Identity, SSO and SCIM
Overview & Concepts
Understanding SCIM and its Role in BluSKY Integration
Explains what SCIM is, how it automates add/edit/delete for people and groups, and what it synchronizes between your IdP and BluSKY. Includes a plain‑English setup outline (enable SCIM, configure IdP like Azure AD/Okta/OneLogin, map attributes, test & monitor) plus pros/cons of the standard.
BluINFO Link → (BluINFO)
SSO Integration (SAML 2.0) — Requirements & Flow
Details BluSKY’s SAML‑based SSO: BluSKY EntityID and AssertionConsumerServiceUrl, the metadata you provide (SSO/SLO URLs, signing, encryption, IdP certs), and how SP‑initiated vs IdP‑initiated flows work. Notes licensing/pro‑services prerequisites for enabling SSO.
BluINFO Link → (BluINFO)
BluSKY Login Process — End‑User SSO How‑To
Short Q&A for users: where to click the SSO button at login, email domain lookup behavior, and when to use standard login vs SSO. Includes basic troubleshooting and security best practices around 2FA and device hygiene.
BluINFO Link → (BluINFO)
Setup & Configuration (IdP & SCIM)
How to Set Up BluSKY’s SCIM with Azure Active Directory (Entra ID)
Step‑by‑step guide for provisioning from Azure AD: where to point the Tenant URL, how to obtain a JWT by calling BluSKY’s /scim/token, and required RBAC in BluSKY. Explains BluSKY’s mapping (SCIM Groups ⇄ Occupancies; Users ⇄ People), how to place the Azure Group ObjectId into the Occupancy SCIM Identifier, and Azure licensing/sync cadence notes.
BluINFO Link → (BluINFO)
SCIM Configuration Interface in BluSKY (Admin UI)
Release notes introducing the Administration → SCIM Configuration pages to create, edit, list, and delete SCIM configs. Adds a SCIM Permission Service to restrict who can manage configurations and clarifies integration paths with Active Directory.
BluINFO Link → • Summary → (BluINFO)
SCIM Identifier in Occupancy Details
Reporting enhancement that exposes the SCIM Identifier within the Occupancy Details Report, making it easier to verify group–to–occupancy mappings and audit provisioning.
BluINFO Link → (BluINFO)
Hybrid Models & API (SCIM + API)
The Power of Database Integration in Multi‑Tenant Commercial Office Buildings
Practical overview of four integration paths—SCIM, API, Hybrid (SCIM + API for card numbers/advanced access), and CSV—with pros/cons for each. Recommends a hybrid approach when you want simple lifecycle automation via SCIM plus full credential and access control via API.
BluINFO Link → (BluINFO)
BluB0X API Guidance (People & Non‑Employee Feeds)
Implementation guide for automated data flows from HR/AD systems into BluSKY using the REST API. Covers designing feeds for employees, contractors, vendors, and visitors—useful for complementing SCIM where credential or policy details live outside the SCIM schema.
BluINFO Link → (BluINFO)
API Integration Testing & Certification Process
Outlines BluB0X’s certification steps for API integrations, ensuring functional coverage, security, and compatibility. A good reference when formalizing a Hybrid (SCIM + API) approach with custom automations.
BluINFO Link → (BluINFO)
BluSKY Tenant Administrator Quick Guide (Automation Section)
Quick‑start orientation for tenants that highlights when to choose SCIM vs API, how to coordinate setup with IT, and a reminder to follow the API certification process when building custom integrations.
BluINFO Link → (BluINFO)
IdP Compatibility & Presentations
BluSKY SSO Compatibility List (Master Slide)
Reference list of SSO platforms validated with BluSKY, including Azure Active Directory, Okta, PingFederate, OneLogin, SecureAuth, and more—useful for early planning and security review.
BluINFO Link → (BluINFO)
User Log On Using B2B VPN, SSO & Active Directory (Slide)
High‑level slide illustrating SSO authentication options into BluSKY and the network prerequisites (e.g., B2B VPN) some enterprise environments require. Helpful for IT architecture walkthroughs.
BluINFO Link → (BluINFO)
Release Notes & What’s New (Identity Highlights)
January 2025 — SSO Login Support Added
BluSKY core platform release adds native SSO login support, simplifying user access and aligning with enterprise identity strategies.
BluINFO Link → (BluINFO)
July 2025 – 2 — BluBØX AI iOS App v1.0.3 (SSO for BluREMOTE)
Mobile update introduces SSO for BluREMOTE alongside location‑aware facility selection and UX refinements—bringing IdP convenience to the field.
BluINFO Link → (BluINFO)
September & October 2024 — SCIM Admin Pages & Permissions
Introduces the SCIM Configuration and Edit pages, a consolidated SCIM List view, and a SCIM Permission Service to control who can manage configurations.
BluINFO Link → • Summary → (BluINFO)
February 2024 — SCIM Identifier in Occupancy Reporting
Occupancy Details Report adds the SCIM Identifier field—handy for auditing group/occupancy mappings and troubleshooting provisioning.
BluINFO Link → (BluINFO)
Solutions & Use Cases
Solutions for Technology
Notes BluSKY’s single sign‑on and automated database integration, with guidance to use the BluSKY API for company‑wide security admin. Good starting point for corporate IT teams.
BluINFO Link → (BluINFO)
Solutions for Ports
Emphasizes single sign‑on and multi‑source integration for complex, distributed environments—illustrative of how identity scales across facilities.
BluINFO Link → (BluINFO)
Solutions for Family Office
Highlights single sign‑on within tailored operations—useful for smaller, high‑security environments consolidating identity under BluSKY.
BluINFO Link → (BluINFO)
Case Study: BluB0X × R1
Real‑world deployment where SCIM integrated with R1’s Active Directory to automate credential provisioning and streamline user management across a large, distributed footprint.
BluINFO Link → (BluINFO)
Comparisons & Training
BluB0X Security vs. Feenics Systems (Training)
Comparative matrix noting SCIM Integration and AD Integration support on the BluB0X side—useful for specifiers and consultants evaluating identity capabilities.
BluINFO Link → (BluINFO)
Security & Compliance (Identity Adjacent)
BluBØX Information Security (Assured Control excerpts — Internet Security Basics)
Describes how BluSKY mobile apps authenticate to the BluB0X API and how tokens/credentials are protected on iOS/Android—context for IdP/SSO trust chains and session security.
BluINFO Link → (BluINFO)
BluBØX Information Security (Certificates & TLS)
Summarizes BluSKY’s mutual‑trust approach using server/client certificates and TLS—useful background for security reviews of SSO/SCIM deployments.
BluINFO Link → (BluINFO)
Support, Licensing & BluCARE
MSRP Pricing (Professional Services)
Line items for SSO Integration (PER HR) and related professional services. Use this to scope SSO/SCIM projects and estimate effort.
BluINFO Link → (BluINFO)
BluCARE Support (Help Center)
Central support hub for how‑to articles and contacting BluCARE. If an identity topic isn’t documented yet, you can request a new article.
BluINFO Link → (BluINFO)
Quick Links (Most Requested)
SSO (SAML) Requirements — Open (BluINFO)
SCIM with Azure AD — Open (BluINFO)
SCIM Admin UI & Permissions — Open (BluINFO)
IdP Compatibility List — Open (BluINFO)
Hybrid Integration (SCIM + API) — Open (BluINFO)