Prerequisites for User Synchronization
To enable user synchronization between your IdP and FlexNet Operations, specific configurations and access permissions must be in place. The following prerequisites outline what’s required for a successful setup.
Requirements for Setting Up User Sync in FlexNet Operations
The user configuring the user synchronization for the Producer Portal and/or the End-User Portal must have a role with the Manage SAML SSO permission.
Single sign-on with SAML must be configured for the portal whose users are to be synced (Producer Portal and/or End-User Portal). For more information, see Single Sign-On Support with SAML.
FlexNet Operations supports any identity provider that complies with SCIM 2.0 and later. Examples include:
| • | Okta (https://www.okta.com) |
| • | Microsoft Entra (https://www.microsoft.com/en-gb/security/business/microsoft-entra) |
| • | Salesforce (https://www.salesforce.com). |
To enable secure communication for user synchronization between the IdP and FlexNet Operations, you must provide the following information in your IdP:
| • | Base URL—Point your IdP to the following endpoints to communicate with FlexNet Operations: |
| • | Producer Portal |
https://<siteID>-fno.flexnetoperations.com/scim/v2
| • | End-User Portal |
https://<siteID>.flexnetoperations.com/scim/v2
In both URLs, replace <siteID> with your organization’s site ID which is supplied by Revenera.
| • | API Token—Provide the access token generated by FlexNet Operations. The token can be generated in the Producer Portal (under Accounts & Users > Manage Access Tokens). The token type must be NORMAL. |
Tip:For more information about token generation, see Managing Access Tokens.