# SCIM SCIM (System for Cross-domain Identity Management) is an open standard that simplifies cloud identity management via user provisioning. In this way, you can manage users from a central place. SCIM communicates identity data between an IDP (Identity Provider) and an SP (Service Provider). Benefits are the ease of use to maintain this information and, the security of data. When people are leaving an organization, access to systems should be revoked. Another benefit of user provisioning is that the SP has an accurate list of all employees and users available which is very useful within those systems. SCIM can be seen as the replacement for LDAP when working in the cloud. ## How it works Provisioning between the IDP (for example Microsoft Entra ID or Okta) and the SP (IFS Ultimo) is achieved using a REST and JSON based protocol. IFS Ultimo uses a subset of the available information. When the source object changes/is added/is deleted, this is automatically synchronized with IFS Ultimo. The IDP can read objects from IFS Ultimo to check if an update is needed. ## Implementing SCIM See more at: --- # Agent Instructions: Querying This Documentation If you need additional information that is not directly available in this page, you can query the documentation dynamically by asking a question. Perform an HTTP GET request on the current page URL with the `ask` query parameter: ``` GET https://developer.ultimo.net/connectors/scim.md?ask= ``` The question should be specific, self-contained, and written in natural language. The response will contain a direct answer to the question and relevant excerpts and sources from the documentation. Use this mechanism when the answer is not explicitly present in the current page, you need clarification or additional context, or you want to retrieve related documentation sections.