Prerequisites
Expected you have already created an Enterpise Application for StoryChief inside Entra ID.
Start setting up CSIM with Microsoft Entra ID
Step 1. Enable provisioning by clicking on 'Provisioning' on the left-hand menu and selecting '+ New Configuration'.
Tenant URL: https://api.storychief.io/scim/v2
Secret token: create one here
Click 'Test connection', after a successful test confirmation, press 'Next' to continue.
Step 2. Add the App Roles by navigating to: App Registrations > Your Created App > App Roles
Now create the following roles
Display name | Allowed member types | Value | Description |
Owner | Users/Groups | owner | StoryChief Owner Role |
Admin | Users/Groups | admin | StoryChief Admin Role |
Writer | Users/Groups | writer | StoryChief Writer Role |
Guest | Users/Groups | guest | StoryChief Guest Role |
Step 3. Create the StoryChief roles attribute. Navigate back to: Entra ID > Enterprise applications > Your Created App > Provisioning > Attribute mapping > Entra ID Users
Open up the advanced options and click 'edit attribute list for customappsso'
Add a new field:
Name: roles
Multi-Value: True
Optional: you can clean out the list of attributes to only the bare minimum, as shown in the screenshot above.
Step 4. Mapping. Navigate back to: Entra ID > Enterprise applications > Your Created App > Provisioning > Attribute mapping > Entra ID Users
On the Attribute Mappings list , map the field we just created in step 2 by pressing "Add New Mapping"
type: Expression
Expression: AppRoleAssignmentsComplex([appRoleAssignments])
Default value: guest
Target attribute: roles
Match objects: No
Apply this mapping: Always
Optional: you can clean out the list of mappings to only the bare minimum, as shown in the screenshot below.
