Table of Content
Overview
We support Enterprise SSO (SAML 2.0 and OIDC) to allow your team to log in securely using your existing identity provider. For organizations looking to automate their user lifecycle, we also offer SCIM (System for Cross-domain Identity Management) as a paid add-on.
Comparison of Features
- Enterprise SSO (Free): Enables Single Sign-On. Accounts are created the first time a user logs in (Just-in-Time provisioning).
- SCIM (Paid Add-on): Syncs your employee directory with our platform. Accounts are created automatically, and access is revoked instantly when a user is deactivated in your system.
Supported Providers for SCIM
To use our SCIM add-on, your Identity Provider (IdP) must support SCIM 2.0 for custom applications.
Supported:
- Okta
- Microsoft Entra ID
- OneLogin
- JumpCloud
To provide transparency for your IT teams, we currently know that SCIM is not supported for the following providers due to their technical restrictions regarding custom applications:
Google Workspace: While Google supports SSO via SAML, they currently restrict automated user provisioning (SCIM) to a fixed list of marketplace applications.
If you use an Identity Provider not listed above and require automated provisioning, please reach out to support@optilyz.com. Our team will review your provider's requirements to determine if a custom SCIM configuration can be established for your organization.
How to Set Up SCIM
Once the SCIM add-on has been added to your contract, follow these steps:
- Receive your Setup Link: Our team will provide your IT Admin with a secure, organization-specific Setup Link.
- Generate Credentials: Open the link and navigate to the Provisioningtab. Toggle "Enable SCIM" to generate your:
- SCIM Base URL
- Bearer Token (API Key)
- Configure your IdP: Copy these credentials into your Identity Provider’s SCIM configuration settings.
- Test Connection: Perform a "Test Connection" in your IdP to ensure the sync is active.