SCIM Inbound/Outbound

nik.baleca · February 20, 2026, 6:30pm

Welcome to the Auth0 Community!

Is SCIM provisioning (inbound and/or outbound) only available on the Enterprise plan, or is it accessible on lower-tier plans as well?

Inbound SCIM are considered advanced, enterprise-grade features and are only included in the Enterprise plan. However, all the other plans (including the free one) have available one enterprise connection, meaning that you will be able to use Outbound and Inbound SCIM on that specific connection.

If outbound SCIM is supported, can Auth0 act as a SCIM client to provision users and groups into a third-party SaaS application?

Outbound SCIM is currently not supported by Auth0. There is a backlog item regarding implementing this feature, however there is no ETA at this time. I would highly recommend to upvote the product feedback post here to increase visibility to our product team.

Returning to your use-case, we currently do not seem to have an official way of handling the flow or a workaround, based on this topic Outbound SCIM configuration, we recommend reaching out to our Professional Services team for a custom Outbound SCIM solution in order to ensure security and effectiveness.

Are there any known limitations or additional configurations required to enable outbound SCIM provisioning to external tools?

Since Outbound SCIM is not yet available, there are some things you need to take into consideration about the Inbound SCIM feature:

Schema and Attribute Mapping : SCIM relies on a standard schema. Auth0’s provisioning integrations have default mappings. If your downstream application requires custom attributes, you may need to adjust the attribute mappings in the provisioning integration settings to ensure all necessary data is sent.
Group Provisioning : Support for provisioning groups can vary by the specific integration. While the core SCIM protocol supports it, you need to verify that both Auth0’s specific integration and the downstream application fully support group creation and membership updates via SCIM. Looking at our Auth0 Changelog, we can see that Inbound SCIM Groups for Enterprise Connections is now in Limited Early Access has been recently added, on the 30th of Jan.

I believe you will be able to find most of the information about SCIM in our documentation here.

Let me know if you have any other questions!

Kind Regards,
Nik

Topic		Replies	Views
Enable outbound SCIM provisioning to sync users and roles from Auth0 to a third-party application Product Feedback auth0 , authorization , scim	2	413	June 10, 2025
Outbound SCIM configuration Get Help cross-origin-authentication , protocols	2	860	November 22, 2024
Provisioning users into AWS SSO with SCIM Get Help aws	5	7822	July 19, 2024
Feature Request: Outbound SCIM for User & Role Sync to third-party applications (e.g. Atlassian Cloud - Atlassian Guard) Product Feedback	1	389	February 28, 2025
How to access `group.*` events (e.g. `group.created`) in the context of Inbound SCIM Get Help user-management , account-linking	1	9	February 18, 2026

SCIM Inbound/Outbound

Related topics