SCIM 2.0 Provisioning
SCIM (System for Cross-domain Identity Management) enables automated user provisioning and deprovisioning from your identity provider to AxonFlow.
What is SCIM?
SCIM 2.0 is an open standard (RFC 7643/7644) for automating the exchange of user identity information between identity providers and service providers. When a user is added, modified, or removed in your IdP, those changes automatically sync to AxonFlow.
Identity Provider (Okta, Azure AD, OneLogin)
|
| SCIM 2.0 API Calls
| (Create, Update, Delete)
v
+-------------------+
| AxonFlow SCIM |
| Endpoint |
| /scim/v2/* |
+-------------------+
|
v
+-------------------+
| User Accounts |
| & Role Sync |
+-------------------+
Benefits
Automated User Lifecycle
| Action in IdP | Result in AxonFlow |
|---|---|
| Assign user to app | User created with access |
| Update user attributes | User profile updated |
| Unassign user from app | User deactivated |
| Delete user | User removed |
Security & Compliance
- Zero manual provisioning - No shared credentials or manual account creation
- Instant deprovisioning - Users lose access immediately when terminated
- Audit trail - All SCIM operations are logged for compliance
- Single source of truth - IdP remains authoritative for user identity
Supported Identity Providers
AxonFlow's SCIM 2.0 implementation is compatible with:
- Okta
- Azure Active Directory (Entra ID)
- OneLogin
- Ping Identity
- JumpCloud
- Any SCIM 2.0 compliant identity provider
Enterprise Feature
| Capability | Community | Enterprise |
|---|---|---|
| SCIM 2.0 User Provisioning | ✅ | |
| SCIM 2.0 User Deprovisioning | ✅ | |
| SCIM Group Sync | ✅ | |
| Group-to-Role Mapping | ✅ | |
| Token Management UI | ✅ | |
| SCIM Audit Logging | ✅ |
Enterprise Feature
SCIM provisioning is available exclusively with AxonFlow Enterprise. Contact sales to enable automated user provisioning for your organization.
Learn More
Enterprise customers can access detailed SCIM documentation including:
- Step-by-step setup guides for Okta, Azure AD, and OneLogin
- Complete API endpoint reference
- Group-to-role mapping configuration
- Troubleshooting guides
Access the Enterprise Documentation Portal for full implementation details.
Related
- Single Sign-On - SSO overview
- SAML 2.0 - SAML-based authentication
- Identity Overview - Identity & Access overview