SCIM Azure AD Configuration

miniOrange User Sync/Group Sync allows sync across Jira, Confluence, Bitbucket from Azure AD as Identity provider!

miniOrange provides all essential Identity Providers (IdPs) built-in configuration like Azure Active Directory, miniOrange, Okta, OneLogin, Oracle, Keycloak and G-suite. Also we support SCIM configuration with any IDP's by using custom SCIM App option.

The User & Group Sync app by miniOrange helps you synchronize user and group data from Identity Providers such as AWS, OneLogin, Oracle IDCS, Azure AD, Okta, G Suite, and many others.

Configuring miniOrange User Sync add-on with Azure AD as Identity Provider requires you to have below information -

Following information will be required when configuring your IDP with SCIM

Tenant URL -

An Azure AD tenant is a reserved Azure AD service instance that an organization receives and owns once it signs up
for a Microsoft cloud service such as Azure, Microsoft Intune, or Microsoft 365. Each tenant represents an organization,
and is distinct and separate from other Azure AD tenants.

Tenant URL is used to uniquely identify the app to sync the user details. The Tenant URL will be required for setting up Azure AD SCIM provisioning. If you are running your environment behind a vpn or proxy, make sure to keep this endpoint accessible. When setting up the miniOrange User Sync add-on, you will be given the Tenant URL as the SCIM base URL to configure Azure AD SCIM provisioning.

Secret Token -

Secret token is a token used for authentication purposes. This token can be referred as the Client Secret. miniOrange User Sync add-on generates the Secret Token for SCIM provisioning authentication. While setting up Azure AD SCIM provisioning you will be able to access the Bearer Token, also known as Secret Token in Azure AD.

Follow the below steps to configure Azure AD with miniOrange User Sync/Group Sync app with Azure AD SCIM:

  1. Log in to your Microsoft Azure AD dashboard.
  2. Go to Enterprise applications and create your own application.
  3. Search & select SCIM Provisioner with SAML ( SCIM V2 Core ). Then go to Configurations tab.
  4. Choose Automatic provisioning mode and type in Tenant URL and Secret Token. Both of these details will be available in the SCIM app under the name of SCIM Base URL & Bearer Token.
Azure AD Term User Sync Plugin Term
Tenant URL SCIM Base URL
Secret Token Bearer Token

Get more information about integrating miniOrange User Sync/Group Sync with Azure AD:

JIRA :

You can check our detailed Jira setup guidelines for Azure AD SCIM configuration on this page.

Confluence :

You can check our detailed Confluence setup guidelines for Azure AD SCIM configuration on this page.

Bitbucket :

You can check our detailed Bitbucket setup guidelines for Azure AD SCIM configuration on this page.