SCIM Provisioning Overview

SCIM Overview

SCIM (System for Cross-domain Identity Management) is an open standard for automating the exchange of user identity information between identity domains, or IT systems.

Use SCIM to automatically provision and de-provision user accounts in external systems such as SAML apps. For more information about SCIM, see www.simplecloud.info.

Outbound provisioning provisions users and groups from Centrify to other applications.

Centrify's Outbound SCIM Provisioning

Centrify supports provisioning to some applications through their proprietary API. For example, provisioning to Office 365 is done using API from Microsoft. Other apps (e.g., custom SAML apps) can only be provisioned if the app supports SCIM.

A SCIM server is only required for outbound provisioning, so users and groups can be provisioned from Centrify to your application. Centrify's outbound provisioning feature supports SCIM 1.1 and 2.0.

If your SAML application supports SCIM, you can enable provisioning by entering the Access Token and SCIM URL.

Before configuring your application for provisioning, you must add the app in the Admin Portal

Note

When you create the app, the Access Token is only displayed once and it never expires. It is important to store the Access Token in a secure location.