After you have a SCIM implementation that passes all of the Runscope tests, you need to create your SCIM integration directly within Okta.

Begin by signing up for an Okta developer account.

  1. After you request the developer account and have received the initial email, open the link to your developer org.

  2. Navigate to the Admin Console in your Okta org by clicking Admin. Admin Button

  3. If you are in the Developer Console, click Developer Console and then Classic UI to switch over to the Admin Console in your Okta org. Switch to Admin Console

  4. Click Applications > Applications. Open Applications

  5. Click Add Application. Create New Application

  6. Search for "SCIM 2.0" or "SCIM 1.1" (your choice depends on which version your SCIM server supports). You'll see three different SCIM template applications, one for each of the three authentication methods that you can use to connect to your SCIM implementation (Basic Auth, Header Auth, or OAuth Bearer Token). SCIM 2.0 Template Apps Click Add on the template you want to use.

  7. In the General Settings screen, give your app a descriptive name, and specify whether you want the app to be hidden from general and mobile users. Additionally, you can decide if you want to have your users automatically be logged in when they reach the landing page in their web browser. Click Next.

  8. In the Sign-On Options screen, you specify how your users sign in to your app. You can select either SAML or SWA. See the Applications topic in the Okta product documentation if you need guidance on which single sign-on access method to choose. Click Done to create the app.

  9. After the app is created, click the Provisioning tab, and in the main panel, click Configure API Integration. Select the Enable API Integration check box. SCIM App Enable API Enter the base URL for your SCIM server. The credential options vary depending on your choice of authentication method for the app:

    • Basic Auth: To authenticate using Basic Auth mode, you need to provide the username and password for the account that handles the create, update, and deprovisioning actions on your SCIM implementation.
    • HTTP Header: To authenticate using HTTP Header, you need to provide a bearer token to access your SCIM implementation.
    • OAuth: To authenticate using OAuth, you need to provide the OAuth access token to access your SCIM implementation.

    Fill in this information and click Test API Credentials to test whether the Okta app can connect to your SCIM API.

    Click Save to complete the API integration.


Featured Guides