Skip to main content

Single Sign-On

Automated provisioning

idemeum allows you to automatically create user accounts when employees are onboarded, and safely and timely remove application accounts when your employees leave the organization.


When employee onboards into organization with mobile identity, idemeum will leverage SCIM or custom API integrations to create required SaaS accounts. Once the employee is terminated / off-boarded in idemeum or external user source, all application accounts will be removed and access revoked.

Provisioning configuration

First check our integration portal to see what applications we support for automated provisioning.
  • Access your idemeum admin portal and navigate to Applications section
  • Click Add app and choose Catalog app
  • You can search for an application that you want to set up provisioning for. Before provisioning you also need to set up SAML integration.
  • Click Add app, and then navigate to Provisioning section.
  • Based on what application supports, you will either have to enter an API key or conduct oAuth flow to allow idemeum to perform automated provisioning. For most applications we rely on SCIM protocol to conduct provisioning, however for some applications we rely on custom API connectors that we developed.
Please, check our integrations portal as we have a detailed step by step instructions there for how to enable SSO and provisioning for each application that idemeum supports.