Postman supports SCIM provisioning through Okta with the Postman Okta app or the SCIM 2.0 test app (Header Auth). These apps enable you to automate user provisioning and de-provisioning for your team.
You must be a Postman Team Admin or Super Admin to enable SCIM for your team. It's recommended that you enable SCIM with a service account assigned the Super Admin role.
With SCIM enabled, users won't have the option to leave your team on their own, and won't be able to change their account email or password. Only Team Admins and Super Admins have permission to remove team members. Only administrators in Okta have permission to use SCIM to change user account emails if they're associated with a domain your team verified.
Postman is available as an app in the Okta Integration Network, allowing you to enable user provisioning directly through Okta.
It's recommended that you enable SCIM in Okta with the Postman Okta app.
Prior to enabling SCIM in Okta, you must add the Postman app in Okta and configure Okta's SSO for your Postman team.
To set up provisioning with Okta, do the following:
In Okta, go to the Postman app, select Provisioning, then select Configure API Integration.
Select Enable API integration, and enter the following:
https://api.getpostman.com/scim/v2
.Select Test API Credentials. If successful, a verification message will appear.
If verification is unsuccessful, confirm that you have SCIM enabled for your team in Postman, are using the correct SCIM API key, and that your API key's status is ACTIVE in your team authentication settings. If you continue to face issues, contact Postman support for assistance.
Select Save. Then you can configure the Postman Okta app.
After you enable SCIM in Okta with the Postman Okta app, you can configure the app. The Postman Okta app supports the provisioning features listed in the SCIM provisioning overview.
To turn these features on or off, do the following:
Go to the Postman app in Okta, select To App on the left, then select Edit.
Select features to enable them, or clear to turn them off.
Select Save to save your changes.
Select Assignments, then assign relevant people and groups to the app. Learn how to assign people and groups to an app in Okta.
The SCIM 2.0 test app (Header Auth) is available in the Okta Integration Network, allowing you to enable user provisioning directly through Okta.
It's recommended that you enable SCIM in Okta with the Postman Okta app.
Prior to enabling SCIM in Okta, you must configure Okta's SSO for your Postman team.
To set up provisioning with Okta, do the following:
Open your Okta admin console in a new tab.
Go to Applications, and then select Applications.
Select Browse App Catalog.
Search for "SCIM 2.0 Test App (Header Auth)". Select the app from the results, and then select Add Integration.
In the General Settings tab, enter an app name you'll recognize later, and then select Next.
In the Sign-On Options tab, select Done.
In Okta, go to the SCIM 2.0 test app (Header Auth), select Provisioning, then select Configure API Integration.
Select Enable API integration, and enter the following:
https://api.getpostman.com/scim/v2
.Select Test API Credentials. If successful, a verification message will appear.
If verification is unsuccessful, confirm that you have SCIM enabled for your team in Postman, are using the correct SCIM API key, and that your API key's status is ACTIVE in your team authentication settings. If you continue to face issues, contact Postman support for assistance.
Select Save. Then you can configure the SCIM 2.0 test app (Header Auth).
After you enable SCIM in Okta with the SCIM 2.0 test app (Header Auth), you can configure the app. The SCIM 2.0 test app (Header Auth) supports the provisioning features listed in the SCIM provisioning overview. The app also supports updating group information from Postman to your IdP.
To turn these features on or off, do the following:
Go to the SCIM 2.0 test app (Header Auth) in Okta, select Provisioning, select To App on the left, then select Edit.
Select features to enable them, or clear to turn them off. Postman supports the Create users, Update User Attributes, and Deactivate Users features. Postman doesn't support the Sync Password feature.
Select Save to save your changes.
Make sure only the Username, Given name, and Family name attributes are mapped. Delete other attributes if they're mapped.
Select Assignments, then assign relevant people and groups to the app. Learn how to assign people and groups to an app in Okta.
Last modified: 2024/06/28