Configuring SCIM provisioning
Postman supports SCIM (System for Cross-domain Identity Management), allowing you to automate user provisioning and de-provisioning for your team. With this feature, you can efficiently deploy Postman at scale across your organization and control access to it via your identity provider.
You must be a Postman team admin to enable SCIM for your team. With SCIM enabled, users will not have the option to leave your team on their own, and will not be able to change their account email or password. Only team admins will have the right to remove team members.
- SCIM features
- Enabling SCIM with the SCIM API
- Next steps
Postman supports the following provisioning features:
- Create user: Creates a new user account in Postman, adds the account to your organization's Postman team, and activates authentication for the user. If an account with the same email ID exists, an email invite to join your Postman team is sent to the user. Once the user accepts the invite, they will be added to your team.
The newly added user will have the developer role in Postman by default. You can later update account roles in Postman.
- Update user information: Updates a user’s first and last name in Postman.
- Activate user: Creates a new user on your Postman team, if one does not already exist, and activates the user to authenticate into your Postman team.
- Deactivate user: Removes a user from your Postman team and deactivates their account, blocking the account from authenticating into Postman.
The user account and the data corresponding to it will not be deleted. To permanently delete the user account and their data, contact Postman support.
- Reactivate user: Reactivates an existing deactivated user by unblocking the account's authentication into Postman and adds the account back to your Postman team.
You must have SSO configured prior to enabling SCIM for your Postman team.
To use SCIM, you must have only one SSO method configured. If you have more than one SSO method enabled, you will not have the option to generate a SCIM API key.
To enable SCIM, navigate to Postman and select Team > Team Settings in the upper-right. Select Authentication in the left sidebar.
Next to SCIM provisioning, select the OFF toggle.
Click Turn On to enable SCIM provisioning.
Under SCIM provisioning, select Generate SCIM API Key.
Name your key and click Generate. Copy your new API key for later use and click Done.
You can revisit this page to generate a new API key later on if needed. Your previous API key will stay active briefly while you switch over.
For further information or assistance configuring SCIM, contact Postman support.
Visit Postman's SCIM API docs for information on setting up SCIM for your Postman team via the SCIM 2.0 API.
Learn more about defining roles in your team.