Steps to Complete in the Target Identity Domain in IAM Interface

Download Generic SCIM application template from the App Catalog of the target domain to enable and configure connectivity for synchronization.

The Generic SCIM application template has been configured to enable Oracle Identity Cloud Service to communicate with applications that support SCIM. For more information, see How Do You Use the Generic SCIM App Template in Administering Oracle Identity Cloud Service?

Before you begin, note the Client ID and Client Secret of the application in the source identity domain. See Steps to Complete in the Source Identity Domain in IAM Interface

  1. Sign into IAM Interface as an Identity Domain Administrator for the target domain. See: Accessing the IAM Interface.
  2. Select the domain to view the domains details page.
  3. Navigate to the Integrated applications tab.
    Select Integrated applications tab

  4. Click Add application.
  5. On the Add application page, click Application Catalog, and then click Launch workflow.
    Screen to add app catalog
  6. Search for GenericSCIM in App Catalog, and click GenericScim - Client Credentials.
    Screen to select GenericScim app from app catalog
  7. On the Add GenericScim- Client Credentials page, enter the required application details, and click Submit.
  8. On the application page, navigate to the Provisioning tab.
    Select Provisioning Tab

  9. Click Ellipses (…) button next to Provisioning header, and select Edit provisioning.
    Edit provisioning

  10. Click Enable Provisioning.
  11. Click Confirm to close the confirmation message.
    Enable provisioning confirmation message

  12. Under Configure Connectivity, enter the values for the following parameters:
    Parameter Description and Value Information
    Host Name If the SCIM interface's URL is https://idcs.example.com/abc, then the host name is idcs.example.com. This is the URL of the source identity domain.
    Base URI If the SCIM interface's URL is https://idcs.example.com/admin/v1, then the Base URI is /admin/v1.
    Client Id Client ID of the confidential application your created in the source identity domain.
    Client Secret Client Secret of the confidential application your created in the source identity domain.
    Scope

    Use urn:opc:idm:__myscopes__ as the scope of your application.

    Authentication Server Url

    The URL of your authentication server in the source domain.

    Example: https://idcs.example.com/oauth2/v1/token
  13. Click Test Connectivity to verify the configuration.
  14. Under Select Provisioning Operations, choose Authoritative Sync.
  15. Select Enable Synchronization, then click Submit.
  16. Back on the application page, click Actions, and select Activate.
    Activate application

  17. On the confirmation dialog, click Activate application.