SCIM bridge deployment on Azure with private endpoint

Hi,

I have setup a 1Password SCIM bridge successfully on Azure using the json template aca-op-scim-bridge-template.json.

What I noticed is that the SCIM bridge is using a public URL which is also used with the Entra integration. Azure SCIM service is using the public URL and a bearer token to make connection to the 1Password SCIM bridge.

I do see that it is possible to setup IP restriction on the URL but the problem is that the Azure SCIM service is using changing IP's.

My first thought is using a private endpoint on the SCIM bridge and disallow public access.
Does anyone already realized that? Is there a template for?
Or am I thinking to difficult?

Thanks in advance,

Wim

integrations

scim

security

Forum Discussion

SCIM bridge deployment on Azure with private endpoint

Featured discussions

December 2025 at 1Password: More browser options, easier sign-in, and safer saving and filling

Recent discussions

SSH Agent Forwarding to Remote Mac

[BUG REPORT] Two issues when editing multiple password fields

Critical: op item move caused loss of OTP field (irrecoverable 2FA data)

1Password Connect Doesn't Appear to Sync Permissions

1Password Connect Token Permissions Don't Appear to be Granular