On this page, you will find details on connecting CELUM with your identity provider (IdP). Familiarising yourself with the basic concepts and requirements will help us respond to your IdP connection request more efficiently.
Provisioning is the process of creating (registering) and managing user accounts and groups in CELUM, using information from your identity provider (IdP). We support two different provisioning methods to manage user access and group membership in CELUM. Please review the details below to choose the one that best fits your organisation’s needs:
1. Manual provisioning
Prerequisites
Single Sign-On (SSO) needs to be configured for your organisation.
With manual provisioning, users need to register a user account to be recognised as CELUM users and assigned to the appropriate organisation(s). Groups need to be created manually in CELUM. This also means that any changes made to users and groups in your IdP are not automatically synchronised and will require a manual update in CELUM.
In summary:
All organisation members need to manually register a user account in CELUM.
Changes to users or groups in your IdP are not automatically reflected in CELUM and must be updated manually.
2. Automatic provisioning
Prerequisites
Single Sign-On (SSO) needs to be configured for your organisation.
Automatic provisioning needs to be enabled for your organisation. Your IdP must support the SCIM 2.0 protocol (as client) to enable automatic provisioning.
With automatic provisioning enabled, users and groups are automatically imported from your identity provider (IdP) into CELUM. Users and groups are managed directly in your IdP and all changes are automatically synchronised in CELUM.
In summary:
Users and groups are registered automatically.
Any changes to users or groups managed through your IdP are synchronised directly to CELUM.
Our technical consultants and support will ask you for the following information to start the process:
Please let us know which provisioning type you prefer:
Manual provisioning (only SSO configuration required)
Automatic provisioning (both SSO and automatic provisioning need to be configured)
Additionally, please indicate which authorisation protocol your organisation will use:
OAuth 2.0 OpenID Connect (OIDC)
Security Assertion Markup Language (SAML)
Azure Entra ID only supports SAML with SCIM provisioning.
Once we have your preferences for provisioning and authorisation protocol, we will ask for requirements and claims information. This information is necessary to complete the setup. More detailed information will be provided by our technical consultants.
Related information
To learn how to enable User Management via Cloud (UMC) for CELUM Content (from version 24.7) and manage all users and groups via Cloud Account, see Configuring CELUM Consolidated User Management topic in the CELUM Knowlege Base.