/
CyberArk Identity Security Platform

CyberArk Identity Security Platform

Create a SCIM User

  1. Log in to your CyberArk Identity Administration portal with an admin account.

  2. Go to Core Services > Users > Add User.

  3. Add a login name, display name, and password. Save the login name and password for use in a later step.

  4. Select the Is OAuth confidential client checkbox and click Create User.

image-20250321-192132.png

Create a Role for the SCIM User

  1. Go to Core Services > Roles > Add Role.

  2. Enter a name for the SCIM role save it. This name will be used in a later step

  3. Go to Administrative Rights and add the Role Management, User Management, and Vault Management rights.

  4. Go to the Members page, click Add, and search for and select the previously created user.

  5. Click Save.

Create an OAuth App

  1. Go to Apps & Widgets > Web Apps and click Add Web Apps.

image-20250321-185738.png

  1. Go to the Custom tab and click Add next to OAuth2 Client.

image-20250321-185923.png

  1. Click Yes.

image-20250321-190012.png

  1. Set a name in Application ID field. This value will be used in later step.

image-20250321-190543.png

  1. Go to Tokens and enable Client Creds.

image-20250321-190520.png

  1. Go to the Scope tab and click Add.

image-20250321-190643.png

  1. Add scim as the name. Add scim* and core* in the REST Regex and click Save.

image-20250326-184030.png

  1. Go to the Permissions tab and click Add.

image-20250321-191019.png

  1. Search for the role you created, select the checkbox next to the name, and click Add.

image-20250321-191046.png

  1. Add the View permission for the SCIM role and click Save.

image-20250321-191223.png

  1. Go to General Usage, copy the SCIM endpoint in the Issuer section, and securely save it to use in a later step.

image-20250321-191748.png

Set up Application Integration

  1. Log in to Zilla with admin permissions and click Add Application.

image-20241128-104820.png

  1. Search for CyberArk Identity Security Platform and click Add to Applications.

image-20250401-091247.png

  1. Add a business and technical owner, indicate whether the app is mission-critical, and click Add to Applications.

image-20250326-184254.png

  1. Click Sync now.

image-20250326-184326.png

  1. Enable API Integration and enter the required information obtained from earlier steps:

    1. Enter the Application ID obtained in an earlier step in OAuth Application ID field.

    2. Enter SCIM endpoint obtained in an earlier step. Do not include / at the end of the endpoint, for example, zilla.id.integration-cyberark.cloud.

    3. Enter the SCIM user’s username in the Client ID field.

    4. Enter the SCIM user’s password in the Client Secret field.

  2. Click Sync Now/Next.

image-20250326-184425.png

  1. Click Next.

image-20250326-184449.png

  1. Click Done.

image-20250326-184522.png

  1. Review the sync summary and click Close.