Teams and Businesses

Connect JumpCloud to 1Password SCIM Bridge

Learn how to set up and use 1Password SCIM Bridge to integrate with JumpCloud.

Important

Before you can integrate with JumpCloud, you’ll need to set up and deploy 1Password SCIM Bridge.

the JumpCloud logo

With 1Password Business, you can integrate 1Password with JumpCloud to automate many common administrative tasks:

Provision

  • Create users. Users created in JumpCloud will also be created in 1Password.
  • Update user attributes. Changing user attributes in your directory will change the mapped attributes in 1Password.
  • Deactivate users. Deactivating a user or disabling the user’s access to 1Password in JumpCloud will suspend the user in 1Password.

Import

  • Import users. Users created in 1Password will be matched against existing JumpCloud users.

Sync groups

  • Push groups. Groups created in JumpCloud will also be created in 1Password, and group membership changes in JumpCloud will also be made in 1Password.

To get started, sign in to your account on the JumpCloud Administrator Portal  and follow these steps.

Step 1: Add the 1Password Business application to JumpCloud

To add the 1Password Business application to JumpCloud:

  1. Click SSO in the sidebar, then choose Add New Application.
  2. Search for 1Password and click Configure.
  3. Enter “1Password Business” for the display label.
  4. Click Bookmark, then enter the sign-in address for your 1Password Business account, for example: https://example.1password.com.
  5. Click Activate.

Step 2: Configure the application

On the SSO page, click the 1Password Business application to reopen the configuration panel. Then follow these steps.

  1. Click Identity Management.

  2. Make sure “Enable management of User Groups and Group Membership in this application” is turned on, then click Configure.

  3. Enter your Base URL and Token Key, then click Activate.

    Base URL: the URL of your SCIM bridge (not your 1Password account sign-in address). For example: https://scim.example.com

    If you don’t know your URL, make sure you’ve set up and deployed the SCIM bridge.

    Token Key: the bearer token for your SCIM bridge.

    Learn what to do if you don’t have your bearer token.

  4. Click the User Groups tab to manage who will be provisioned to 1Password, then click Save.

Configure the 1Password Business application

Important

Confirm that your base URL uses https and does not include a forward slash (/) at the end. For example: https://scim.example.com

Next steps

When you turn on provisioning, existing 1Password users will be linked to JumpCloud users if their email address matches. If their email address is different, they’ll be invited to 1Password again, so make sure any affected team members update their email address before you turn on provisioning.

If you have existing groups in 1Password that you want to sync with JumpCloud, add them to the groups managed by provisioning. Click View Details in the setup assistant or click Integrations in the sidebar and choose Manage. Click Manage in the Managed Groups section, then select the groups to sync.

If you’ve previously used the SCIM bridge, make sure to select any groups that were already synced with JumpCloud. This will prevent problems syncing with your identity provider, including duplicate groups.

Manage your settings

To manage assigned users and groups, open the 1Password Business application and click User Groups.

  • To add or remove a user group, select or deselect the checkbox beside the group you want to add or remove, then click save.
  • To add or remove a user, click the group where you want to add or remove a user. In the configuration panel for the group, click Users. Select or deselect the checkbox beside the user you want to add or remove from the group, then click Save.

Learn more about how to authorize users to an application in JumpCloud. 

To turn off synchronization, open the 1Password Business application and click “Deactivate IdM connection”. Click Confirm, then click Save.

Learn more about using JumpCloud for identity management with 1Password. 

Get help

If you update the bearer token for your SCIM bridge, you’ll also need to update it in JumpCloud:

  1. Open the 1Password Business application.
  2. Click “Deactivate IdM connection”, then click Confirm.
  3. Click Identity Management, then click Configure.
  4. Enter the URL of your SCIM bridge and your new bearer token.
  5. Click Activate, then click Save.

Still need help?

If this article didn't answer your question, contact 1Password Support.

Published: