SCIM - User and role management API – Duco

As a SaaS provider, Duco is using the widely recognized industry standards such as SCIM API for user and entitlement management.

What is SCIM?

SCIM is a widely adopted industry standard that defines a set of REST API endpoints to streamline identity management across IT systems.

It enables your IdP to automatically provision and manage user accounts in Duco - ideal for organizations using tools like:

Duco follows the SCIM 2.0 protocol to ensure compatibility and ease of integration.

For general SCIM documentation, we recommend Okta’s SCIM developer guide.

Duco supports standard SCIM API endpoint for managing:

Available for Enterprise edition.

Your Identity Provider must support the SCIM protocol (e.g., Okta, SailPoint, OneLogin).

Our Support team will:

Enable SCIM support for your environment.
Provision a dedicated SCIM API user and token.
Share the SCIM API token with your team securely (with no token trace retained on our side).
- As per standard API token transfer, the public half of a GPG you provide will be used to encrypt the token for transfer.

Your IT team should then:

Once configured, your IdP can start managing users and groups in Duco automatically.

Only one SCIM API user is supported per environment.
This user has access only to SCIM endpoints and cannot be used for general API access.
SCIM activity is fully auditable and follows our enterprise-grade security standards.

Reach out to your Customer Success Manager to begin the setup.

You can find all the technical details in the PDF document located at the bottom of this article.

SaaS - Software as a Service

SCIM - System for Cross-domain Identity Management

REST - Representational State Transfer

API - Application Programming Interface

IdP - Identity Provider