Set Up SCIM Provisioning for LastPass Using Azure Active Directory

    IT admins can easily benefit from secure administration of LastPass Business accounts by using our Azure Active Directory integration. You can view account requirements, then set up and configure the integration.

    The LastPass Business and Azure AD integration offers:
    • Secure configuration and deployment of LastPass
    • Automated provisioning of LastPass user accounts
    • Real-time deprovisioning of LastPass user accounts
    • Syncing groups for assigning users to policies and shared folders

    Account requirements

    Syncing your Azure Active Directory with LastPass requires the following:

    • A Premium tier subscription to Microsoft Azure Active Directory
    • An active trial or paid LastPass Business subscription
    • An active LastPass Business admin (required when activating your trial or paid subscription)

    The SCIM endpoint used to integrate LastPass with Azure Active Directory does not require any software installation.

    This integration does not allow users to log in to LastPass with their Azure Active Directory credentials. Completing the account setup steps below will require the user to create and remember a separate master password to log in to LastPass, which is used to create the unique encryption key for their LastPass vault.

    However, LastPass does support federated login with Azure Active Directory, which allows users to log into LastPass using their Azure Active Directory account. To set up federated login with Azure Active Directory, please see the Set Up Federated Login for LastPass Using Azure Active Directory article.

    Set up and configure

    To register and integrate your LastPass Business account with your in Azure Active Directory using SCIM Provisioning, complete all of the steps in the section below.