Hey there! I'm new to Entra and I'm trying to figure out if an event that happens in Entra can automatically trigger a REST command to a third-party application.
I manage a product that has a REST API and is set up for SSO/SAML to allow logins through our web portal. One of our clients uses Entra for identity management for their employees. We've set up SSO in our system to authenticate via Entra, and now we need to create identities in our app that match attributes (like employee numbers or email addresses) from Entra to facilitate the login process.
The challenge is that there are thousands of identities that need to be created automatically to streamline SSO. Ideally, I'm looking for a way to set it up so that when a user identity is created or modified in Entra, an event occurs that triggers a REST API command to create or update the corresponding identity in our system.
I've read that sending REST commands is possible, but I'm not entirely clear on whether these can be initiated by events in Entra. Any insights or guidance would be super helpful! Thanks!
2 Answers
It sounds like you’re looking for something like SCIM! It’s specifically designed for this purpose, allowing apps to integrate and automate user provisioning. You should check out the documentation on setting up SCIM for your app; it might just be what you need.
If you can set up an API that responds to events in Entra, you're in business! Essentially, any time an identity is created, modified, or deleted in Entra, you can trigger a REST API call to your app. It's definitely doable; just ensure your event triggers are properly set up.
So just to clarify, you're saying that identity changes in Entra can directly send commands to my system? This is all new to me, and I'm really hoping this setup will simplify things!
Absolutely! I've used SCIM, and it works great for automating these processes. It handles things like identity creation and updates seamlessly, so you'll want to look into that.