Getting started with 1Password for your growing team, or refining your setup? Our Secured Success quickstart guide is for you.
Forum Discussion
SCIM Bridge
Why is the SCIM Bridge needed? If I already have to create an Enterprise Application in Azure, then the SCIM bridge really becomes an unnecessary and overcomplicated step. I should not have to register a new domain or spin up a separate VM just to get an integration to pull accounts automatically. As an MSP and reselling this to potentially 50 different organizations, this step becomes very time-consuming and wasteful.
4 Replies
- 1P_Dave
Moderator
Thanks for reaching out! The data stored in 1Password is end-to-end encrypted and an important aspect of that is that we (here at 1Password) never have any keys to customer data. We don't want to be in the position of holding the keys that would enable us to decrypt your data.
The SCIM bridge, hosted with your organization's infrastructure so that you retain control of your encryption keys, takes requests from your identity provider and converts request from SCIM language to 1Password's encryption key language. With this design, 1Password never has access to your keys and your data remains end-to-end encrypted.
You can read more here:
- 1Password SCIM bridge explained: what it is, and why we made it
- About 1Password SCIM Bridge security
That being said, I've shared your comments with the team internally so that they can investigate if an alternate design is possible for SCIM in the future. Thanks for the feedback!-Dave
PB-49042288
Thanks for the reply! For myself, I would love to use SCIM, but chose not to as I didn't want to have another server just to facilitate this. If there was a way to do so without the new for a new server I would have implemented it.
- 1P_Dave
Thank you, I've passed your feedback along to the team.
-Dave
- 1Password SCIM bridge explained: what it is, and why we made it
Completely agree! This should be added as a feature request.
