Last month, I had to renew a SCIM (System for Cross-domain Identity Management) token for the Entra ID Sync to Apple Business Manager.
The SCIM token is used within Apple Business for user provisioning and plays an important role in the automated user provisioning and management within Entra ID / Apple Business Manager. SCIM is an open standard protocol that manages identity data across domains.
To replace the SCIM token, you need to log in to your Apple Business environment and select Manage Apps IDs -> Directory Sync.
Under Client Secrets, you will see a number of tokens listed. Choose + Client Secret to create a new token, which we will later use in Entra ID.
When you create a Client Secret, it will be displayed in a pop-up. Copy the secret and choose Done; you won’t be able to retrieve the secret again.
Within Entra ID, navigate to Enterprise Applications -> All Applications and search for Apple Business Manager.
Select Provisioning, then paste the secret into the Secret token field under Admin Credentials.
Once you’ve done this, select Test connection.
If the test connection is successful, you have successfully renewed your SCIM token within Apple Business Manager / Entra ID, and you can now use it for tasks such as user provisioning, access control, and security, as well as for Single Sign-On (SSO) for Apple services.
Leave a comment