Entra ID and Skyhigh Security. Now, when you assign users and groups to this application, they will appear on the User Management page in Skyhigh Security. To view users and groups in the User Management page, see Automated User Management with SCIM in Skyhigh.

  1. Back to top
  • Was this article helpful?

Recommended articles

  1. Article type
    Topic
  2. Tags
    This page has no tags.