SCIM (System for Cross-domain Identity Management) is a set of application-level protocols to securely manage and communicate user data across multiple domains. SCIM clients can be integrated to manage CRUD (create, replace, update, delete) operations, apply queries and filters, and create user groups within your organization. SCIM allows you to automate user lifecycles and maintain user accounts across platforms.
To see the SCIM specification, read System for Cross-domain Identity Management: Core Schema.
Advances in cloud-based computing meant creating a solution to communicate data over different technologies. B2C and B2B business models required a secure way to share user attributes from a company directory with external SaaS providers while also communicating added, changed, or deleted user data.
SCIM clients operate with a standardized user schema and extension model that represents users and groups in JSON format and are exchanged with standard HTTP methods. SCIM clients can be integrated with a company directory or identity provider to provision, de-provision, and automate CRUD operations. Service providers, or external SaaS providers, integrate with the SCIM client to retrieve a subset of user data needed for access. Additionally, identity providers can retrieve identities from service providers to add to the user directory. Rather than spend time and resources manually provisioning users, you can automate this process to communicate changes or additions in user data with a SCIM client.
To learn more about SCIM configurations, read SCIM 2.0.
Your users need access to an email provider, a chat application, a calendar widget, a finance platform, and a human resource application. These service providers integrate with your centralized system and communicate user attributes, permissions, and other values.