Sync SCIM operations to Port (users)
complete
Matan Grady
Currently, the SCIM integration operates in the background to ensure secure access to Port. However, it is not fully integrated into the application—provisioning does not add users to Port, and deprovisioning does not remove them.
Ideally, the SCIM integration should be fully implemented and seamlessly connected with Port.
Naama Ben Oliel Ronen
marked this post as
complete
Port now supports SCIM for automated user lifecycle management. Sync user provisioning, updates, and deprovisioning from Okta, Azure AD, or other IdPs to Port automatically, even before a user’s first login.
Who is it for: Enterprise customers using company-level SSO who need centralized access control and automated user management.
J
Joel Vasallo
It would be good to understand as this was misquoted about supported feature when we signed up. SSO/SCIM were some of our requirements but it looks like the solved issue, was not really solved. Confused. :)
Kavita Pant
Hi team, customer wants to confirm the behavior when they will turn SCIM on for the first time (once we have complete support)
Their scenario/expectation:
- Invite 100 engineers on Day 1
- 1 Engineer leaves the company on Day 2 (the engineer is a ghost user because there is no SCIM; there are still 100 users in Port).
- We flip on SCIM on Day 3. The “ghost” engineer who left is removed from Port. There are now 99 users in Port.
Could we confirm that this is the intended behavior?
F
Fernando Korndörfer
Hi Kavita Pant, after asking for comments internally, we agree this sounds about right.
Aaron Taylor
marked this post as
in progress
Aaron Taylor
marked this post as
planned
Port will soon have SCIM 2.0 support to make user management much easier.
It will include:
- Automatic user provisioning and de-provisioning from your IdP
- Sync of profile updates (name, avatar, etc)
- Continuous sync to keep Port aligned with your IdP