Signing back into the Community for the first time? You'll need to reset your password to access your account. Find out more.
Azure container app provisioning not working
It used to work on 2.9.6 version. But it broke aswell after a couple of months. I read somewhere that the version needs to be up-to-date to have the provisioning work. Now after upgrading to 2.9.9 the SCIM bridge site is all green but no information is being brought in to 1password. I tried to search for a fix but I just cant figure out what the problem is.
SCIM - Hosting Redis Externally
I'm looking to deploy the SCIM bridge on AWS, and generally we prefer to run Redis using the AWS managed Elasticache service rather than embedding it locally. Is there a way to point it to an external cache, or does it have to run combined with the SCIM bridge in the deployment?1Password Hosted SCIM Bridge
I would love the option (even at a small added fee) for 1Password to host a SCIM Bridge rather than our customers being required to spin up additional infrastructure to add the bridge. As an MSSP/MSP providing 1Password to many of our customers, the management of so many SCIM bridges would likely be time consuming to manage. How are other MSSP/MSPs setting up SCIM Bridges for their multiple customers? Do you host a VM/computer for each customer and connect each one individually, or are you not using this capability? Curious to hear how the rest of the community is handling this.How to update SCIM bridge in Entra
Started getting error messages from 1P and Entra that the SCIM bridge stopped working. The 1P admin panel says to update the SCIM bridge. Where do I actually enter those credentials in Entra? p.s. kudos to the engineer that figured out the copy/paste image in markdown! 1Password Version: 1Password for Windows 8.10.56 (81056028) Extension Version: 8.10.56.28 81056028, on STABLE channel OS Version: Win 11 26100.2605 Browser: Edge
Google Workspace suspended users not made inactive in 1Password
Our Google Workspace SCIM bridge was initially working, but at some point users who are suspended in Google Workspace stopped being inactivated in 1Password. Health checks are successful. Status for each service shows "connected". New users are provisioned. I do find the following error in the logs occasionally (some info redacted): { "time": "2024-12-03T14:31:52.567297803Z", "stream": "stdout", "_p": "F", "log": "2:31PM ERR failed to renew subscription error=\"retry: max execution times reached (3): Server: (failed to Subscribe), failed to WatchForReportsEvent for event sync: Server: (failed to reportsAPI.Activities.Watch), googleapi: Error 400: Invalid request: Event sync not found in manifest., invalid\" application=op-scim build=209073 component=SubscriptionRenewal hostname=[redacted] instance_id=[redacted] version=2.9.7", "kubernetes": { "pod_name": "op-scim-bridge-6748d55f96-8vk79", "namespace_name": "op-scim-bridge", "pod_id": "c0aefdea-b580-4a55-ba54-97dc7c6f95ac", "labels": { "app": "op-scim-bridge", "pod-template-hash": "6748d55f96" }, "host": "ip-172-20-147-56.ec2.internal", "container_name": "op-scim-bridge", "docker_id": "06e0c79868d4da30d4afd190ae737b69225582c8c8b3c6fbf3f4457727108f9a", "container_hash": "docker.io/1password/scim@sha256:d672c06ed2d8faa9e9bbe317324c4285970b0dbfbeca752d6ed2f34d93a8e0f7", "container_image": "docker.io/1password/scim:v2.9.7" } } 1Password Version: Not Provided Extension Version: Not Provided OS Version: Not Provided Browser: Not Provided
Configuration persistence through restarts
Hello, I've deployed SCIM Bridge on Kubernetes with Google Workspace, it works fine. My deployment is based on https://github.com/1Password/scim-examples Recently, the Redis pod in the deployment failed, was destroyed, and a new pod was started. SCIM Bridge continued to work however I was notified that the "synced groups" that were selected in the UI were no longer selected. So, SCIM Bridge de-provisioned access for everyone in those groups. After we regained access and re-selected the synced groups, our users regained access. My questions are, why is it suggested to use a container deployment without any persistence for an application like this if there is configuration that should be retained? Why did we lose this configuration because of a restart in Redis? Is the application saving selections made in the UI in Redis? If so, shouldn't Redis data be persisted? How can I avoid this problem in the future? 1Password Version: Not Provided Extension Version: Not Provided OS Version: Not Provided Browser: Not ProvidedSCIM Azure UPN/Email
Hello! We have recently implemented a tiering model for servers/applications, and we are looking to do the same for 1Password. Having access codes associated with our regular account could pose a security risk. Accounts are provisioned with SCIM from Entra ID, but tiered accounts have a different email than their UPN. How can I send the invitation to a different email address? 1Password Version: Not Provided Extension Version: Not Provided OS Version: Not Provided Browser: Not Provided
