Skip to main content
All CollectionsTeams Free, Basic, BusinessTeam administrationAutomated Provisioning
Configure SCIM with Entra ID
Configure SCIM with Entra ID

How to integrate Stack Overflow for Teams with the Entra ID identity provider.

Ryan Lindeman avatar
Written by Ryan Lindeman
Updated over 4 months ago
PDF VERSION

Tags | SCIM | Provisioning | Azure | Entra ID |

ADMIN PRIVILEGES REQUIRED

Applies to: Basic, Business

Enterprise users can access their documentation here. Find your plan.

A brief overview

SCIM is an open API for securely sharing user information between online systems. In Stack Overflow for Teams Basic and Business, SCIM 2.0 support allows an Identity Provider (IdP) to automatically update Stack Overflow with the user's activation status and/or role. This article details how to integrate Stack Overflow for Teams and the Entra ID IdP.

After following the Entra ID Enterprise Application instructions for setting up a SAML connection you will be able to set up SCIM provisioning for your application. Please note the SCIM provisioning limitations here.

NOTE: Before October 2023, Entra ID was called Azure Active Directory (Azure AD).

THIS ARTICLE APPLIES TO STACK OVERFLOW FOR TEAMS BASIC AND BUSINESS ONLY.
Stack Overflow for Teams Enterprise users should read this article instead. Find your plan.

1. Entra ID SCIM Setup for Stack Overflow for Teams

On Entra ID for the Stack Overflow Application in the left-hand menu click Provisioning then click Get started.

For Provisioning Mode select Automatic Option

Enter the following for Admin Credentials

Tenant URL https://stackoverflowteams.com/c/[your_site]/auth/scim/v2
​ Secret Token Generated Token on Stack Overflow see instructions below.

In Stack Overflow Business, enable SCIM and generate a SCIM authorization token for your application at /c/[your_site]/admin/access/scim. Please note that this token will only be visible when you generate it. If it is lost, you will need to generate a new one and reconfigure your Okta application.

Then click Test Connection green checkmark will appear in Tenant URL on successful connection.

Don't forget to Save.

2. Entra ID SCIM User Mapping

On Mappings, you can set the mapping for Groups and/or Users

To prevent error messages sent Target Object Actions to just Update.

Stack Overflow doesn't support Create or Delete actions via SCIM.

The following attributes should be configured.

  • userName The User ID (must match the Display Name Assertion provided in /admin/access/authentication)

  • active (true/false) Determines whether or not the user should be deactivated or reactivated in Stack Overflow Business

  • Required fields for SCIM 2.0 (these are commonly mapped for you by your Identity Provider. Usually no action is needed on your part): name.givenName, name.familyName, emails

NOTE: Microsoft Entra ID SCIM doesn't support user role promotion or demotion.

Need help? Submit an issue or question through our support portal.

Did this answer your question?