Automating user provisioning
In Chapters 2, 3, and 4, we discussed topics that describe individual elements of the user provisioning process. In this chapter, groups, directory integrations, application provisioning, and so on will all come together for complete onboarding and offboarding. Let’s look at how we can put it all together.
As we mentioned in Chapter 3, Using Single Sign-On for a Great End User Experience, there are different kinds of integrations available in the Okta Integration Network (OIN), and many of the applications have Systems for Cross-Domain Identity Management (SCIM) possibilities. SCIM is an open standard for managing user identity information. With SCIM, there is a defined schema and a REST API for Create, Read, Update, and Delete (CRUD) operations. To put it more simply, SCIM is a protocol for storing user information in a way that identity data can easily be shared with multiple applications.
Let’s look at it with an example. If an end...
