Setting up SCIM with Okta

To enable SCIM, you must first set up SAML SSO with Okta. Read this article to find out how.

First, go to Workspace settings, which you'll find under your workspace name in the top left corner:

Enable SCIM provisioning and click Reveal to retrieve an OAuth token:

Paste the OAuth token into Okta, click "Test API Credentials", then Save:

Note:Link to this section

  • To use SCIM, SAML has to be enabled and correctly configured.
  • After user creation, given name and family name fields can only be updated by the users themselves in Whimsical.
  • Provisioned users will receive an activation email and will have to log in through SAML to appear in your workspace in Whimsical.
  • If the editor role is set to undefined, the user will be provisioned with the default role enabled in the Whimsical workspace.
  • If you disable SAML in your Whimsical settings, SCIM will also be disabled. After reenabling SAML and SCIM, you will have to import all users into Okta.
  • Once SCIM is enabled, please make any user role changes directly from Okta since Okta will overwrite the choices made within the Whimsical app.
  • Email addresses must be sent to Whimsical in lower case, to do this you can change the Whimsical user name format in Okta to "String.toLowerCase(user.email)" or "String.toLowerCase(user.login)":

Written by:

  • Dārta

    Dārta