Sunday 05 July 2026 11:51:41 GMT+02:00

Netcrook

HomeManifesto
News
Techcrook
Geocrook
WikicrookTeamAppContact
EnglishItalianoArabic

WIKICROOK

SCIM (System for Cross-domain Identity Management)

A standard for automatically provisioning and syncing user identities across services.

SCIM is an identity management standard used to automatically create, update, and deactivate user accounts across cloud services. Instead of administrators manually adding users in every app, an identity provider can push profile data, group membership, and lifecycle changes through a common API. This makes onboarding and offboarding faster and reduces errors that leave stale accounts behind.

In cyber security, SCIM matters because identity is a major control point. If a compromised admin account or misconfigured integration can provision users too broadly, attackers may gain access to sensitive systems without needing to bypass authentication. Defenders use SCIM to keep permissions aligned with HR or directory sources, enforce least privilege, and remove access quickly when employment ends or roles change. In enterprise tools, SCIM often works alongside SSO, compliance logging, and device controls to create a managed access boundary. Secure deployment requires tight scoping of API tokens, audit trails, and review of which attributes and groups are synchronized.

← WIKICROOK index