New Guide on Netskope SCIM API Available


Userlevel 3
Badge +12
  • Netskope Employee
  • 21 replies

Some of you may know that Netskope has a SCIM API which can be integrated with IDP's such as Okta, Azure AD, etc., to provision User's and Group's into a Netskope tenant.  This is a critical part of deploying Netskope since the User provisioning is a pre-requisite to deploying the Netskope client.

 

There are certain times that you may not want to integrate with the IDP or maybe you are transitioning from an on-prem Identity Store to a cloud based one and aren't quite ready, but you still want to test Netskope functionality.

 

The SCIM API can also be used to manually create users and groups and add the users into groups so that they can both be leveraged in Netskope real-time protection policies.  The guide provides a walk through on how to accomplish this task.

 

If you have some ideas on how to improve the guide or on any additions, please reach out to me to discuss.


11 replies

Userlevel 5
Badge +16

Love the documentation and effort here.   Any chance that it could be added into the Swagger within the tenant APIdocs?

https://<tenant_name>.goskope.com/apidocs/

Userlevel 3
Badge +12

@myee  Thanks for this documentation 

Userlevel 3
Badge +12

Yes, we plan to get SCIM documented in swagger.  It will be after we've moved it into a v2 model.

Userlevel 1
Badge +6

is there any way to query a user and their group memberships or the reversal, a certain group and it's members?

Userlevel 4
Badge +12

This guide is good but it's missing a key component on how to find a users SCIM ID. Their is a postman query to "List all Users" but it paginates the results so it's hard to search for a user. Is there a way to filter on a specific user in the URI being called?

Userlevel 3
Badge +12

This may be an enhancement request, let me look into it and get back to you.

Userlevel 3
Badge +12

Let me review this and get back to you on my findings.

Userlevel 4
Badge +12

We are solving this an ugly way with postman by appending this to the scim url to pull back each page

/Users?startIndex=1000&count=1000
/Users?startIndex=2000&count=1000
/Users?startIndex=3000&count=1000
...

Userlevel 3
Badge +12

I found out you can add a query to the users or group endpoint url.  To help find the user scim ID add the query in the parameters tab and you'll see just the results for the user you want.  Let me know if this helps you.

 

Userlevel 1
Badge +6

Thanks I will definitely look into this.

By any chance can you help me with the error that I encountered

{

    "status": "401",

    "description": "Supplied token not valid"

}

I was able to provide bearer, scimurl, rest api v1 and 2 and tenant url but still getting this error.

Reply