Teams and Businesses

Connect JumpCloud to the 1Password SCIM bridge

Learn how to set up and use the 1Password SCIM bridge to integrate with JumpCloud.

Image placeholder

With 1Password Business, you can automate many common administrative tasks using the 1Password SCIM bridge. It uses the System for Cross-domain Identity Management (SCIM) protocol to connect 1Password with JumpCloud, so you can:

Provision

  • Create Users. Users created in JumpCloud will also be created in 1Password.
  • Update User Attributes. Changing a user’s name in JumpCloud will change their name in 1Password.
  • Deactivate Users. Deactivating a user or disabling the user’s access to 1Password in JumpCloud will suspend the user in 1Password.

Import

  • Import Users. Users created in 1Password will be matched against existing JumpCloud users.

Push Groups

  • Push Groups. Groups created in JumpCloud will also be created in 1Password, and group membership changes in JumpCloud will also be made in 1Password.

Before you can configure JumpCloud, you’ll need to set up and deploy the SCIM bridge.

To get started, sign in to your account on the JumpCloud Administrator Portal  and follow these steps.

Add the 1Password Business application to JumpCloud

To add the 1Password Business application to JumpCloud:

  1. Click SSO in the sidebar, then click the plus button to add a new application.
  2. Search for 1Password and click Configure.
  3. In the General Info section, enter “1Password Business” for the display label.
  4. Click Bookmark, then enter the sign-in-address for your 1Password Business account, for example: https://example.1password.com.
  5. Click Activate.

Configure the integration

On the SSO page, click the 1Password Business application to reopen the configuration panel. Then follow these steps.

  1. Click Identity Management.

  2. Make sure “Enable management of User Groups and Group Membership in this application” is turned on, then click Configure.

  3. Enter your Base URL and Token Key.

    Base URL: the URL of the TLS-secured API gateway, proxy, or load balancer where you’ve configured the 1Password SCIM bridge. For example: https://scim.example.com

    Token Key: your OAuth bearer token

    Use the bearer token you saved in 1Password when you set up and deployed the SCIM bridge.

  4. Click Activate, then click Save.

Get help if you don’t have your bearer token.

Configure the 1Password Business application

Settings

To manage assigned users and groups, open the 1Password Business application and click User Groups.

  • To add or remove a user group, select or deselect the checkbox beside the group you want to add or remove, then click save.
  • To add or remove a user, click the group where you want to add or remove a user. In the configuration panel for the group, click Users. Select or deselect the checkbox beside the user you want to add or remove from the group, then click Save.

Learn more about how to authorize users to an SSO application. 

To turn off synchronization, open the 1Password Business application and click “Deactivate IdM connection”. Click Confirm, then click Save.

Learn more about using JumpCloud for identity management with 1Password. 

Next steps

If you have existing groups in 1Password that you want to sync with JumpCloud, add them to the groups managed by provisioning. Click View Details in the setup assistant or click Integrations in the sidebar and choose Manage. Click Manage in the Managed Groups section, then select the groups to sync.

If you’ve previously used the SCIM bridge, make sure to select any groups that were already synced with JumpCloud. This will prevent problems syncing with your identity provider, including duplicate groups.

Get help

If you update the bearer token for your 1Password SCIM bridge, you’ll also need to update it in JumpCloud:

  1. Open the 1Password Business application.
  2. Click “Deactivate IdM connection”, then click Confirm.
  3. Click Identity Management, then click Configure.
  4. Enter the URL of your 1Password SCIM bridge and your new bearer token.
  5. Click Activate, then click Save.

Still need help?

If this article didn't answer your question, contact 1Password Support.

Published: