Home
Account setup
Configure your settings in Clearance.
Synchronizing users and groups using SCIM protocol
Use the SCIM integration to synchronize users and groups from your identity management system so that you do not have to create them.
About SCIM synchronization using an API
In Clearance, the System for Cross-domain Identity Management (SCIM) protocol is used to synchronize users and groups from an identity management system into cloud-based products.

Introduction to Clearance
Learn about the Clearance collaborative investigation management system.
Getting started
Learn how to log on, log off, and change languages in Clearance.
Release notes
Check out what's new in the latest release of Clearance.
User interface tour
Get familiar with the user interface in Clearance.
Account setup
Configure your settings in Clearance.
- Setting up your account
  With Clearance, you can collaborate on cases and share digital evidence and media with other authorized investigators. As a site administrator, you must set up your account before inviting others to join the site.
- Activating your account
  To begin using Clearance, you must activate your account directly from the email that contained the invitation to join the site.
- Configuring your account information
  Before you can change your file request terms and conditions, create guest user terms and conditions, or apply the digital watermark feature, you must configure your account information.
- Configuring your report templates
  To modify the terms of acknowledgement in your eDiscovery Receipt report, you must configure your report templates.
- Setting the retention period for cases and files
  To ensure that evidence is deleted when it is no longer required, you can configure retention periods for cases and files in the recycle bin. You can also configure retention periods to automatically delete files by source or category.
- Permission levels
  Permission levels in Clearance are used to define the level of access granted on a case or a file. The different permission levels include View only, View and download, Edit, and Manage, and they can be granted to an integration, user, group, or department.
- Creating user groups
  To organize users by rank or role, and to simplify the assignment of permission and security policies in the system, you can create user groups.
- Creating user accounts
  Before someone can use Genetec Clearance™, you must create a user account for that person. After you have created the user's account, they can be granted access to cases and files.
- Synchronizing users and groups using SCIM protocol
  Use the SCIM integration to synchronize users and groups from your identity management system so that you do not have to create them.
  - About SCIM synchronization using an API
    In Clearance, the System for Cross-domain Identity Management (SCIM) protocol is used to synchronize users and groups from an identity management system into cloud-based products.
  - Provisioning users and user groups using SCIM
    You can import your existing list of users and groups from Azure Active Directory into Clearance using the SCIM integration.
  - SCIM and Clearance attributes mapping
    When you synchronize an Active Directory (AD) with Clearance using the SCIM integration, SCIM attributes are mapped to Clearance identity attributes.
- Adding existing users to groups
  To organize users by rank or role and to ensure that their access policies for cases, or security policies are always the same, you can add users to groups.
- Creating integrations
  Before you can configure an external system, such as an application, device, plugin, or API for use with Clearance, you must create an integration. The integration authenticates your external system's communication with the Clearance account so that data can be exchanged and transferred to the Clearance account.
- Creating departments
  Departments act as user access templates that allow the initial permissions for users and groups to be automatically applied to cases.
- Creating incident categories
  To properly classify incidents when creating cases, you can create categories for the different types of incidents.
- Defining video request policies
  In Clearance, users and guest users can submit requests for video. To manage access to these video requests, system administrators can define video request policies and add existing users or groups to them.
- Defining security policies
  In Clearance, system administrators can define security policies to control access for users and groups.
- Creating fields
  You can tailor the information documented in cases and on files to the needs of your organization using the custom fields feature. Default fields can be renamed and it is possible to create text or drop-down fields. Each custom field is filterable from the Search page.
- Configuring ID templates
  You can configure ID templates to automatically assign identifying information to cases and requests in Clearance.
- Creating forms
  System administrators can create and customize video request and participant enrollment forms in Clearance.
- Resetting user passwords
  If a user has forgotten their password, you can reset it for them.
- Searching for users or groups
  If you have many user and groups in the system, you can easily find them by using the search in the Configurations tab.
- Creating support tickets
  To create a support ticket in Clearance, an account administrator can use the Contact support option accessed from the Help section.
Managing cases
Manage cases to record the details of an incident and link digital evidence in Clearance.
Managing devices
Add, remove, and configure devices in Clearance.
Managing i-PRO devices
Add, remove, and configure i-PRO devices in Clearance.
Managing files
Create, share, and associate files in Clearance.
Managing video requests
Learn how to employ video requests in Clearance.
Managing video editor content
Learn how to use the video editor in Clearance.
Reviewing dashboards
Learn how use the dashboard in Clearance.
Public upload requests
Invite anyone to add files to an incident without viewing the case contents in Clearance.
Clearance plugin
Export Security Center video as evidence to an account in the Clearance system.
Clearance Drive
Manage file transfers to and from Clearance.
Clearance Uploader application
Automatically upload media from devices to Clearance, or a Security Center video archive.
Genetec™ Video Player
View exported G64 and G64x video files from Security Desk, or on a computer that does not have Security Center installed, in Clearance.
Clearance Seen
Capture videos, images, and audio recordings from your phone and upload evidence directly to your Clearance account.
Frequently asked questions
Learn about common issues in Clearance.
Glossary
Technical support
Need tech support or product information? Check out these resources.

About SCIM synchronization using an API

2020-07-14

In Clearance, the System for Cross-domain Identity Management (SCIM) protocol is used to synchronize users and groups from an identity management system into cloud-based products.

The SCIM integration is intended to save Clearance users time in the user and group creation process.

The following information describes Azure Active Directory SCIM synchronization:

Synchronization of SCIM attributes into Clearance identity attributes is INBOUND only.
CAUTION: Any changes only made to identities in Clearance can be overwritten by the next synchronization from the Active Directory.
Synchronization occurs automatically at the intervals specified in the Build a SCIM endpoint and configure user provisioning with Azure AD documentation.
The first time a synchronization occurs, all Active Directory user attributes are synchronized.
The next time a synchronization occurs, only Active Directory user attributes that have changed since the last time the agent ran are synchronized.
Once connected, Azure AD runs a synchronization process every 40 minutes in which it queries the application's SCIM endpoint for assigned users and groups, and creates or modifies them according to assignment details.
CAUTION: If you try to provision a user whose email address is already used in Clearance, the provisioning will fail for that user.
Important: Please note that nested groups are not supported in Clearance. If you provision a group that has another group nested in it, they will be created as separate groups in Clearance.
Group provisioning requires Azure AD Premium P1 or P2