Grant roles through 3rd party

This is a guide to grant roles externally through third parties

How to use user groups to grant service access externally

  1. It is possible to grant roles externally through user groups.
  2. To set this up, Authentication Settings is required, this can be activated in Visma.net Admin under the services tab on the company or as a customer level service through the granting of Authentication Administrator role on customer level.
  3. If the service is activated on a company, access is granted on the company by selecting the Authentication Administrator role, the company and the user that should have access and then clicking grant role.
  4. In Authentication Settings two things are required, domain verification and SCIM 2.0 integration. See Authentication Settings documentation for more information: https://docs.connect.visma.com/docs/authentication-settings/
  5. Once scim provisioning is enabled, groups will be sent from the third party to Visma Connect through Authentication Settings. It will then be found in Visma.net Admin as a user group. You can then add roles to this user group to grant roles from an external IDP.
Last modified January 8, 2026