SCIM

scim

The System for Cross-domain Identity Management (SCIM) Configuration object provides a structured set of attributes related to SCIM protocols used for identity provisioning and management across cloud-based platforms. It standardizes user and group provisioning details, enabling identity synchronization and lifecycle management with compatible Identity Providers (IdPs) and applications. SCIM is defined in RFC-7634

Attributes

CaptionNameTypeDescription
Auth Protocolauth_protocolString

The authorization protocol as defined by the caption of auth_protocol_id. In the case of Other, it is defined by the event source.

Auth Protocol IDauth_protocol_idInteger

The normalized identifier of the authorization protocol used by the SCIM resource.

  • 0: Unknown (UNKNOWN)
  • 1: NTLM (NTLM)
  • 10: RADIUS (RADIUS)
  • 11: Basic Authentication (BASIC_AUTHENTICATION)
  • 2: Kerberos (KERBEROS)
  • 3: Digest (DIGEST)
  • 4: OpenID (OPENID)
  • 5: SAML (SAML)
  • 6: OAUTH 2.0 (OAUTH_2.0)
  • 7: PAP (PAP)
  • 8: CHAP (CHAP)
  • 9: EAP (EAP)
  • 99: Other (OTHER)
Created Timecreated_timeTimestamp

When the SCIM resource was added to the service provider.

Last Error Messageerror_messageString

Message or code associated with the last encountered error.

SCIM Group Provisioning Enabledis_group_provisioning_enabledBoolean

Indicates whether the SCIM resource is configured to provision groups, automatically or otherwise.

SCIM User Provisioning Enabledis_user_provisioning_enabledBoolean

Indicates whether the SCIM resource is configured to provision users, automatically or otherwise.

Last Sync Timelast_run_timeTimestamp

Timestamp of the most recent successful synchronization.

Modified Timemodified_timeTimestamp

The most recent time when the SCIM resource was updated at the service provider.

NamenameString

The name of the SCIM resource.

Supported Protocolprotocol_nameString

The supported protocol for the SCIM resource. E.g., SAML, OIDC, or OAuth2.

Rate Limitrate_limitInteger

Maximum number of requests allowed by the SCIM resource within a specified time frame to avoid throttling.

Raw Dataraw_dataJSON

Group:context
The event data as received from the event source.

Record IDrecord_idString

Group:primary
Unique identifier for the object

SCIM Group Schemascim_group_schemaJSON

SCIM provides a schema for representing groups, identified using the following schema URI: urn:ietf:params:scim:schemas:core:2.0:Group as defined in RFC-7634. This attribute will capture key-value pairs for the scheme implemented in a SCIM resource.

SCIM User Schemascim_user_schemaJSON

SCIM provides a resource type for user resources. The core schema for user is identified using the following schema URI: urn:ietf:params:scim:schemas:core:2.0:User as defined in RFC-7634. his attribute will capture key-value pairs for the scheme implemented in a SCIM resource. This object is inclusive of both the basic and Enterprise User Schema Extension.

StatestateString

The provisioning state of the SCIM resource, normalized to the caption of the state_id value. In the case of Other, it is defined by the event source.

State IDstate_idInteger

The normalized state ID of the SCIM resource to reflect its activation status.

  • 0: Unknown (UNKNOWN)
  • 1: Pending (PENDING)
  • 2: Active (ACTIVE)
  • 3: Failed (FAILED)
  • 4: Deleted (DELETED)
  • 99: Other (OTHER)
Unique IDuidString

A unique identifier for a SCIM resource as defined by the service provider.

External IDuid_altString

A String that is an identifier for the resource as defined by the provisioning client. The externalId may simplify identification of a resource between the provisioning client and the service provider by allowing the client to use a filter to locate the resource with an identifier from the provisioning domain, obviating the need to store a local mapping between the provisioning domain's identifier of the resource and the identifier used by the service provider.

UnmappedunmappedUnmapped[]

Data from the source that was not mapped into the schema.

SCIM Endpoint URLurl_stringURL String

Entity:URL_STRING
The primary URL for SCIM API requests.

Service Providervendor_nameString

Name of the vendor or service provider implementing SCIM. E.g., Okta, Auth0, Microsoft.

SCIM VersionversionString

SCIM protocol version supported e.g., SCIM 2.0.

Relationships

SCIM shown in context

Inbound Relationships

These objects and events reference SCIM in their attributes:

Outbound Relationships

SCIM references the following objects and events in its attributes:

This page describes ocsf-1.4.0