tencent cloud

Tencent Cloud Organization

  • Product Introduction
  • Purchase Guide
  • Operation Guide
    • Console Overview
    • Organization Settings
    • Department Management
    • Member Account Management
    • Member Finance Management
    • Member Access Management
    • Resource Management
    • Member Audit
    • Identity Center Management
  • API Documentation
    • History
    • Introduction
    • API Category
    • Making API Requests
    • Organization Settings APIs
    • Department and Member Management APIs
    • ListOrganizationIdentity
    • Unified Member Login APIs
    • Organization Service Management APIs
    • Organization Management Policy APIs
    • Resource Sharing APIs
    • Identity Center Management APIs
    • Identity Center User Management APIs
    • Identity Center User Group Management APIs
    • Identity Center Management SCIM Synchronization APIs
    • Identity Center Single Sign-On Management APIs
    • Identity Center Permission Configuration Management APIs
    • Identity Center Multi-Account Authorization Management APIs
    • Identity Center Sub-User Synchronization Management APIs
    • Data Types
    • Error Codes
    • TCO API 2018-12-25
  • Related Agreement
  • FAQs
  • Glossary
DocumentaçãoTencent Cloud OrganizationOperation GuideIdentity Center ManagementSettingsSCIM SynchronizationExamples of SCIM SynchronizationExamples of Synchronization from OneLogin via SCIMSynchronizing Users with OneLogin

Synchronizing Users with OneLogin

PDF
Modo Foco
Tamanho da Fonte
Última atualização: 2025-01-06 15:09:58
This article mainly introduces how to sync users from Onelogin to Tencent Cloud Identity Center through SCIM protocol.

Configure in Identity Center

Step 1: Enable SCIM synchronization

1. Log in to TCO > Identity Center.
2. On the left sidebar, click User Management > Settings.
3. In the SCIM User Synchronization Configuration area, click

, in the pop-up window click Enable to activate SCIM synchronization.



4. After enabling, in the SCIM User Synchronization Configuration area, view or copy the SCIM service address, which will be used to configure SCIM synchronization in the external IdP.
China site: https://scim.tencentcloudsso.com/scim/v2
International site: https://scim.tencentcloudssointl.com/scim/v2




Step 2: Create SCIM Key

1. In the SCIM User Synchronization Configuration area, click Generate New SCIM Key.



2. In the Create CredentialSecret dialog box, you can save the SCIM key by Download CSV File or Copy it. After saving the key, click OK.
Note:
In IdP, paste only the CredentialSecret part, not the CredentialId. Please check Note.




Managing SCIM Sync Users in Onelogin

Configuring SCIM Sync Users in Onelogin
Deleting SCIM Sync Users in Onelogin

Step One: Creating an Application

1. Admin logs in to Onelogin, select Applications > Applications from the top menu.
2. On the Applications page, click Add App.



3. On the Find Applications page, click to select Tencent Cloud_SCIM.



4. Enter the Tencent Cloud_SCIM application, rename it, and click Save.



5. After creation, you can view it in the list.




Step Two: Configuring an Application

1. On the Configuration page, fill in the information as follows:
In the Applications details section, enter ACS URL, Entity ID.
This address is obtained from manage service providers (SP) information.
In the API Connection section, enter SCIM Token (CredentialSecret), SCIM server address, and change the status to Enabled.
Please obtain this SCIM Key from Step 2: Create SCIM Key.



2. In SSO, switch the SAML Signature Algorithm protocol to SHA-256 (default is SHA-1, identity center does not support this protocol).
2.1 Click Save, and download SAML Metadata in More Actions.


2.2 In TCO > Identity Center Management > Settings > SSO Login, upload the metadata document and select the SAML Metadata file downloaded in the Back step.



2.3 This completes the SSO configuration and SCIM configuration for the association between identity center and Onelogin.
3. In Provisioning, turn on the auto-sync toggle: check Workflow and Enable Provisioning, then click Save.




Step Three: Syncing Users

1. In the Users > Users list of user, click the username to be synced to enter user details page. Here, select user test2.


2. On the Applications page, click +, and assign test2 to the target application.



3. In Select application, choose the application created in Step One, and click Continue.



4. In the edit form, modify the username, email, etc. (optional), and click Save.


5. At this point, the synchronization status is Pending, click Pending.



6. Confirm sync information, click Approve.



7. Wait for the status to change from Provisioning to Provisioned, indicating synchronization successful.


8. In Identity Center > User Management > Users, check the sync result, test2 sync successful, source is External Import.


1. Admin logs in to Onelogin, goes to Users > Users, enters the details page of user test2, selects Applications on the left, and click Delete in the Tencent Cloud_SCIM application pop-up.


2. A deletion failed message appears, at this point, you need to refresh the page.



3. After refreshing, click the Pending area.



4. In the Delete pop-up, confirm the information and click Approve.


5. Task successful, status changed to Deleting.



6. After deletion, the application is empty.



7. In Identity Center > User Management > User, check the deletion result, test2 deleted successfully.

Anterior: Examples of Synchronization from Okta via SCIMPróximo: Synchronizing User Groups with OneLogin

Ajuda e Suporte

Esta página foi útil?

comentários