SCIM

SCIM (System for Cross-domain Identity Management) is an open standard that simplifies cloud identity management via user provisioning. In this way, you can manage users from a central place.

SCIM communicates identity data between an IDP (Identity Provider) and an SP (Service Provider).

Benefits are the ease of use to maintain this information and, the security of data. When people are leaving an organization, access to systems should be revoked. Another benefit of user provisioning is that the SP has an accurate list of all employees and users available which is very useful within those systems. SCIM can be seen as the replacement for LDAP when working in the cloud.

How it works

Provisioning between the IDP (for example Azure AD or Okta) and the SP (IFS Ultimo) is achieved using a REST and JSON based protocol. IFS Ultimo uses a subset of the available information. When the source object changes/is added/is deleted, this is automatically synchronized with IFS Ultimo. The IDP can read objects from IFS Ultimo to check if an update is needed.

Implementing SCIM

See more at: https://developer.ultimo.net/azure-documentation/azure-ad-scim-provisioning