SCIM Directory Sync

Sync users and groups from your Identity Provider (IdP) to Kestra using SCIM.

SCIM directory sync

SCIM (System for Cross-domain Identity Management) is an open-standard protocol designed to facilitate user identity management across multiple systems.

It simplifies user provisioning, de-provisioning, and group synchronization between IdPs, such as Microsoft Entra ID or Okta, and service providers (SPs) such as Kestra. In layman’s terms, SCIM allows you to automatically keep your users and groups in sync between your IdP and Kestra.

Kestra explicitly relies on the SCIM 2.0 protocol for directory synchronization.

Benefits of a Directory Sync with SCIM

1. Automated provisioning and de-provisioning: SCIM automates the provisioning and de-provisioning of users, creating a single source of truth (SSOT) for user identity data. Instead of manually creating and managing users in Kestra, you can synchronize them from your IdP.
2. Consistency and compliance: With SCIM, you can ensure consistency of identity information across systems and stay compliant with security and regulatory requirements.
3. Governance at scale: Managing users at scale across many applications can be difficult without a standardized method for identity synchronization. SCIM provides a scalable solution for managing user identities.

Supported identity providers

For a detailed guide on how to set up SCIM provisioning with a specific IdP, refer to the documentation for the respective provider.

Previous

authentik SCIM Provisioning

Next

Was this page helpful?

Yes No

Send Feedback

😔

Share your thoughts (Optional)

Cancel Submit