1Password

AKASHI

AWS IAM Identity Center

Acall

Active! gate SS

Adobe CC (Enterprise plan)

AirCourse

Airtable

Amazon Business

Amazon Web Services (AWS)

Amplitude

App Store Connect

AppFigures

AppsFlyer

Asana

Ashita_cloud

Atlassian

Autodesk

Awesome Screenshot

Backlog

BambooHR

Basecamp

Bitbucket

Bitdefender

Bitrise

Bitwarden

Biz Storage fileshare

Board

Box

Brabio!

Cacoo

Calendly

Canny

Canva

Channel

ChatGPT

Chatwork

Cisco Meraki

ClickUp

Cloud CIRCUS

Cloud sign

Cloudflare

Codecov

Collaboflow

Confluence

Contentful

ContractS CLM

Coopel

Create! Web Flow

Crowdstrike

Cybozu

Datadog

DatoCMS

DeepL

DeployGate

Dialpad

DirectCloud

Discord

DocSend

Docbase

Docker

DocuSign

Domo

Dropbox Business

Dropbox Sign

Esa

Exment

Expensify

FastAnswer2

Fastly

Figma

Flyle

Fontworks

Formrun

Freshchat

Freshdesk

Freshservice

GMO Sign

Garoon

Ghost

GigaCC

GitHub

GitKraken

GitLab

Google Cloud Platform

Google Drive with Service Account

Google Tag Manager

Google Workspace

HENNGE One

HERP Hire

HRBrain Talent Management

HRMOS Talent Management

HRMOS adopts

HRMOS diligence and indolence

HackMD

HaloPSA

Heap

Heroku

Honeybadger

HotProfile

HubSpot

Hubble

Huntress

ISM CloudOne

InVision

Intercom

Jamf

Jetbrains

Job Can Recruitment Management

Job Kan Attendance Management

Job Kan Labor HR

KARTE

KING OF TIME

Kamon

Kaonavi

Keeper Enterprise

Kibela

Kincone

Kintone (Japanese version)

LINE WORKS (OAuth linkage)

Lastpass

List of supported SaaS

Looker

Loom

Lucidchart

Lumin

Lychee Redmine

MAJOR FLOW Z

Mail Dealer

Mailtrap

Marketo Engage

Mekari Journal

Meta Ads Manager

Metabase

MicroCMS

Microsoft 365

Microsoft Entra ID (Azure AD)

Microsoft Intune

Microsoft Teams

MiiTel

Miro

Money Forward Admina

Money Forward Cloud Accounting

Money Forward Cloud Accounting Plus

Money Forward Cloud Agreement

Money Forward Cloud Attendance

Money Forward Cloud Expense

Money Forward Cloud Fixed Assets

Money Forward Cloud Invoice

Money Forward Cloud Payroll

Money Forward Cloud payable

Money Forward Pay for Business

Mural

My Redmine

NEXT ENGINE

NI Collabo 360

Netlify

Netsuite

New Relic

NinjaMock

NinjaOne RMM

NotePM

Notion

Okta

OneDrive

Onelogin

Openlogi

OpsRamp

Overflow

PHONE APPLI PEOPLE

PagerDuty

Percy

Pipedrive

Postman

Productboard

Quay

Questetra

Quickbooks

Re:lation

Receptionist

Recruitment batch Kanrikun

Redash

Reftab

Rollbar

SECURE DELIVER

Salesforce

Sansan

Save Point

Seculio

SecureNavi

SendGrid

Sentry

ServiceNow

Shopify

Signavio

Site24x7

Sketch

Slack

Slido

Smaregi Time Card

SmartHR

Smartsheet

Snowflake

Snyk

SonarCloud

Splashtop Enterprise

Square

Studio

Sumareji

TOYOKUMO Safety Confirmation Service 2

Tableau

Tareru Dokodemo Cabinet

TeamGantt

TeamSpirit

Teamwork

Terraform Cloud

Todoist

Toggl track

TrackJS

Transifex

Trello

Trimble

Trust Login by GMO

Twilio

Typeform

Unipos

Unity

Vercel

Vimeo

Wantedly

Webex by CISCO

Webflow

Whimsical

Wistia

WithSecure

Wix

Wordpress

Wordpress self-host (API)

Workable

Workplace from Meta

Wrike

Xero

YarakuZen

Yayoi My Portal

YouCanBook.me

Zaico

Zapier

Zendesk

Zenhub

Zeplin

Zoho CRM

Zoho People

Zoom

bakuraku series

dbt Cloud

direct

fondesk

freee HR

freee accounting

freee sign (formerly NINJA SIGN)

hotjar

invox

job can payroll

job can workflow

kickflow

kintone (global version)

monday.com

oVice

oplus

raku raku sales

smartround

trocco

Notice from Admina by Money Forward

0. Getting Started

1. Account Creation and Initialization

2. Employee Master Setup

3. Cost Management Setup

4. Integrating SaaS

5. Setup Billing

Billing

Check SaaS license status

Custom Apps（Manual Integration）

How can I learn more about how to work with cloud services?

How to link cloud services managed by other business divisions and departments?

Integration Log Function

Inviting other users

Need to stop the integrated service

Request an unsupported SaaS or feature to be added

Troubleshooting failed integrations

User Type Judgment Criteria: Quick Reference

Admina Browser Extention for Microsoft Edge

How to setup Admina Browser Extension

Shadow IT Detection

The detail of Shadow IT detection

About alert types

Account Provisioning (register a new SaaS account)

Alert Mute

Delete/deactivate an account in the Admina by Money Forward

Do you have a retired account left?

Export account data

Manage former employee accounts (Employee offboarding)

Note on possible data loss when deleting a cloud service account

Retired account export

Slack Notification Settings

What is Last Activity

Analyze the cost situation (Insight)

Check the payment status of SaaS

Cost Management with CSV Data

Manage SaaS contract dates

Manage SaaS invoices and receipts

Use cost management β

External Shared Content Management Functions

[Safelist] Exclude detected files

Device features FAQ

How to create a device ledger CSV for import

List of management items

Use device functions

Can I use two-factor authentication (2FA) to log into Money Forward Admina?

Deleted users in Google Analytics remain in Money Forward Admina

How to get an account with Jira, Confluence, Trello, etc.

I want to change my Money Forward Admina login password

If you link with the Money Forward Cloud Series, you will receive a security notification email

Integration procedures when 2FA (two-factor authentication) is enabled

New Admina Role

To change your Money Forward Admina billing address

User name display (acquisition criteria)

What happens if the person who linked the cloud service retires?

What if IP address restrictions are applied on the SaaS side?

[Integration Error] Authentication error occurs when login using Google Authentication or SSO.

About the event that the user deleted by Atlassian remains as retired

Cancellation

Error with Google OAuth integration.

Error: Google hasn't verified this app

How to Setup SAML

How to calculate prices

How to setup SCIM

How to setup SCIM (Okta Integration Network)

Promotion Code

Get SCIM certification information for organizations
Activate SCIM on the IdP side

All Categories
Others

How to setup SCIM

How to setup SCIM

Updated 2 years ago by Yasuhiro Miyoshi

Get SCIM certification information for organizations
Activate SCIM on the IdP side

Translation Disclaimer: The documents herein have been machine translated for your convenience by translation software. While reasonable efforts are made to provide accurate translations, portions may be incorrect. If you would like to report a translation error or inaccuracy, we encourage you to please contact us.

SAML must be enabled in order to use SCIM. Please see the SAML Setup Guidelines to enable SAML.

Get SCIM certification information for organizations

Go to the Organization Settings screen at Settings > SAML/SCIM . If you do not have a secret token yet, press the Generate button. Since there is only one SCIM secret token per organization, if you generate a new token, the previously generated one will expire.

Activate SCIM on the IdP side

Open the application you created for SAML in IdP.

Azure AD

Azure AD Guide

Select Provisioning in the side menu and click the Get Started button.

Select Automatic mode.

Enter the tenant URL and secret token obtained from the IT Management Cloud.

Click the Save button in the upper left corner to save the settings.

There is no need to store and manage Secret Tokens in a separate location.If a new one is needed, it can be re-generated.

Next, open Mappings and deactivate provisioning for the group.

Select Provision Azure Active Directory Users and click Azure Active Directory Attribute should be set as follows.

Check that the Matching precedence for userPrincipleName is set to 1.

Click the Save button in the upper left again and you are done 🎉.

Assigning users to the application will automatically provision it to the IT Management Cloud.

Okta

Features

Create new user: When a user is created in Okta, the user is also created in the IT Management Cloud.
Update user profiles: User information updated in Okta is reflected in the IT Management Cloud.
Disable (reactivate) and delete users: When a user is disabled, reactivated, or deleted in Okta, the result is also reflected in the IT Management Cloud.

Requirements

SAML must be enabled in order to use SCIM. Please see the SAML Setup Guidelines to enable SAML.

Configuration Steps

1.Select your application from Apprications and change the Application username format to Emailon the Sign on tab.

2. On the General tab, under Provisioning, select Enable SCIM provisioning.

3.Open the Provisioning tab and enter the following information

SCIM connector base URL : Input the Tenant URL from IT Management Cloud
Unique identifier field for user : userName
Supported provisioning actions : Check the following value
- Import New Users and Profile Updates
- Push New Users
- Push Profile Updates
Authentication Mode : HTTP Header
Authorization : Secret Token from IT Management Cloud

4. Press Test Connector Configuration and verify that all but Push groups and Import groups succeed. If successful, Close and save the file.

5.次In the To App section of the next screen, activate the following

Create Users
Update User Attributes
Deactivate Users

6. On the same screen, scroll further down to the Attribute Mappings section. Set the same settings as in the screenshot.

7. That's all done. 🎉 　When a user is assigned to an application, it is automatically provisioned in the IT management cloud.

Known Issues / Troubleshooting

IT Management Cloud does not yet support provisioning or import from Apps to Okta, so please leave the "To Okta" setting at default (disabled).

OneLogin

OneLogin Guide

Open the Configuration page. Enter the following values.

SCIM Base URL: Enter the tenant URL obtained from the IT Management Cloud.
SCIM Bearer Token: Enter the Secret Token obtained from the IT Management Cloud.

Press the Enable button to activate. If there is no error, press Save to save.

Next, open the Provisioning page.

Activate Enable provisioning.

Optionally, you can change the behavior when a user is deleted in OneLogin.

Save the settings.

That's all done 🎉.

Assign users to the application and it will be automatically provisioned in the IT Management Cloud.

Table of Contents

How to setup SCIM