Skip to main content

Privacera Documentation

SCIM Server UserSync connector properties

Property

Description

Example

A) SCIM Server Connector Info

SCIM_SERVER_CONNECTOR

Identifying name of this connector.

DB1

SCIM_SERVER_ENABLED

Enabled status of connector. (true/false)

true

SCIM_SERVER_SERVICETYPE

Type of service/connector.

scimserver

SCIM_SERVER_DATASOURCE_NAME

Unique datasource name. Used for identifying source of data and configuring priority list. (Optional)

databricks1

SCIM_SERVER_ATTRIBUTE_ONLY

Sync only the attributes of users already synced from other services. (true/false)

SCIM_SERVER_BEARER_TOKEN

Bearer token for auth to SCIM API. When set, SCIM requests with this token will be allowed access.

SCIM_SERVER_USERNAME

Basic auth username, when set SCIM requests with this username will be allowed access. (Password also required)

SCIM_SERVER_PASSWORD

Basic auth password, when set SCIM requests with this password will be allowed access. (Username also required)

SCIM_SERVER_SYNC_INTERVAL

Frequency of usersync audit records in seconds. Default value is 3600, minimum value is 300.

3600

B) SCIM Server Manage/Ignore List of Users/Groups

SCIM_SERVER_MANAGE_USER_LIST

List of users to manage from sync results. If this list is defined, all users not on this list will be ignored.

SCIM_SERVER_IGNORE_USER_LIST

List of users to ignore from sync results.

SCIM_SERVER_MANAGE_GROUP_LIST

List of groups to manage from sync results. If this list is defined, all groups not on this list will be ignored.

SCIM_SERVER_IGNORE_GROUP_LIST

List of groups to ignore from sync results.

C) SCIM Server Attributes

SCIM_SERVER_ATTRIBUTE_USERNAME

Attribute of a user's name.

userName

SCIM_SERVER_ATTRIBUTE_FIRSTNAME

Attribute of a user's first name.

name.givenName

SCIM_SERVER_ATTRIBUTE_LASTNAME

Attribute of a user's last/family name.

name.familyName

SCIM_SERVER_ATTRIBUTE_EMAIL

Attribute of a user’s email.

emails[primary-true].value

SCIM_SERVER_ATTRIBUTE_GROUPS

Attribute of a user’s group list.

groups

SCIM_SERVER_ATTRIBUTE_GROUPNAME

Attribute of a group's name.

displayName

SCIM_SERVER_ATTRIBUTE_GROUP_MEMBER

Attribute from group entry that is the list of members.

members

D) SCIM Server Username Attribute Modifications

SCIM_SERVER_ATTRIBUTE_USERNAME_VALUE_EXTRACTFROMEMAIL

Extract the user’s username from an email address. (e.g. username@domain.com -> username) The default is false.

false

SCIM_SERVER_ATTRIBUTE_USERNAME_VALUE_PREFIX

Prefix to prepend to username. The default is blank.

SCIM_SERVER_ATTRIBUTE_USERNAME_VALUE_POSTFIX

Postfix to append to the username. The default is blank.

SCIM_SERVER_ATTRIBUTE_USERNAME_VALUE_TOLOWER

Convert the user’s username to lowercase. The default is false.

false

SCIM_SERVER_ATTRIBUTE_USERNAME_VALUE_TOUPPER

Convert the user’s username to uppercase. The default is false.

false

SCIM_SERVER_ATTRIBUTE_USERNAME_VALUE_REGEX

Attribute to replace username to matching regex. The default is blank.

E) SCIM Server Group Name Attribute Modifications

SCIM_SERVER_ATTRIBUTE_GROUPNAME_VALUE_EXTRACTFROMEMAIL

Extract the group’s name from an email address (e.g. groupname@domain.com -> groupname). The default is false.

false

SCIM_SERVER_ATTRIBUTE_GROUPNAME_VALUE_PREFIX

Prefix to prepend to the group's name. The default is blank.

SCIM_SERVER_ATTRIBUTE_GROUPNAME_VALUE_POSTFIX

Postfix to append to the group's name. The default is blank.

SCIM_SERVER_ATTRIBUTE_GROUPNAME_VALUE_TOLOWER

Convert group's name to lowercase. The default is false.

false

SCIM_SERVER_ATTRIBUTE_GROUPNAME_VALUE_TOUPPER

Convert the group's name to uppercase. The default is false.

false

SCIM_SERVER_ATTRIBUTE_GROUPNAME_VALUE_REGEX

Attribute to replace group's name to matching regex. The default is blank.

F) Group Attribute Configuration

SCIM_SERVER_GROUP_ATTRIBUTE_LIST

The list of attribute keys to get from synced groups.

SCIM_SERVER_GROUP_ATTRIBUTE_VALUE_PREFIX

Append prefix to values of group attributes such as group name.

SCIM_SERVER_GROUP_ATTRIBUTE_KEY_PREFIX

Append prefix to key of group attributes such as group name.