Luware Knowledge

Nimbus Portal Nimbus Admin Nimbus Release Notes Luware Cloud Status
Home

Use Case - Adding Nimbus Users via Postman and Power Automate

Leveraging the Nimbus API to quickly onboard new Users into Nimbus

This Use Case demonstrates how to automate the creation of users in Nimbus using Power Automate triggered by an Email. The process leverages the Nimbus API Endpoints to create users who are already present in your Entra ID / Active Directory, streamlining user management and reducing manual effort.

Following you will find a quick guide on how to:

  • Create users in Nimbus via API using Postman.
  • Create users in Nimbus via API using Power Automate and an Email trigger.

Preconditions

  1. This Use Case will make use of the Nimbus Power Automate Connector. Please ensure you meet the preconditions (e.g. external Microsoft Licensing cost). 
  2. Check if the Nimbus API was enabled on your Provisioning Tenant Settings. This feature is enabled by a Luware System Administrator.
  3. When the API was enabled, follow the Nimbus App Registration and necessary API Permissions setup steps as described on the API page.
 

INC Icon Legend Accordion

Show Icon Legend

💡 = A hint to signal learnings, improvements or useful information in context. 🔍 = Info points out essential notes or related page in context.
☝ = Notifies you about fallacies and tricky parts that help avoid problems. 🤔 = Asks and answers common questions and troubleshooting points.
❌ = Warns you of actions with irreversible / data-destructive consequence. ✅ = Intructs you to perform a certain (prerequired) action to complete a related step.
 
 

Workflow / Flow Overview

 
 

Creating a User via Postman

Postman is a powerful tool used for API testing. It is particularly useful for demonstrating how an endpoint works and verifying its functionality.

First, we will test the endpoint and demonstrate how to use Postman to create a user within Nimbus,

💡If you want to skip the Postman instructions and setup Power Automate directly, be sure to follow steps 4-7 regardless as you will need this information in both setups

 
  1. Create a new user in your AD and write down the user id.
  2. In Nimbus Admin Portal go to Organization Units (OU) and open the OU in which you want to create the user.
  3. Extract the OU ID from the URL and paste it to a note → See screenshot below:
    🧠 Note this ID down as you are going to use it later.
  1. Go to Azure Portal and open the Application you created in the preconditions.
  2. Copy the “Application (client) ID, paste it to your note”.
  3. Open the “Endpoints” tab:
  4. Copy the OAuth 2.0 token endpoint (V2)
    🧠 Note this URL down as you are going to use it later.
  5. In Postman create a new collection. Within the collection create a request called “Authentication” and one called “User Creation”
  1. In the top folder/the collection itself, add a variable called “secret” and add your secret value as the initial and current value
  1. Now you can setup the authentication request. In the URL field at the top, choose “GET” and add the token URL you copied earlier on.
  1. Now move over to “Body” at the top, tick “form-data” and fill add the following:
Key Value
grant_type client_credentials
client_id paste the client ID you noted down in step 5
client_secret {{Secret}} - this will use the secret you defined the variable
scope https://portal.YourNimbusCluster.luware.cloud/.default
  1. If you press “Send” you should receive a access token
  2. Next, setup the “User Creation” request by choosing “POST” at the top and adding the Nimbus endpoint: https://portal.YourNimbusCluster.luware.cloud/api/public-api-next/user
  3. In the “Authorization” tab, select the Auth Type “Bearer Token” and paste the token you generated previously.
    💡This Token will expire in 3599 seconds and needs to be renewed after
    💡Make sure you did not accidentally copy and empty spaces or line breaks into the token
  4. Head over to the “Body” tab:
    1. Tick “raw”
    2. Make sure “JSON” is selected - this way we can just enter the raw JSON string
  5. Enter the User ID from Step 1 and OU ID from Step 2 with the following schema:
    { "o365Id": "YourUserID", "organizationUnitId": "YourOUID"}
  6. Press “Send”:
    ⮑ You should get back “200 OK”

If that all worked as expected, your endpoint is ready to use.

Create the Flow in Power Automate

With the endpoint working and the request setup, we can translate this to Nimbus Power Automate and then use it to create a users via Email.

  1. Go to https://make.powerautomate.com and create a new “automated cloud flow”.
  2. Start with a “When a new email arrives (V3)” trigger and sign in with your desired user.
    💡Power Automate will monitor the inbox for the user you choose here to trigger the flow. You can use your Power Automate user or select a dedicated user for this purpose.
  3. Add a subject filter. This ensures that we wont put unnecessary load on the Nimbus endpoint. For this Use Case, we will use “New User”
  4. Next we are going to configure the token request, for this, add an HTTP action
  5. URI = the endpoint URL you copied in step 🧠 7. in the Postman setup above.
    Method = Post
    Headers = Content-Type” - “application/x-www-form-urlencoded”
    Body = “grant_type=client_credentials&client_id=YourClientID&client_secret=YourClientSecret&scope=https://portal.innovator.luware.cloud/.default” - YourClientID from step 5 in the Postman setup and YourClientSecret from setting up the application in the prerequisites 
  6. Add a “Parse JSON” action after. In the “content” field, add “Body” from the http dynamic content.
  7. Paste this Schema in the field below:
{
    "type": "object",
    "properties": {
        "token_type": {
            "type": "string"
        },
        "expires_in": {
            "type": "integer"
        },
        "ext_expires_in": {
            "type": "integer"
        },
        "access_token": {
            "type": "string"
        }
    }
}

Your JSON should It should look something like this:

  1. Add another HTTP action.
  2. URI = https://portal.YourNimbusCluster.luware.cloud/api/public-api-next/user
    Method = Post
    Headers = Content-Type” - “application/x-www-form-urlencoded”
    Authorization” - “Bearer @{body('Parse_JSON')?['access_token']}”
    Body = “replace(triggerOutputs()?['body/subject'], 'New User ','')”
    ✅ With that setup, you should now be able to send mails in this format in order to create new users :
    1. To: the user you chose in Step 2. of the Power Automate setup
    2. Subject: New User { "o365Id": "YourUserID", "organizationUnitId": "YourOUID"}
      💡The next steps are optional, necessary only if you want to send a response back after a Nimbus user creation,
  3. Add a condition, configure it to run after even if the previous http action succeeded, timed out, skipped or failed:
  4. For the first value of the condition, from dynamic content, choose “Status code” for the previous http action. In the middle “is equal to” and the last value “200”.
  5. Under the TRUE condition, add a “Send an email (V2)” action. In the “From” field, choose the dynamic content “From” provided by the Outlook trigger. 
  6. Setup the rest as desired, something like this for example
  7. Under the FALSE condition, do the same and adjust to communicated that the user creation failed

💡Your flow will now send a response back to the sender and inform them if the user creation was successful or not. 

✅ You can adjust this Power Automate flow to your needs. The email trigger is obviously a very specific Use Case but the general setup for user creation via Power Automate will be very similar.

 
Nimbus API

The Nimbus Public REST API allows to provision blank users. This page describes t...

Nimbus Power Automate Connector

NEW CERTIFIED CONNECTOR (V1) AVAILABLE The Luware Nimbus Power Automate Connector...

Provisioning Tenant Settings

In the Provisioning tab in Tenant Administration , you can configure the  Service...

Organization Units

Nimbus uses Organization Units (OU) to structure and manage all its configurable ...

Table of Contents