Automated provisioning

idemeum allows you to automatically create user accounts when employees are onboarded, and safely and timely remove application accounts when your employees leave the organization.

Overview

When employee onboards into organization with mobile identity, idemeum will leverage SCIM or custom API integrations to create required SaaS accounts. Once the employee is terminated / off-boarded in idemeum or external user source, all application accounts will be removed and access revoked.

Provisioning configuration

📔

First check our integration portal to see what applications we support for automated provisioning.

Access your idemeum admin portal and navigate to Applications section
Click Add app and choose Catalog app

You can search for an application that you want to set up provisioning for. Before provisioning you also need to set up SAML integration.
Click Add app, and then navigate to Provisioning section.

Based on what application supports, you will either have to enter an API key or conduct oAuth flow to allow idemeum to perform automated provisioning. For most applications we rely on SCIM protocol to conduct provisioning, however for some applications we rely on custom API connectors that we developed.

📔

Please, check our integrations portal as we have a detailed step by step instructions there for how to enable SSO and provisioning for each application that idemeum supports.

Quick-start guides

Elevated computer access

Elevated Entra ID access

LAPS

Multi-tenant MSP portal

Desktop client

Passwordless MFA

Cloud directory

Cloud RADIUS

Cloud LDAP

RFID Single Sign-On

Single Sign-On

Security

Downloads

Support

Knowledgebase

Legal