Apple Business Manager allows customers using Azure AD as their identity provider to sync user accounts to Vanta under the Access page.
Vanta makes read-only API requests to the Apple Business Manager SCIM API.
An Apple Business Manager account with admin permissions and SSO enabled is required for this integration.
Connecting Vanta & Apple Business Manager
- From the left-hand navigation panel, select Integrations
- Select the Available tab, and search for Apple Business Manager
- Select Connect
- The pop-up modal will ask for an API key. Keep this modal open.
Obtaining your API Key and Tenant URL
- Sign into your Apple Business Manager with a user that has the role of Administrator or People Manager
- Select your name at the bottom of the sidebar, select Preferences, then select Directory Sync
- Select Connect next to SCIM, select Copy and then select Close
- Copy the Tenant URL and Bearer Token visible on this page and paste them in the pop-up modal in Vanta
- Select Validate and Store credentials
For further help on how to obtain the Bearer Token and Tenant ID please see Apple Business Manager documentation.
Configure the Scope
- Establish which resources items should be marked in or out of scope for your audit
- You can configure scopes later by clicking on Configure scope on the connected A card from the integrations page
Common Issues
If you're encountering the "No users found in Apple Business Manager account" error message in Microsoft Entra IDP, it could be because the "Assignment required" option is set to "No." To fix this, follow these steps:
- Go to the Entra Admin Center and navigate to Applications.
- Select your Apple Business Manager app.
- Under Properties, ensure that the "Assignment required" option is enabled.
Updated