SCIM

scim

The System for Cross-domain Identity Management (SCIM) Configuration object provides a structured set of attributes related to SCIM protocols used for identity provisioning and management across cloud-based platforms. It standardizes user and group provisioning details, enabling identity synchronization and lifecycle management with compatible Identity Providers (IdPs) and applications. SCIM is defined in RFC-7634

Attributes

Caption	Name	Type	Description
Auth Protocol	`auth_protocol`	String	The authorization protocol as defined by the caption of `auth_protocol_id`. In the case of `Other`, it is defined by the event source.
Auth Protocol ID	`auth_protocol_id`	Integer	The normalized identifier of the authorization protocol used by the SCIM resource. `0`: Unknown (`UNKNOWN`) `1`: NTLM (`NTLM`) `2`: Kerberos (`KERBEROS`) `3`: Digest (`DIGEST`) `4`: OpenID (`OPENID`) `5`: SAML (`SAML`) `6`: OAUTH 2.0 (`OAUTH_2.0`) `7`: PAP (`PAP`) `8`: CHAP (`CHAP`) `9`: EAP (`EAP`) `10`: RADIUS (`RADIUS`) `11`: Basic Authentication (`BASIC_AUTHENTICATION`) `99`: Other (`OTHER`)
Created Time	`created_time`	Timestamp	When the SCIM resource was added to the service provider.
Created Time	`created_time_dt`	Datetime	When the SCIM resource was added to the service provider.
Last Error Message	`error_message`	String	Message or code associated with the last encountered error.
SCIM Group Provisioning Enabled	`is_group_provisioning_enabled`	Boolean	Indicates whether the SCIM resource is configured to provision groups, automatically or otherwise.
SCIM User Provisioning Enabled	`is_user_provisioning_enabled`	Boolean	Indicates whether the SCIM resource is configured to provision users, automatically or otherwise.
Last Sync Time	`last_run_time`	Timestamp	Timestamp of the most recent successful synchronization.
Last Sync Time	`last_run_time_dt`	Datetime	Timestamp of the most recent successful synchronization.
Modified Time	`modified_time`	Timestamp	The most recent time when the SCIM resource was updated at the service provider.
Modified Time	`modified_time_dt`	Datetime	The most recent time when the SCIM resource was updated at the service provider.
Name	`name`	String	The name of the SCIM resource.
Supported Protocol	`protocol_name`	String	The supported protocol for the SCIM resource. E.g., `SAML`, `OIDC`, or `OAuth2`.
Rate Limit	`rate_limit`	Integer	Maximum number of requests allowed by the SCIM resource within a specified time frame to avoid throttling.
Raw Data	`raw_data`	String	The raw event/finding data as received from the source.
Record ID	`record_id`	String	Unique identifier for the object
SCIM Group Schema	`scim_group_schema`	JSON	SCIM provides a schema for representing groups, identified using the following schema URI: `urn:ietf:params:scim:schemas:core:2.0:Group` as defined in RFC-7634. This attribute will capture key-value pairs for the scheme implemented in a SCIM resource.
SCIM User Schema	`scim_user_schema`	JSON	SCIM provides a resource type for user resources. The core schema for user is identified using the following schema URI: `urn:ietf:params:scim:schemas:core:2.0:User` as defined in RFC-7634. his attribute will capture key-value pairs for the scheme implemented in a SCIM resource. This object is inclusive of both the basic and Enterprise User Schema Extension.
State	`state`	String	The provisioning state of the SCIM resource, normalized to the caption of the `state_id` value. In the case of `Other`, it is defined by the event source.
State ID	`state_id`	Integer	The normalized state ID of the SCIM resource to reflect its activation status. `0`: Unknown (`UNKNOWN`) `1`: Pending (`PENDING`) `2`: Active (`ACTIVE`) `3`: Failed (`FAILED`) `4`: Deleted (`DELETED`) `99`: Other (`OTHER`)
Unique ID	`uid`	String	A unique identifier for a SCIM resource as defined by the service provider.
External ID	`uid_alt`	String	A String that is an identifier for the resource as defined by the provisioning client. The `externalId` may simplify identification of a resource between the provisioning client and the service provider by allowing the client to use a filter to locate the resource with an identifier from the provisioning domain, obviating the need to store a local mapping between the provisioning domain's identifier of the resource and the identifier used by the service provider.
Unmapped Data	`unmapped`	Object[]	The attributes that are not mapped to the event schema. The names and values of those attributes are specific to the event source.
SCIM Endpoint URL	`url_string`	URL String	The primary URL for SCIM API requests.
Service Provider	`vendor_name`	String	Name of the vendor or service provider implementing SCIM. E.g., `Okta`, `Auth0`, `Microsoft`.
SCIM Version	`version`	String	SCIM protocol version supported e.g., `SCIM 2.0`.

Relationships

Inbound Relationships

These objects and events reference SCIM in their attributes:

Identity Provider

Outbound Relationships

SCIM references the following objects and events in its attributes:

Object

This page describes qdm-1.4.0+ocsf-1.4.0