SCIM authentication

philnew · August 14, 2018, 4:48pm

On your SCIM integration page you list 3 acceptable authentication methods for SCIM server APIs: (1) OAuth Code Grant Flow, (2) Basic Authentication, and (3) Custom HTTP header. Is there any documentation available for the custom header? (The SCIM page doesn’t say anything about it.) In particular is there a way to do authentication with long-lived credentials that are used to sign SAML assertions?

devSagar · January 11, 2020, 7:22am

Hi @philnew, Did you get any documentation for the custom header authentication?

dragos · January 14, 2020, 12:50am

Hi @devSagar

What type of credentials would you like to use for SCIM authentication?

devSagar · January 17, 2020, 5:32am

Hi @dragos, we need to use (3) Header Auth for SCIM authentication.

dragos · January 20, 2020, 7:15am

Hi @devSagar

You can use SCIM 2.0 Test App (Header Auth) application which will send a custom authorization header, for example

will send the request with the following header

Authorization: Bearer c29tZVN0cmluZ0hlcmU=

SteveDz · January 28, 2020, 4:47pm

Our SCIM endpoint requires multiple headers (Bearer and APIKey).
Is there a way to pass them both in the API Token field or add another header field?

Thanks!

dragos · January 29, 2020, 3:01am

Hi @SteveDz

At the moment, we do not have an option to send multiple headers inside the requests from Okta to a SCIM server.

devSagar · January 30, 2020, 7:03am

@dragos multiple headers will be really very useful for SCIM servers to filters the requests easily.

system · January 23, 2024, 8:14pm

This topic was automatically closed 24 hours after the last reply. New replies are no longer allowed.