System for Cross-domain Identity Management (SCIM)

SCIM is an open standard that manage user identity information, enhances the automation of user provisioning and management.

When using SCIM, changes you make to users on the identity provider side are automatically synced to Harmony SASE Agent.

Examples:

• Deleting a user within your IDP, removes the user from the Harmony SASE console, freeing up the user's license.

• When a group is deleted in the identity provider, it remains in any policies or configurations where it was previously used. For more information, see Groups.

• When creating a new user within your IDP, and provisioning them through the SCIM integration, the user is automatically created in the Harmony SASE console.

Harmony SASE offers SCIM integration with these Identity Providers:

• Okta (SCIM)

• Azure Active Directory (SCIM)