Apple Business Manager allows customers using Azure AD as their identity provider to sync user accounts to Vanta under the Access page.
Vanta makes read-only API requests to the Apple Business Manager SCIM API.
An Apple Business Manager account with admin permissions and SSO enabled is required for this integration.
Connecting Vanta & Apple Business Manager
From the left-hand navigation panel, select Integrations
Select the Available tab, and search for Apple Business Manager
Select Connect
The pop-up modal will ask for an API key. Keep this modal open.
Obtaining your API Key and Tenant URL
Sign into your Apple Business Manager with a user that has the role of Administrator or People Manager
Select your name at the bottom of the sidebar, select Preferences, then select Directory Sync
Select Connect next to SCIM, select Copy and then select Close
Copy the Tenant URL and Bearer Token visible on this page and paste them in the pop-up modal in Vanta
Select Validate and Store credentials
For further help on how to obtain the Bearer Token and Tenant ID please see Apple Business Manager documentation.
Configure the Scope
Establish which resources items should be marked in or out of scope for your audit
You can configure scopes later by clicking on Configure scope on the connected A card from the integrations page
Common Issues
If you're encountering the "No users found in Apple Business Manager account" error message in Microsoft Entra IDP, it could be because the "Assignment required" option is set to "No." To fix this, follow these steps:
Go to the Entra Admin Center and navigate to Applications.
Select your Apple Business Manager app.
Under Properties, ensure that the "Assignment required" option is enabled.