I did not read any of the RFCs referenced below, but it sounds relevant to us:

1.  Introduction


   Unlike the practice of some protocols like Application Bridging for
   Federated Access Beyond web (ABFAB) and SAML2 WebSSO, SCIM provides
   provisioning and de-provisioning of resources in a separate context
   from authentication (aka just-in-time provisioning).


2.  SCIM User Scenarios

2.1.  Background and Context

   The System for Cross-domain Identity Management (SCIM) specification
   is designed to manage user identity in cloud-based applications and
   services in a standardized way to enable interoperability, security,
   and scalability.  The specification suite seeks to build upon
   experience with existing schemas and deployments, placing specific
   emphasis on simplicity of development and integration, while applying
   existing authentication, authorization, and privacy models.  The
   intent of the SCIM specification is to reduce the cost and complexity
   of user management operations by providing a common user schema and
   extension model, as well as binding documents to provide patterns for
   exchanging this schema using standard protocols.  In essence, make it
   fast, cheap, and easy to move users in to, out of, and around the

* http://tools.ietf.org/html/rfc7642
* http://tools.ietf.org/html/rfc7643
* http://tools.ietf.org/html/rfc7644

I hope this is not just noise.

Petr^2 Spacek

-------- Forwarded Message --------
Subject: [rfc-dist] RFC 7642 on System for Cross-domain Identity Management:
Definitions, Overview, Concepts, and Requirements
Date: Fri, 25 Sep 2015 16:34:54 -0700 (PDT)
From: rfc-edi...@rfc-editor.org
To: ietf-annou...@ietf.org, rfc-d...@rfc-editor.org
CC: drafts-update-...@iana.org, s...@ietf.org, rfc-edi...@rfc-editor.org

A new Request for Comments is now available in online RFC libraries.

        RFC 7642

        Title:      System for Cross-domain Identity Management:
                    Definitions, Overview, Concepts, and Requirements
        Author:     K. LI, Ed., P. Hunt, B. Khasnabish,
                    A. Nadalin, Z. Zeltsan
        Status:     Informational
        Stream:     IETF
        Date:       September 2015
        Mailbox:    kepeng....@alibaba-inc.com,
                    vum...@gmail.com,  tony...@microsoft.com,
        Pages:      19
        Characters: 38759
        Updates/Obsoletes/SeeAlso:   None

        I-D Tag:    draft-ietf-scim-use-cases-08.txt

        URL:        https://www.rfc-editor.org/info/rfc7642

        DOI:        http://dx.doi.org/10.17487/RFC7642

This document provides definitions and an overview of the System for
Cross-domain Identity Management (SCIM).  It lays out the system's
concepts, models, and flows, and it includes user scenarios, use
cases, and requirements.

This document is a product of the System for Cross-domain Identity Management
Working Group of the IETF.

INFORMATIONAL: This memo provides information for the Internet community.
It does not specify an Internet standard of any kind. Distribution of
this memo is unlimited.

This announcement is sent to the IETF-Announce and rfc-dist lists.
To subscribe or unsubscribe, see

For searching the RFC series, see https://www.rfc-editor.org/search
For downloading RFCs, see https://www.rfc-editor.org/rfc.html

Requests for special distribution should be addressed to either the
author of the RFC in question, or to rfc-edi...@rfc-editor.org.  Unless
specifically noted otherwise on the RFC itself, all RFCs are for
unlimited distribution.

The RFC Editor Team
Association Management Solutions, LLC

rfc-dist mailing list

Petr^2 Spacek

Manage your subscription for the Freeipa-devel mailing list:
Contribute to FreeIPA: http://www.freeipa.org/page/Contribute/Code

Reply via email to