Microsoft Entra ID
Last updated
Last updated
This guide assumes that you have already enabled SCIM on the Datasaur app and wish to use Microsoft Entra ID as the Identity Provider for both SAML and SCIM integration.
⚠️ The push group functionality is still in progress. Even if you have properly configured the mapping on the Datasaur app, each provisioned users will be assigned as Labeler by default. The latest ETA is in April 2024.
Open your Enterprise Application which should be created when enabling SAML.
Open the Provisioning tab.
Set the Provisioning Mode to Automatic.
In the Admin Credentials section, do the following:
Fill the Tenant URL: https://<datasaur-app-base-url>/api/teams/<your-team-id>/scim/v2.
Replace <datasaur-app-base-url> and <your-team-id> accordingly.
For SaaS Datasaur-hosted, you can use app.datasaur.ai as the <datasaur-app-base>. If you're self-hosted, adjust accordingly based on your domain.
To get the team ID, it can easily be fetched from your URL. For example, if you are currently on https://app.datasaur.ai/teams/1/projects, your team ID is 1.
Fill the Secret Token with the API key that you generated before from the Datasaur app.
Click the Test Connection button.
Click Save and turn on the Provisioning Status.
Once turned on, the provisioning process will run every 40 minutes. When the process starts, it will sync the state of all your assigned users to Datasaur.
If you want to skip waiting for 40 minutes, you can head to the Provisioning, then Provision on demand tab. Select the users you want and that should trigger the provisioning process for that particular user.
Go to the Users and groups tab.
Click the Add user/group.
Select the user(s) you want to assign.
Click assign.
Wait for the provisioning sync period or provision on demand, the users should be added to the Workspace as Labeler.
⚠️ As stated above, it's currently still in progress.