> For the complete documentation index, see [llms.txt](https://docs.avanoo.ai/public-knowledge-base/llms.txt). Markdown versions of documentation pages are available by appending `.md` to page URLs; this page is available as [Markdown](https://docs.avanoo.ai/public-knowledge-base/users/import-users-through-scim-with-microsoft-entra-id.md).

# Import users through SCIM with  Microsoft Entra ID

### Overview

Microsoft Entra can automatically:

* Create users in Avanoo
* Update user attributes
* Deactivate users
* Sync group memberships

Provisioning runs automatically (approximately every 40 minutes).

***

### 1️⃣ Create the Enterprise Application in Entra

1. Sign in to the Microsoft Entra Admin Center:\
   <https://entra.microsoft.com>

   Required role:

   * Application Administrator
   * Cloud Application Administrator
   * Global Administrator
2. Navigate to:\
   **Identity → Enterprise applications**
3. Click **+ New application**
4. Select **Create your own application**
5. Enter a name (for example):\
   `Avanoo SCIM`
6. Select:\
   **Integrate any other application you don't find in the gallery (Non-gallery)**
7. Click **Create**
8. Open the application and go to **Provisioning**

***

### 2️⃣ Generate Your Avanoo SCIM Token

1. Log in to your Avanoo Admin Portal:\
   <https://app.avanoo.ai>
2. Navigate to:\
   **Integrations → SCIM**

<figure><img src="/files/s2c5dCOfj9zbBZIVqfs5" alt=""><figcaption></figcaption></figure>

1. Click **Generate SCIM Token**
2. Copy the generated token

> ⚠️ Keep this token secure. It grants provisioning access to your Avanoo workspace.

<figure><img src="/files/o4MqBkRvWUpt24vnv4yc" alt=""><figcaption></figcaption></figure>

<figure><img src="/files/qaAn2DP5Usziq7jy0jSV" alt=""><figcaption></figcaption></figure>

***

### 3️⃣ Configure SCIM Provisioning in Entra

Inside your Entra Enterprise Application:

1. Go to **Provisioning**
2. Click **Get started** (or **Edit provisioning configuration**)

Configure the following:

#### Provisioning Mode

Automatic

#### Tenant URL

<https://scim.avanoo.ai/scim><br>

#### Secret Token

Paste the SCIM token generated from Avanoo.

4. Click **Test Connection**

If successful, Entra can communicate with the Avanoo SCIM API.

5. Click **Save**

***

### 4️⃣ Assign Users and Groups

Entra only provisions assigned users/groups.

1. Go to **Users and groups**
2. Click **Add user/group**
3. Select the users and/or groups to sync
4. Click **Assign**

Only assigned users and groups will be provisioned to Avanoo.

***

### 5️⃣ Configure Attribute Mappings (Important)

Navigate to:

**Provisioning → Mappings → Provision Azure Active Directory Users**

Ensure the following mappings:

| Entra Attribute  | Avanoo SCIM Attribute |
| ---------------- | --------------------- |
| `mail`           | `userName`            |
| `objectId`       | `externalId`          |
| `givenName`      | `name.givenName`      |
| `surname`        | `name.familyName`     |
| `accountEnabled` | `active`              |

#### Required Configuration

* `userName` must map to the user’s **email address**
* `externalId` must map to `objectId`

Click **Save**.

***

### 6️⃣ Enable Provisioning

1. Return to **Provisioning**
2. Set: Provisioning Status → On
3. Click **Save**

Provisioning will now begin.

***

### 🔄 Provisioning Behavior

* Sync runs approximately every **40 minutes**
* Use **Provision on demand** to manually test a specific user
* Supported operations:
  * User creation
  * User updates
  * User deactivation
  * Group membership updates

***

### 🛠 Troubleshooting

If provisioning fails:

1. Check **Provisioning Logs** in Entra
2. Verify:
   * Tenant URL is exactly:

     ```
     https://scim.avanoo.ai/scim
     ```
   * The SCIM token is valid
   * Users are assigned
   * Attribute mappings match the Avanoo SCIM schema
   * Your SCIM endpoint responds with HTTP 200


---

# Agent Instructions
This documentation is published with GitBook. GitBook is the documentation platform designed so that both humans and AI agents can read, navigate, and reason over technical content effectively. Learn more at gitbook.com.

## Querying This Documentation
If you need additional information that is not directly available in this page, you can query the documentation dynamically by asking a question.

Perform an HTTP GET request on the current page URL with the `ask` query parameter, and the optional `goal` query parameter:

```
GET https://docs.avanoo.ai/public-knowledge-base/users/import-users-through-scim-with-microsoft-entra-id.md?ask=<question>&goal=<endgoal>
```

`ask` is the immediate question: it should be specific, self-contained, and written in natural language.
`goal` is optional and describes the broader end goal you are ultimately trying to accomplish on behalf of the user. GitBook uses it to tailor the answer towards what is most useful for that goal.

The response will contain a direct answer to the question and relevant excerpts and sources from the documentation.

Use this mechanism when the answer is not explicitly present in the current page, you need clarification or additional context, or you want to retrieve related documentation sections.