Skip to content

Update scim.mdx #3632

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Open
wants to merge 4 commits into
base: main
Choose a base branch
from
+11 −5
Open

Update scim.mdx #3632

Changes from all commits
Commits
Show all changes
4 commits
Select commit Hold shift + click to select a range
1a3536d
Update scim.mdx
echean Jun 26, 2025
3fe0695
Update scim.mdx
brianmacdonald-temporal Jun 26, 2025
626189e
Update scim.mdx
brianmacdonald-temporal Jun 30, 2025
30fe3a6
Merge branch 'main' into patch-3
brianmacdonald-temporal Jun 30, 2025
File filter

Filter by extension

Filter by extension
Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
16 changes: 11 additions & 5 deletions docs/production-deployment/cloud/scim.mdx
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -2,7 +2,7 @@
id: scim
title: SCIM user management - Temporal Cloud feature guide
sidebar_label: SCIM
description: Integrate SCIM with your Temporal Cloud account for secure user Management. Connect via Okta for seamless user and group management. Charges apply.
description: Integrate SCIM with your Temporal Cloud account for secure user Management. Connect via IDP for seamless user and group management. Charges apply.
slug: /cloud/scim
toc_max_heading_level: 3
keywords:
Expand All @@ -17,8 +17,8 @@ tags:

:::tip SUPPORT, STABILITY, and DEPENDENCY INFO

This feature is in [Pre-release](/evaluate/development-production-features/release-stages#pre-release).
Only Okta is currently supported as your upstream IDP.
This feature is in [Public Preview](/evaluate/development-production-features/release-stages#public-preview).
Supported upstream IDP vendors include: Okta, Microsoft Entra ID (Azure AD), Google Workspace, OneLogin, CyberArk, JumpCloud, PingFederate, and Custom SCIM 2.0 providers.

:::

Expand All @@ -29,12 +29,18 @@ Before starting your work with SCIM, you'll need to complete this checklist:
1. Configure [SAML](/cloud/saml) SSO.
1. Ensure that critical traffic is configured to authenticate using [mTLS](/cloud/certificates) or [API keys](/cloud/api-keys#overview) attached to Temporal Cloud accounts.
This ensures that Workflows will continue uninterrupted if there is any problem with your integration.
1. Decide on your **Okta administrator**, who is responsible for configuring and managing your SCIM integration.
1. Decide on your **IDP administrator**, who is responsible for configuring and managing your SCIM integration.
Specify their contact details when you reach out to support in the next stage of this process.

After completing these steps, you're ready to submit your [support ticket](/cloud/support#support-ticket) to enable SCIM.

## Onboarding with SCIM and Okta {#configure-scim-with-okta}
:::tip Adding and removing users

When you use SCIM for user management, you cannot add or remove users directly from the Temporal Cloud interface. Use your SCIM integration for user management. You can change a user's or group's Account Role from the Temporal Cloud interface, however.

:::

## Example: Onboarding with SCIM and Okta {#configure-scim-with-okta}

1. Temporal Support enables the SCIM integration on your account.
Enabling integration automatically emails a configuration link to your Okta administrator.
Expand Down