I am planning to cutover our user provisioning service from OKTA to Azure. We run an on-prem AD which users are synced to Azure. I am intending to configure Zscaler provisioning to use SCIM (with SAML disabled)
I have a few questions regarding using the ZScloud Azure app for authentication.
The setup guides talk about creating user attributes and claims and defining role groups. If use SCIM provisioning, some documentation mentions that these steps are not required, can anyone confirm?
SSO. Several articles mention having the user “click the Zscaler app” to login, - we need this login to be seamless and automatic, we do not want users to have to initiate anything to access Zscaler. Can someone pls confirm that when a user opens their browser, that the authentication is automatically offloaded to Azure and passed though seamlessly.