Knogin
[Moduły podstawowe]

Identity: SCIM 2.0 Automated Provisioning

SCIM Automated Provisioning provides the governed user-lifecycle layer for organisations that want onboarding, role alignment, and off-boarding to flow from their identity provider into the platform without manual accoun

Metadane modulu

SCIM Automated Provisioning provides the governed user-lifecycle layer for organisations that want onboarding, role alignment, and off-boarding to flow from their identity provider into the platform without manual accoun

Powrót do wszystkich modułów

Odwolanie do zrodla

content/modules/identity-scim-provisioning.md

Ostatnia aktualizacja

25 mar 2026

Kategoria

Moduły podstawowe

Suma kontrolna tresci

a624ba166d885844

Tagi

modulesgeospatial

Renderowana dokumentacja

Ta strona renderuje Markdown i Mermaid modulu bezposrednio z publicznego zrodla dokumentacji.

Overview#

SCIM Automated Provisioning provides the governed user-lifecycle layer for organisations that want onboarding, role alignment, and off-boarding to flow from their identity provider into the platform without manual account administration. It combines connection management, entitlement mapping, lifecycle automation, and health monitoring so identity teams can operate SCIM as a managed service rather than a fragile background integration.

The capability now reflects active administration workflows alongside the underlying provisioning path.

Key Features#

  • Provisioning Connection Management - Administer the active SCIM connections that drive user lifecycle across the organisation
  • Automated User Lifecycle - Create, update, suspend, and remove user access in line with authoritative identity changes
  • Group-to-Role Mapping - Translate external group structure into governed local entitlements through explicit mapping controls
  • Connection Health Monitoring - Detect stalled or degraded provisioning paths before identity drift becomes an access problem
  • Multi-Tenant Provisioning Discipline - Keep each organisation's provisioning boundaries and credentials separated cleanly
  • Onboarding and Off-boarding Support - Treat workforce change as an operational process with clearer automation and review
  • Administrative Review Surface - Give identity teams an operational workspace for monitoring and maintaining provisioning quality

Use Cases#

  • Enterprise User Onboarding - Provision users automatically when they enter the authoritative identity system
  • Entitlement Governance - Keep local role assignments aligned with the external group model used by the organisation
  • Contractor and Workforce Off-boarding - Remove or reduce access quickly when people leave, transfer, or change role
  • Provisioning Health Assurance - Detect and correct silent provisioning failure before identity drift spreads across the tenant

Integration#

  • Identity Administration Workspace and enterprise authentication services
  • Keycloak, Zitadel, SAML, OIDC, and tenant-governance workflows
  • Role, permission, and access-review systems
  • Workforce lifecycle, invitations, and onboarding processes

Last Reviewed: 2026-03-25