Configuring SCIM (System for Cross-domain Identity Management) in Laserfiche Cloud
SCIM is an open standard designed to manage user identity information. The goal of SCIM is to help automate the exchange of user identity data between your company's various applications and service providers. Once configured, users that are added, updated, or removed from your identity provider will be automatically updated in Laserfiche. This will greatly minimize manual administration of users between identity providers and Laserfiche.
To enable SCIM:
- Navigate to Laserfiche Cloud Account Administration.
- Click the Settings tab.
- Click the Single Sign-On tab
- Click the SCIM Provisioning tab.
Note: You must have SSO configured to see the SCIM Provisioning tab.
- Next to SCIM Provisioning Status, click Enable.
- In the Cross Domain Identity Management Token dialog box that appears, click Copy the bearer token to clipboard. This token will let the identity provider authenticate with the SCIM server. Save this token in a secured location for later use. Click Finish.
- Once enabled, a Management Endpoint and Rotate Bearer Token section will appear. The Management Endpoint is a URL the identity provider will send the SCIM requests to. Click Copy endpoint to clipboard. The Rotate Bearer Token section lets you create a new bearer token if needed.
Service Provider Information
Clicking the Service Provider Information link displays additional information you may need to set up your identity service provider:
- Audience URL (SP Entity ID)
- Assertion Consumer Service URL
- Recipient and destination URL
- Name ID format
- Default relay state
- Download a public certificate
You can also download a Laserfiche metadata file to import to your identity provider.
For more information on configuring SCIM for different identity providers, see the Configuring SCIM for Specific Identity Providers help topic.