What is SCIM?
SCIM - The System for Cross-domain Identity Management, involves the process of creating, updating, and
deleting user accounts in multiple applications
and systems. It is an Identity and Access Management (IAM) solution that includes management and maintenance of
an end user’s identity and user attributes in relation to accessing resources available in one or more systems.
How does SCIM Provisioning / Deprovisioning Works?
SCIM enables automating the process of
provisioning / de-provisioning of user identities, it involves the process of creating,
updating, and deleting user
accounts in multiple applications and systems. It is an Identity and Access Management (IAM) solution that
includes management and maintenance of an end user’s identity and user attributes in relation to accessing
resources available
in one or more systems.
SCIM is a REST and JSON-based protocol that defines a client and server role. A client is usually an Identity
provider (IDP), which contains user identities. A Service Provider (SP) is usually a SaaS app, like Shopify,
that
needs a subset of information from those identities. When changes to identities are made in the IdP (Identity
Provider), including create, update, and delete, they are automatically synced to the SP according to the SCIM
protocol.
Why choose SCIM?
SCIM allows to communicate user’s data across different apps, this enables IT departments to automate the
provisioning / de-provisioning process while also having a single system to manage permissions and groups. It
mitigates the risks
associated with employees using the same password across different tools and apps. It simplifies the user
experience by automating the user identity lifecycle management process.