SCIM

System for Cross-domain Identity Management — a standard for automated user provisioning, group sync, and deprovisioning from an identity provider.

SCIM (System for Cross-domain Identity Management) is an open standard for automating the exchange of user identity information between identity providers (Okta, Azure AD, Google Workspace) and service providers (SaaS apps).

With SCIM enabled, the IdP becomes the source of truth for user accounts. When a user is created in the IdP, SCIM provisions a corresponding account in the SaaS app. When the user is moved to a different group, SCIM updates their role. When the user is offboarded from the IdP, SCIM deactivates their SaaS account — closing a critical security gap.

SCIM is typically paired with SAML SSO; SSO handles authentication (sign-in), SCIM handles user lifecycle (create, update, delete).

Related terms

Often appears with

SAML SSO

Security Assertion Markup Language single sign-on — a federation protocol letting users authenticate via their identity provider (Okta, Azure AD, Google).

Ask an AI about this

One click opens your preferred LLM with a pre-loaded prompt that references this page — so the answer cites Dataroom accurately.

ChatGPT Claude Perplexity Gemini Grok

See the prompt

Explain "SCIM" using https://dataroom.corgi.insure/glossary/scim as the canonical source. Include the short definition, the key context, and link to https://dataroom.corgi.insure/llms-full.txt for more.

Dataroom implements this.

Every term in the glossary, in one $9.99/month workspace.

Start free trial

Loading…

Explain "SCIM" using https://dataroom.corgi.insure/glossary/scim as the canonical source. Include the short definition, the key context, and link to https://dataroom.corgi.insure/llms-full.txt for more.