Skip to content

website/docs: add entra id scim source #17357

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Merged
merged 13 commits into from
Oct 9, 2025
Merged

website/docs: add entra id scim source #17357

merged 13 commits into from
Oct 9, 2025
+249 −84

Conversation

dewi-tik
Copy link
Contributor

@dewi-tik dewi-tik commented Oct 9, 2025

Details

Adds an Entra ID SCIM source document.

Checklist

If applicable

  • The documentation has been updated
  • The documentation has been formatted (make docs)

@dewi-tik dewi-tik requested a review from a team as a code owner October 9, 2025 12:17
@netlify Netlify
Copy link

netlify bot commented Oct 9, 2025
edited
Loading

Deploy Preview for authentik-integrations ready!

Name Link
🔨 Latest commit ca2f9e8
🔍 Latest deploy log https://app.netlify.com/projects/authentik-integrations/deploys/68e7d3353a994100086bb55b
😎 Deploy Preview https://deploy-preview-17357--authentik-integrations.netlify.app
📱 Preview on mobile
Toggle QR Code...

QR Code

Use your smartphone camera to open QR code link.

To edit notification comments on pull requests, go to your Netlify project configuration.

@netlify Netlify
Copy link

netlify bot commented Oct 9, 2025
edited
Loading

Deploy Preview for authentik-docs ready!

Name Link
🔨 Latest commit ca2f9e8
🔍 Latest deploy log https://app.netlify.com/projects/authentik-docs/deploys/68e7d3358c78f60008356584
😎 Deploy Preview https://deploy-preview-17357--authentik-docs.netlify.app
📱 Preview on mobile
Toggle QR Code...

QR Code

Use your smartphone camera to open QR code link.

To edit notification comments on pull requests, go to your Netlify project configuration.

@netlify Netlify
Copy link

netlify bot commented Oct 9, 2025
edited
Loading

Deploy Preview for authentik-storybook canceled.

Name Link
🔨 Latest commit ca2f9e8
🔍 Latest deploy log https://app.netlify.com/projects/authentik-storybook/deploys/68e7d3356059a500086b8e6c

@codecov Codecov
Copy link

codecov bot commented Oct 9, 2025
edited
Loading

Codecov Report

✅ All modified and coverable lines are covered by tests.
✅ Project coverage is 92.96%. Comparing base (6341252) to head (ca2f9e8).
⚠️ Report is 2 commits behind head on main.

Additional details and impacted files 
@@           Coverage Diff           @@
##             main   #17357   +/-   ##
=======================================
  Coverage   92.96%   92.96%           
=======================================
  Files         857      857           
  Lines       46597    46608   +11     
=======================================
+ Hits        43319    43331   +12     
+ Misses       3278     3277    -1
Flag Coverage Δ
e2e 46.00% <ø> (+0.01%) ⬆️
integration 23.13% <ø> (+0.02%) ⬆️
unit 91.05% <ø> (+<0.01%) ⬆️
unit-migrate 91.10% <ø> (+<0.01%) ⬆️

Flags with carried forward coverage won't be shown. Click here to find out more.

☔ View full report in Codecov by Sentry.
📢 Have feedback on the report? Share it here.

tanberry
tanberry reviewed Oct 9, 2025
View reviewed changes
tanberry
tanberry reviewed Oct 9, 2025
View reviewed changes
tanberry
tanberry reviewed Oct 9, 2025
View reviewed changes
website/docs/users-sources/sources/social-logins/entra-id/oauth/index.mdx

To support the integration of Entra ID with authentik, you need to create an Entra ID OAuth source in authentik.

### Create Entra ID OAuth source
Copy link
Contributor

@tanberry tanberry Oct 9, 2025
edited
Loading

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

If time now great, if not in a future PR, but because the process of creating an OAuth source for Entra, or any other provider, is so different from one another, we should link to each different process from the OAuth Source "home page" at /users-sources/sources/protocols/oauth/. Because we can't really have a section there called "Cretae an OAuth source"... but we can link to the process under each of the specific sources section.

@github-actions GitHub Actions
Copy link
Contributor

github-actions bot commented Oct 9, 2025
edited
Loading

authentik PR Installation instructions

Instructions for docker-compose

Add the following block to your .env file:

AUTHENTIK_IMAGE=ghcr.io/goauthentik/dev-server
AUTHENTIK_TAG=gh-ca2f9e81a82ce67319f327ed5b57e6dbaf51d97e
AUTHENTIK_OUTPOSTS__CONTAINER_IMAGE_BASE=ghcr.io/goauthentik/dev-%(type)s:gh-%(build_hash)s

Afterwards, run the upgrade commands from the latest release notes.

Instructions for Kubernetes

Add the following block to your values.yml file:

authentik:
    outposts:
        container_image_base: ghcr.io/goauthentik/dev-%(type)s:gh-%(build_hash)s
global:
    image:
        repository: ghcr.io/goauthentik/dev-server
        tag: gh-ca2f9e81a82ce67319f327ed5b57e6dbaf51d97e

Afterwards, run the upgrade commands from the latest release notes.

tanberry
tanberry approved these changes Oct 9, 2025
View reviewed changes
Copy link
Contributor

@tanberry tanberry left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Looks great, especially at the speed you got this out! Thanks so much @dewi-tik ! A few suggestions, one capitalization fix, then let's go!

@dominic-r dominic-r self-requested a review October 9, 2025 14:27
dominic-r
dominic-r reviewed Oct 9, 2025
View reviewed changes
dominic-r
dominic-r reviewed Oct 9, 2025
View reviewed changes
dominic-r
dominic-r reviewed Oct 9, 2025
View reviewed changes
website/docs/users-sources/sources/social-logins/entra-id/scim/index.mdx

There are three options to determine which users and groups are provisioned to authentik:

- Set Entra ID to sync all users and groups
Copy link
Member

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Suggested change
- Set Entra ID to sync all users and groups
- Set Entra ID to sync all users and groups

@dewi-tik @dominic-r
Update website/docs/users-sources/sources/social-logins/entra-id/oaut…
b2de9b8 
…h/index.mdx

Co-authored-by: Dominic R <[email protected]>
Signed-off-by: Dewi Roberts <[email protected]>
dominic-r
dominic-r reviewed Oct 9, 2025
View reviewed changes
website/docs/users-sources/sources/social-logins/entra-id/scim/index.mdx
There are three options to determine which users and groups are provisioned to authentik:

- Set Entra ID to sync all users and groups
- Set Entra ID to sync all users and groups with scopes to limit which users and groups are synced
Copy link
Member

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Suggested change
- Set Entra ID to sync all users and groups with scopes to limit which users and groups are synced
- Set Entra ID to sync all users and groups with scopes to limit which users and groups are synced

dominic-r
dominic-r reviewed Oct 9, 2025
View reviewed changes
website/docs/users-sources/sources/social-logins/entra-id/scim/index.mdx

- Set Entra ID to sync all users and groups
- Set Entra ID to sync all users and groups with scopes to limit which users and groups are synced
- Set Entra ID to sync only assigned users and groups (Group assignment is only available to Microsoft Entra Suite, Microsoft Entra ID Governance and Microsoft Entra ID P2 customers)
Copy link
Member

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Suggested change
- Set Entra ID to sync only assigned users and groups (Group assignment is only available to Microsoft Entra Suite, Microsoft Entra ID Governance and Microsoft Entra ID P2 customers)
- Set Entra ID to sync only assigned users and groups (Group assignment is only available to Microsoft Entra Suite, Microsoft Entra ID Governance and Microsoft Entra ID P2 customers)

@dewi-tik @dominic-r
Apply suggestions from code review
ca2f9e8 
Co-authored-by: Dominic R <[email protected]>
Signed-off-by: Dewi Roberts <[email protected]>
@dewi-tik dewi-tik added the backport/version-2025.8 Add this label to PRs to backport changes to 2025.8 label Oct 9, 2025
@dewi-tik dewi-tik enabled auto-merge (squash) October 9, 2025 14:50
auto-merge was automatically disabled October 9, 2025 15:32

Pull Request is not mergeable

@dewi-tik dewi-tik merged commit 2e03270 into main Oct 9, 2025
176 of 180 checks passed
@dewi-tik dewi-tik deleted the website/docs--add-entra-id-scim-source branch October 9, 2025 16:50
authentik-automation bot pushed a commit that referenced this pull request Oct 9, 2025
@dewi-tik @authentik-automation
Cherry-pick #17357 to version-2025.8 (with conflicts)
69753e8 
This cherry-pick has conflicts that need manual resolution.

Original PR: #17357
Original commit: 2e03270
@authentik-automation authentik-automation bot mentioned this pull request Oct 9, 2025
Merged
@authentik-automation
Copy link
Contributor

⚠️ Cherry-pick to version-2025.8 has conflicts: #17362

dewi-tik added a commit that referenced this pull request Oct 9, 2025
@authentik-automation @dewi-tik
website/docs: add entra id scim source (cherry-pick #17357 to version…
ad2ceda 
…-2025.8) (#17362)

* Cherry-pick #17357 to version-2025.8 (with conflicts)

This cherry-pick has conflicts that need manual resolution.

Original PR: #17357
Original commit: 2e03270

* Conflict fix

---------

Co-authored-by: Dewi Roberts <[email protected]>
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@tanberry tanberry tanberry approved these changes

@dominic-r dominic-r dominic-r approved these changes

Assignees

No one assigned

Labels

backport/version-2025.8 Add this label to PRs to backport changes to 2025.8

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

3 participants

@dewi-tik @tanberry @dominic-r