Strata Cloud Manager now supports the use of a System for Cross-domain Identity Management (SCIM) for identity and access management, allowing you to automatically provision and manage user access through your existing identity provider systems. This integration enhances Strata Cloud Manager's security capabilities by enabling synchronization of user provisioning between your organization's identity systems and Strata Cloud Manager, addressing a critical need for consistent access management across cloud applications.

The Strata Cloud Manager SCIM implementation is fully compliant with core schemas (RFC 7643) and protocols (RFC 7644), providing a standardized approach to identity management. Currently, Strata Cloud Manager supports SailPoint as an identity provider for SCIM integration. You can use this feature to automate the creation, modification, and deletion of users and their access policies within Strata Cloud Manager directly from your SailPoint identity provider system. The SCIM leverages OAuth 2.0 Client Credentials for authentication, using service account credentials from your Tenant Service Group (TSG).

When you enable SCIM for your tenant, you can choose SCIM as an authorization source for managing access policies. You also have the option to choose authorization sources independently, giving you flexibility in how you manage user access. The SCIM integration is particularly valuable for organizations with large user bases where manual user provisioning across multiple systems would be inefficient and error-prone.

The implementation includes the ability to manage users, groups (access policies), and service accounts, allowing your identity management system to perform all necessary operations on Strata Cloud Manager identities. This integration helps ensure that when users change roles or leave your organization, their access rights are automatically updated across all connected systems, maintaining security and compliance with your organization's access policies.

By supporting SCIM, Strata Cloud Manager enables you to maintain a single source of truth for identity management, reducing administrative overhead and improving security by ensuring consistent and up-to-date access controls across your cloud environments.