Protect what matters – even after you're gone. Make a plan for your digital legacy today.
Forum Discussion
SCIM Bridge Fails Sync
We're running SCIM Bridge 2.9.9 and the only method to achieve a successful sync and subsequent provisioning of accounts, is by logging into the Bridge and manually executing the "Sync Groups" function. All 5 status indicators in the Bridge are green and state "Connected", the Google Workspace User Provisioning integration within our 1Password console reflects "Good" health, successful connection with the bridge, and Provisioning users and groups is enabled.
There is an error in the SCIM log about a certificate, but it does not prohibit a successful sync with the "Sync Groups" groups function in the bridge. Log snippet with IP Address redacted:
"certificate is not allowed for server name xxx.xxx.xxx.xxx: certificate for 'xxx.xxx.xxx.xxx' is not managed","domain":"xxx.xxx.xxx.xxx","time":"2025-04-11T00:05:55Z","message":"certificate manager error while getting certificate"
There are no other errors in the log.
Please advise
2 Replies
Hi, has this been sorted out internally?
We are facing the same issue for the last 6 months across several versions of SCIM Bridge, currently running v2.9.13.
We have SCIM bridge deployed in GKE and use Google Workspace as identity provider. Normally, everything works fine. All users can sign in, we can grant them access or perform recoveries just fine.
The exception is when a new person joins the company. Then we need to visit the SCIM bridge page with our bearer token - this triggers a reconciliation of groups and after this the new person is invited.
There is exactly 0 helpful logs coming from the SCIM bridge. Over the last 14 days I can see roughly 7k logs from the SCIM bridge deployment.
One half of them are info messages "checking for accepted invitations from provisioned users".
The other half of those messages is utterly unhelpful warning "User's preferred language is not supported. Language will be defaulted to English or the user's previously selected language."
Note that we are receiving this warning for all users including those that are UK and US nationals.
Please do investigate- 1P_Tommy
Moderator
Please email us using support@1password.com. Be sure to use the email address tied to the account in question.
That way our technical team can help you determine what's going on. I'd recommend including the log message in your reply.
