Skip to main content

Privacera Documentation

SCIM Server UserSync connector properties

Property

Description

Example

A) SCIM Server Connector Info

SCIMSERVER_CONNECTOR

Identifying name of this connector.

DB1

SCIMSERVER_ENABLED

Enabled status of connector. (true/false)

true

SCIMSERVER_SERVICETYPE

Type of service/connector.

scimserver

SCIMSERVER_DATASOURCE_NAME

Unique datasource name. Used for identifying source of data and configuring priority list. (Optional)

databricks1

SCIMSERVER_ATTRIBUTE_ONLY

Sync only the attributes of users already synced from other services. (true/false)

SCIMSERVER_BEARER_TOKEN

Bearer token for auth to SCIM API. When set, SCIM requests with this token will be allowed access.

SCIMSERVER_USERNAME

Basic auth username, when set SCIM requests with this username will be allowed access. (Password also required)

SCIMSERVER_PASSWORD

Basic auth password, when set SCIM requests with this password will be allowed access. (Username also required)

SCIMSERVER_SYNC_INTERVAL

Frequency of usersync audit records in seconds. Default value is 3600, minimum value is 300.

3600

B) SCIM Server Manage/Ignore List of Users/Groups

SCIMSERVER_MANAGE_USER_LIST

List of users to manage from sync results. If this list is defined, all users not on this list will be ignored.

SCIMSERVER_IGNORE_USER_LIST

List of users to ignore from sync results.

SCIMSERVER_MANAGE_GROUP_LIST

List of groups to manage from sync results. If this list is defined, all groups not on this list will be ignored.

SCIMSERVER_IGNORE_GROUP_LIST

List of groups to ignore from sync results.

C) SCIM Server Attributes

SCIMSERVER_ATTRIBUTE_USERNAME

Attribute of a user's name.

userName

SCIMSERVER_ATTRIBUTE_FIRSTNAME

Attribute of a user's first name.

name.givenName

SCIMSERVER_ATTRIBUTE_LASTNAME

Attribute of a user's last/family name.

name.familyName

SCIMSERVER_ATTRIBUTE_EMAIL

Attribute of a user’s email.

emails[primary-true].value

SCIMSERVER_ATTRIBUTE_GROUPS

Attribute of a user’s group list.

groups

SCIMSERVER_ATTRIBUTE_GROUPNAME

Attribute of a group's name.

displayName

SCIMSERVER_ATTRIBUTE_GROUP_MEMBER

Attribute from group entry that is the list of members.

members

D) SCIM Server Username Attribute Modifications

SCIMSERVER_ATTRIBUTE_USERNAME_VALUE_EXTRACTFROMEMAIL

Extract the user’s username from an email address. (e.g. username@domain.com -> username) The default is false.

false

SCIMSERVER_ATTRIBUTE_USERNAME_VALUE_PREFIX

Prefix to prepend to username. The default is blank.

SCIMSERVER_ATTRIBUTE_USERNAME_VALUE_POSTFIX

Postfix to append to the username. The default is blank.

SCIMSERVER_ATTRIBUTE_USERNAME_VALUE_TOLOWER

Convert the user’s username to lowercase. The default is false.

false

SCIMSERVER_ATTRIBUTE_USERNAME_VALUE_TOUPPER

Convert the user’s username to uppercase. The default is false.

false

SCIMSERVER_ATTRIBUTE_USERNAME_VALUE_REGEX

Attribute to replace username to matching regex. The default is blank.

E) SCIM Server Group Name Attribute Modifications

SCIMSERVER_ATTRIBUTE_GROUPNAME_VALUE_EXTRACTFROMEMAIL

Extract the group’s name from an email address (e.g. groupname@domain.com -> groupname). The default is false.

false

SCIMSERVER_ATTRIBUTE_GROUPNAME_VALUE_PREFIX

Prefix to prepend to the group's name. The default is blank.

SCIMSERVER_ATTRIBUTE_GROUPNAME_VALUE_POSTFIX

Postfix to append to the group's name. The default is blank.

SCIMSERVER_ATTRIBUTE_GROUPNAME_VALUE_TOLOWER

Convert group's name to lowercase. The default is false.

false

SCIMSERVER_ATTRIBUTE_GROUPNAME_VALUE_TOUPPER

Convert the group's name to uppercase. The default is false.

false

SCIMSERVER_ATTRIBUTE_GROUPNAME_VALUE_REGEX

Attribute to replace group's name to matching regex. The default is blank.

F) Group Attribute Configuration

SCIMSERVER_GROUP_ATTRIBUTE_LIST

The list of attribute keys to get from synced groups.

SCIMSERVER_GROUP_ATTRIBUTE_VALUE_PREFIX

Append prefix to values of group attributes such as group name.

SCIMSERVER_GROUP_ATTRIBUTE_KEY_PREFIX

Append prefix to key of group attributes such as group name.

SCIM_SERVER_APPLY_MEMBERSHIPS_FROM_USER

Defines group membership based on the user record's group attributes.

  • Default: false.

  • Allowable values: true, false.

true