SCIM - Correct role value not being sent in request

Sara 11 Reputation points
2021-06-17T17:30:13.43+00:00

Hello,

We have an application configured to hit our SCIM API and have a user with a custom role assigned: "Administrator". However, when provisioning the user, only a role with the value "User" is received. We were expecting to receive "Administrator".

{
"schemas":[
"urn:ietf:params:scim:schemas:core:2.0:User",
"urn:ietf:params:scim:schemas:extension:enterprise:2.0:User"
],
"userName":"email@onmicrosoft.com",
"active":true,
"meta":{
"resourceType":"User"
},
"name":{
"familyName":"33",
"givenName":"Scim"
},
"urn:ietf:params:scim:schemas:extension:CustomExtensionName:2.0:User.appRoles":{
"value":"User"
}
}

Following is our configuration. Any help is appreciated, thanks.

106667-screen-shot-2021-06-17-at-61900-pm.png
106732-screen-shot-2021-06-17-at-61806-pm.png
106636-screen-shot-2021-06-17-at-61919-pm.png

Microsoft Entra ID
Microsoft Entra ID
A Microsoft Entra identity service that provides identity management and access control capabilities. Replaces Azure Active Directory.
21,380 questions
0 comments No comments
{count} votes

1 answer

Sort by: Most helpful
  1. Sara 11 Reputation points
    2021-06-22T11:14:32.443+00:00

    We already figured it out that the role being sent is the role from the application not the role from the user.

    2 people found this answer helpful.

Your answer

Answers can be marked as Accepted Answers by the question author, which helps users to know the answer solved the author's problem.