Explore documentation
  1. Welcome to Uptime 👋
  2. Frequently Asked Questions
  3. Monitoring
    1. Get started with monitoring
    2. Working with monitors
    3. Customizing monitors
    4. Monitor types
  4. On-call scheduling and alerting
    1. Get started with on-call
    2. Sending alerts to Slack ↗
    3. Connecting external calendars
    4. Advanced on-call setup
  5. Incidents
    1. Working with incidents
    2. Create incidents manually
    3. Post mortems
    4. Incident silencing
    5. Incident metadata
  6. Status pages
    1. Get started with status pages
    2. Working with status pages
  7. Integrations
    1. Integrating with Better Stack
      1. Slack
      2. Microsoft Teams
      3. iOS & Android mobile apps
      4. iOS & Android phone call alerts
      5. On-call routing number
      6. Datadog
      7. New Relic
      8. Prometheus
      9. Zabbix
      10. AWS CloudWatch
      11. Google Cloud
      12. Webhooks
      13. Okta SSO
      14. Azure SSO
      15. Jira
      16. Zapier
      17. Terraform
  8. Team and account management
    1. Team management
    2. Account settings
    3. Audit logs
    4. Migrating to pay as you go
  9. API
    1. Get started with API
  10. Monitors API
    1. Monitors
    2. Monitor groups
    3. Heartbeats
    4. Heartbeat groups
  11. On-call & Incidents API
    1. On-call calendar
    2. On-call calendar events
    3. Escalation policies
    4. Escalation policy groups
    5. Severities
    6. Severity groups
    7. Incidents
    8. Comments
  12. Integrations API
    1. New Relic Integrations
    2. Datadog Integrations
    3. AWS CloudWatch Integrations
    4. Azure Integrations
    5. Google Monitoring Integrations
    6. Grafana Integrations
    7. Elastic Integrations
    8. Prometheus Integrations
    9. Email integrations
    10. Incoming webhooks
    11. Jira integrations
    12. Slack Integrations
    13. Outgoing Webhook integrations
    14. Splunk On-Call integrations
    15. PagerDuty Integrations
    16. Catalog integration
  13. Status pages API
    1. Status pages
    2. Status page sections
    3. Status page resources
    4. Status page reports
    5. Status page report updates
  14. Other API
    1. Metadata

Microsoft Azure / Entra ID SSO & SCIM provisioning

Integrate Microsoft Azure with Better Stack for Single Sign-On (SSO) and System for Cross-domain Identity Management (SCIM) provisioning.

SSO setup

Let's set up SSO for your organization using Microsoft Azure.

Steps

  1. Go to Single Sign-On Settings.
  2. Select Microsoft Azure from the list of providers.
  3. Log in to your Microsoft Azure account.
  4. Grant permissions to the Better Stack app.
  5. After seeing a flash message: "Azure Single Sign-On was successfully connected.", you're all set!

SCIM user provisioning

With Microsoft Azure SSO, you can also use the SCIM provisioning, which automates user management in Better Stack directly from Microsoft Azure.

Steps

  1. Go to Single Sign-On Settings → Provisioning → Enable provisioning button.
  2. Open the Better Stack Enterprise Application in your Azure account.
  3. Click Provisioning in the left menu.
  4. Select Automatic Provisioning Mode.
  5. Enter the Tenant URL: https://betterstack.com/scim/v2.
  6. Copy & Paste your Secret Token.
  7. Click Test Connection to ensure Azure can connect to Better Stack.
  8. Click Save.

Provisioning is now active. Users and teams will now be automatically pushed from Azure to Better Stack.

Group provisioning

Pushing user groups from Azure to Better Stack will create corresponding teams in Better Stack. Deprovisioning a group from Azure will delete the respective team and its resources in Better Stack.

Deprovisioning can cause data loss

Deprovisioning a group from Azure will permanently delete all resources associated with the team in Better Stack. Ensure that you have backed up or transferred any essential data before proceeding.

Role-based provisioning

Better Stack supports provisioning users based on their roles. You can configure the role attribute in Azure by following these steps:

  1. Go to Enable SCIM schema editor to enable custom attribute editing for SCIM provisioning.
  2. In the Azure portal, navigate to Enterprise Applications.
  3. Choose Better Stack from the list of applications.
  4. Navigate to Manage → Provisioning.
  5. Under Mappings, select Provision Azure Active Directory Users.
  6. Check the Show advanced options box, then click Edit attribute list for Better Stack.
  7. At the bottom of the attribute table, add a new attribute:
    • Name: roleName.
    • Exact case?: check the box.
    • Click Save, and confirm with Yes.
  8. Go back to Attribute Mapping page and click Add New Mapping.
    • Under Target attribute, select the newly added roleName attribute. You can now map it like any other attribute.

Role-based provisioning: Step-by-step video guide

Additional details

  • User removal: Deactivating a user in Azure will remove them from Better Stack.
  • Reactivation: Reactivating a user in Azure will automatically re-add them to Better Stack.

After configuring provisioning, use Azure’s provisioning logs to monitor user synchronization status. Ensure that the provisioning cycle is healthy and troubleshoot any errors as needed.

You can find more details in the Microsoft Entra SCIM provisioning tutorial.

Previous article

Dynamic RBAC Assignments

Next article

Create an incident