[Freeipa-users] System for Cross-domain Identity Management (SCIM) support?
Petr Spacek
pspacek at redhat.com
Wed Sep 30 12:18:18 UTC 2015
Dear users,
we have few questions for you:
1) Would you like to see support for SCIM protocol in FreeIPA?
2) What are your use-cases?
Further reading:
* Presentations about SCIM from LDAPCon:
http://lanyrd.com/2013/ldapcon/
* Quote from RFC 7642:
1. Introduction
[...]
Unlike the practice of some protocols like Application Bridging for
Federated Access Beyond web (ABFAB) and SAML2 WebSSO, SCIM provides
provisioning and de-provisioning of resources in a separate context
from authentication (aka just-in-time provisioning).
[...]
2. SCIM User Scenarios
2.1. Background and Context
The System for Cross-domain Identity Management (SCIM) specification
is designed to manage user identity in cloud-based applications and
services in a standardized way to enable interoperability, security,
and scalability. The specification suite seeks to build upon
experience with existing schemas and deployments, placing specific
emphasis on simplicity of development and integration, while applying
existing authentication, authorization, and privacy models. The
intent of the SCIM specification is to reduce the cost and complexity
of user management operations by providing a common user schema and
extension model, as well as binding documents to provide patterns for
exchanging this schema using standard protocols. In essence, make it
fast, cheap, and easy to move users in to, out of, and around the
cloud.
Links:
* http://tools.ietf.org/html/rfc7642
* http://tools.ietf.org/html/rfc7643
* http://tools.ietf.org/html/rfc7644
Petr^2 Spacek
-------- Forwarded Message --------
Subject: [rfc-dist] RFC 7642 on System for Cross-domain Identity Management:
Definitions, Overview, Concepts, and Requirements
Date: Fri, 25 Sep 2015 16:34:54 -0700 (PDT)
From: rfc-editor at rfc-editor.org
To: ietf-announce at ietf.org, rfc-dist at rfc-editor.org
CC: drafts-update-ref at iana.org, scim at ietf.org, rfc-editor at rfc-editor.org
A new Request for Comments is now available in online RFC libraries.
RFC 7642
Title: System for Cross-domain Identity Management:
Definitions, Overview, Concepts, and Requirements
Author: K. LI, Ed., P. Hunt, B. Khasnabish,
A. Nadalin, Z. Zeltsan
Status: Informational
Stream: IETF
Date: September 2015
Mailbox: kepeng.lkp at alibaba-inc.com,
phil.hunt at oracle.com,
vumip1 at gmail.com, tonynad at microsoft.com,
zachary.zeltsan at gmail.com
Pages: 19
Characters: 38759
Updates/Obsoletes/SeeAlso: None
I-D Tag: draft-ietf-scim-use-cases-08.txt
URL: https://www.rfc-editor.org/info/rfc7642
DOI: http://dx.doi.org/10.17487/RFC7642
This document provides definitions and an overview of the System for
Cross-domain Identity Management (SCIM). It lays out the system's
concepts, models, and flows, and it includes user scenarios, use
cases, and requirements.
This document is a product of the System for Cross-domain Identity Management
Working Group of the IETF.
INFORMATIONAL: This memo provides information for the Internet community.
It does not specify an Internet standard of any kind. Distribution of
this memo is unlimited.
This announcement is sent to the IETF-Announce and rfc-dist lists.
To subscribe or unsubscribe, see
https://www.ietf.org/mailman/listinfo/ietf-announce
https://mailman.rfc-editor.org/mailman/listinfo/rfc-dist
For searching the RFC series, see https://www.rfc-editor.org/search
For downloading RFCs, see https://www.rfc-editor.org/rfc.html
Requests for special distribution should be addressed to either the
author of the RFC in question, or to rfc-editor at rfc-editor.org. Unless
specifically noted otherwise on the RFC itself, all RFCs are for
unlimited distribution.
The RFC Editor Team
More information about the Freeipa-users
mailing list