{"id":4979,"date":"2024-01-05T11:20:29","date_gmt":"2024-01-05T19:20:29","guid":{"rendered":"https:\/\/SUMMALAI.COM\/?p=4979"},"modified":"2024-01-05T11:20:30","modified_gmt":"2024-01-05T19:20:30","slug":"how-to-troubleshoot-1password-azure-scim-bridge","status":"publish","type":"post","link":"https:\/\/SUMMALAI.COM\/?p=4979","title":{"rendered":"How to Troubleshoot 1Password Azure SCIM Bridge"},"content":{"rendered":"\n<p>All Kubernetes commands are run from the Azure Cloud Shell.<br>\u00a0<br><strong><u>First, Let&#8217;s check if your pod was running:<\/u><\/strong><\/p>\n\n\n\n<pre class=\"wp-block-code\"><code>kubectl get pods<\/code><\/pre>\n\n\n\n<p>\u00a0<br><strong><u>Next, check your SCIM bridge logs to see if there is any errors:<\/u><\/strong><\/p>\n\n\n\n<pre class=\"wp-block-code\"><code>kubectl logs deploy\/op-scim-bridge -f<\/code><\/pre>\n\n\n\n<p>\u00a0<br>Semms Let&#8217;s Encrypt rate-limited the server from obtaining a new TLS certificate; therefore, you will need to update your DNS record to bypass this.<br>\u00a0<br>for example, update the URL from\u00a0<em>scim.example.org<\/em>\u00a0to\u00a0<em>scim1pass.example.org<\/em><br>\u00a0<br><strong><u>Update the OP_TLS_DOMAIN with the new DNS record:<\/u><\/strong><br>\u00a0<\/p>\n\n\n\n<pre class=\"wp-block-code\"><code>kubectl set env deploy\/op-scim-bridge OP_TLS_DOMAIN=scim1pass.calgaryunitedway.org<\/code><\/pre>\n\n\n\n<p>\u00a0<br>After this, Regenerate Credentials once more to have a fresh set.<br>\u00a0<br><strong><u>Delete the old <em>scimsession<\/em> secret and put in the new one:<\/u><\/strong><br>\u00a0<\/p>\n\n\n\n<pre class=\"wp-block-code\"><code>kubectl delete secret scimsession<\/code><\/pre>\n\n\n\n<pre class=\"wp-block-code\"><code>kubectl create secret generic scimsession --from-file=scimsession=\/home\/$USER\/scimsession<\/code><\/pre>\n\n\n\n<p>\u00a0<br>Next, Let&#8217;s loaded the new SCIM bridge URL and entered the new\u00a0<em>bearer token<\/em>\u00a0to confirm everything was up and running! And it was!<br>\u00a0<br><strong><u>Finally, we had to update the Entra ID 1Password Enterprise app to have the new SCIM bridge URL and new\u00a0<em>bearer token:<\/em><\/u><\/strong><br>\u00a0<\/p>\n\n\n\n<ol class=\"wp-block-list\" type=\"1\"><li>Navigate to the 1Password Business Enterprise app.<\/li><li>Click&nbsp;<strong>Provisioning<\/strong>.<\/li><li>Click&nbsp;<strong>Provisioning<\/strong>&nbsp;again.<\/li><li>Expand&nbsp;<strong>Admin Credentials<\/strong>.<\/li><li>Update the&nbsp;<em>URL<\/em>&nbsp;and&nbsp;<em>API token<\/em>.<\/li><li>Click&nbsp;<strong>Test Connection.<\/strong><\/li><li>Click&nbsp;<strong>Save<\/strong>.<\/li><li>Click&nbsp;<strong>Overview<\/strong>.<\/li><li>Click&nbsp;<strong>Restart Provisioning.<\/strong><\/li><\/ol>\n\n\n\n<p>\u00a0<br>We now have the SCIM bridge back in working order!<br><br><\/p>\n","protected":false},"excerpt":{"rendered":"<p>All Kubernetes commands are run from the Azure Cloud Shell.\u00a0First, Let&#8217;s check if your pod was running: \u00a0Next, check your SCIM bridge logs to see if there is any errors: \u00a0Semms Let&#8217;s Encrypt rate-limited the server from obtaining a new TLS certificate; therefore, you will need to update your DNS record to bypass this.\u00a0for example, <a class=\"read-more\" href=\"https:\/\/SUMMALAI.COM\/?p=4979\">Read More<\/a><\/p>\n","protected":false},"author":2,"featured_media":0,"comment_status":"closed","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"_bbp_topic_count":0,"_bbp_reply_count":0,"_bbp_total_topic_count":0,"_bbp_total_reply_count":0,"_bbp_voice_count":0,"_bbp_anonymous_reply_count":0,"_bbp_topic_count_hidden":0,"_bbp_reply_count_hidden":0,"_bbp_forum_subforum_count":0,"om_disable_all_campaigns":false,"_monsterinsights_skip_tracking":false,"_monsterinsights_sitenote_active":false,"_monsterinsights_sitenote_note":"","_monsterinsights_sitenote_category":0,"footnotes":""},"categories":[1734,1249,10],"tags":[],"class_list":["post-4979","post","type-post","status-publish","format-standard","hentry","category-1password","category-azure-microsoft","category-microsoft"],"aioseo_notices":[],"_links":{"self":[{"href":"https:\/\/SUMMALAI.COM\/index.php?rest_route=\/wp\/v2\/posts\/4979","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/SUMMALAI.COM\/index.php?rest_route=\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/SUMMALAI.COM\/index.php?rest_route=\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/SUMMALAI.COM\/index.php?rest_route=\/wp\/v2\/users\/2"}],"replies":[{"embeddable":true,"href":"https:\/\/SUMMALAI.COM\/index.php?rest_route=%2Fwp%2Fv2%2Fcomments&post=4979"}],"version-history":[{"count":1,"href":"https:\/\/SUMMALAI.COM\/index.php?rest_route=\/wp\/v2\/posts\/4979\/revisions"}],"predecessor-version":[{"id":4980,"href":"https:\/\/SUMMALAI.COM\/index.php?rest_route=\/wp\/v2\/posts\/4979\/revisions\/4980"}],"wp:attachment":[{"href":"https:\/\/SUMMALAI.COM\/index.php?rest_route=%2Fwp%2Fv2%2Fmedia&parent=4979"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/SUMMALAI.COM\/index.php?rest_route=%2Fwp%2Fv2%2Fcategories&post=4979"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/SUMMALAI.COM\/index.php?rest_route=%2Fwp%2Fv2%2Ftags&post=4979"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}