Tableau Cloud (SCIM): Unifying the Dimensions


Tableau Cloud (SCIM): Unifying the Dimensions

Get ready to embark on an epic quest as we unravel the complexities of user provisioning and management across multiple systems and domains. Brace yourself for the introduction of Tableau Cloud System for Cross-Domain Identity Management (SCIM). Prepare to experience the thrill of simplified user onboarding, consistent access controls and attribute synchronization. SCIM will become your trusted guide, ensuring data security and enabling seamless collaboration across diverse IT landscapes.

Tableau Cloud SCIM: A Superhero for Simplified User Onboarding and Access Control

Picture yourself as a systems administrator responsible for managing user accounts, group permissions and access to various applications. In this digital age, where we have countless applications for every job, the task becomes infinitely challenging. A single user may require 100 different user accounts to be provisioned for 100 different applications. That’s where Tableau Cloud with SCIM steps in to save the day with automatic, systematic and hydromatic user provisioning. Why, it’s SCIM lightnin’ speed user provisioning—the hero of the hour!

SCIM is a system that helps businesses manage user accounts and access to different applications more efficiently. It automates the process of adding or removing users, ensuring the right people have access to the right tools. This streamlines security and reduces the manual work for IT teams, allowing businesses to focus on their core activities.

For example, when you hire a new employee, your IT team can add their information to the identity provider (IDP), specifying which applications they should have access to. SCIM then takes this information and ensures that the employee gets the right access to all the necessary applications without your IT team needing to do each setup individually. Similarly, when someone leaves the company, SCIM helps revoke their access across all applications, enhancing security.

Mappings and Assignments: Forge Your Path to Cross-Domain Identity Management

Configuring SCIM is simpler than you might expect, and the process is similar for most IDPs. Specifically, Tableau Cloud SCIM is most compatible with Azure AD, Okta and OneLogin as IDPs, according to the latest information available. We’ve found that the most commonly used IDP is Azure AD, and thus have focused this text on Azure AD.

First, gather key details from Tableau Cloud like the secret token and tenant URL. Then, in the Azure portal, establish a new application, activate provisioning mode, and input the collected secret tokens and tenant URLs. While we realise that Azure AD is the most commonly used, we recommend that you use the same IDP for SCIM as you do for SAML Single Sign-On (SSO) for Tableau Cloud.

A more detailed set of instructions can be found in this Tableau Help Article.

Role-Specific Groups: Empowering Accurate Provisioning in Tableau Cloud

Next, establish basic mappings from your Azure groups and their attributes, as well as the users and their attributes, into Tableau Cloud. From there, it’s as simple as adding user group assignments in Tableau Cloud. Keep in mind that a user can be a member of multiple groups in Azure AD, but they will only receive the most permissive site role in Tableau Cloud. To keep track of role assignments, we recommend creating role-specific groups in Azure AD, such as “Finance Creator” and “Finance Explorer.” These groups will ensure quick and accurate provisioning of new users with the correct roles in Tableau Cloud.

Provisioning Made Magical: Unleashing the Power of Tableau Cloud SCIM

The final step in the process is to provision the user groups. After enabling SCIM support, expand the settings on the provision page and define the users and groups you want to provision. Simply give it a name, click save and watch the magic happen.

That is to say, you have the power and control to choose which groups are synchronised with your Tableau Cloud site.

Voila! With Tableau Cloud SCIM, you have now enabled and set up automatic provisioning of groups and users from your Microsoft Azure AD or other IDP into Tableau Cloud. It’s a game-changer that simplifies user management and ensures that your data remains secure and your collaboration efforts soar to new heights.

Conquer the Challenges: Streamline User Provisioning with Tableau Cloud SCIM

So, are you ready to embark on this extraordinary journey with Tableau Cloud SCIM? Get ready to streamline your user provisioning and conquer the challenges of cross-domain identity management. Together, we’ll navigate the dimensions of data security and collaboration, forging a path towards a unified and thriving digital landscape.

More About the Author

John Saunders

Platforms Architect
Tableau Bridge: The (Serverless) Space Odyssey Launching Your Serverless Expedition If you are utilising or planning to migrate to Tableau Cloud and have your data or corporate ...
Tableau Cloud (SCIM): Unifying the Dimensions Get ready to embark on an epic quest as we unravel the complexities of user provisioning and management across multiple systems and ...

See more from this author →

InterWorks uses cookies to allow us to better understand how the site is used. By continuing to use this site, you consent to this policy. Review Policy OK


Interworks GmbH
Ratinger Straße 9
40213 Düsseldorf
Geschäftsführer: Mel Stephenson

Telefon: +49 (0)211 5408 5301

Amtsgericht Düsseldorf HRB 79752
UstldNr: DE 313 353 072


Love our blog? You should see our emails. Sign up for our newsletter!