Right-Hand Cybersecurity

Please follow the below instructions to configure SCIM for Microsoft Entra ID:

Login to <a href="https://portal.azure.com/#home" rel="nofollow noopener noreferrer" target="_blank">Azure Portal.</a> Search and click “Microsoft Entra ID.”

On the left panel, under the manage tab, click “Enterprise Applications.”

To create a SCIM Application, Click “New Application.”

Click on “Create your own application.”

Name your application “Right-Hand SCIM” and select the last option, “Integrate any other application you don't find in the gallery (Non-gallery).”

Once the App is created, click “Provision User Accounts.” and Get Started.

Select “Automatic” from Provisioning mode. Fill out the Tenant URL and Secret token from the RH Portal.

Go to RH Portal &gt; Company Management &gt; Employees &gt; List &gt; on the top right corner, click Import &gt; select SCIM &gt; enable SCIM Provisioning toggle button &gt; copy webhook URL (tenant URL) and token (secret token).

Copy and paste the tenant URL and secret token into Azure. Click “Test Connection.” Once the connection is built, click save.

Go to Provisioning under the manage tab &gt; Select edit attribute mapping &gt; Under mappings, select Provision Microsoft Entra ID Users &gt; Delete all the unrequited attributes and keep the only ones the app will use &gt; Click save and exit.

Return to the App &gt; Select “Users and Groups” &gt; Click Add Users/Group.

Assign users/groups to the app you want to send to the RH portal.

Now, test the SCIM using the Provision on Demand option.

Note: SCIM is currently not activated. Test SCIM with an individual user before initiating the first sync to verify that the user is properly created in Right-Hand Portal.

The user must already be assigned to the app to use the "Provision on demand" feature.

Click on the "Provisioning" section &gt; At the top, click "Provision on demand" &gt; Look for the specific user you want to test &gt; Choose the user &gt; Click "Provision.

Once the test is done and the user is provisioned, Go to the "Provisioning" section &gt;Click "Start provisioning" at the top.

When we start provisioning, all users or groups assigned to the app will be synchronized with the RH Portal. After the first sync is done, look at the Provisioning logs to see who was and wasn't synchronized.

1. Login to <a href="https://portal.azure.com/#home" rel="nofollow noopener noreferrer" target="_blank">Azure Portal.</a> Search and click “Microsoft Entra ID.”
 
 
 
2. On the left panel, under the manage tab, click “Enterprise Applications.”
 
 
 
3. To create a SCIM Application, Click “New Application.” 
 
 
4. Click on “Create your own application.”
 

5. Name your application “Right-Hand SCIM” and select the last option, “Integrate any other application you don't find in the gallery (Non-gallery).”
 
 
 
6. Once the App is created, click “Provision User Accounts.” and Get Started. 

7. Select “Automatic” from Provisioning mode. Fill out the Tenant URL and Secret token from the RH Portal.
 
 Go to RH Portal &gt; Company Management &gt; Employees &gt; List &gt; on the top right corner, click Import &gt; select SCIM &gt; enable SCIM Provisioning toggle button &gt; copy webhook URL (tenant URL) and token (secret token).
 
 
 
8. Copy and paste the tenant URL and secret token into Azure. Click “Test Connection.” Once the connection is built, click save.
 
 
 
9. Go to Provisioning under the manage tab &gt; Select edit attribute mapping &gt; Under mappings, select Provision Microsoft Entra ID Users &gt; Delete all the unrequited attributes and keep the only ones the app will use &gt; Click save and exit.
 
 
 
10. Return to the App &gt; Select “Users and Groups” &gt; Click Add Users/Group. 
 
 
 Assign users/groups to the app you want to send to the RH portal.
 
 Now, test the SCIM using the Provision on Demand option.
 
 Note: SCIM is currently not activated. Test SCIM with an individual user before initiating the first sync to verify that the user is properly created in Right-Hand Portal.
 
 The user must already be assigned to the app to use the "Provision on demand" feature.
 
 
11. Click on the "Provisioning" section &gt; At the top, click "Provision on demand" &gt; Look for the specific user you want to test &gt; Choose the user &gt; Click "Provision.
 
 
 
12. Once the test is done and the user is provisioned, Go to the "Provisioning" section &gt;Click "Start provisioning" at the top.
 
 
 
13. When we start provisioning, all users or groups assigned to the app will be synchronized with the RH Portal. After the first sync is done, look at the Provisioning logs to see who was and wasn't synchronized.