-
Feature Request
-
Resolution: Done
-
Major
-
None
-
None
-
False
-
None
-
False
-
Not Selected
-
-
1. Proposed title of this feature request
Support SCIM Standard ("System for Cross-domain Identity Managemen") in OpenShift 4
2. What is the nature and description of the request?
The users of Rolls-Royce Power Systems (RRPS) in OpenShift 4 are provisioned from Azure Active Directory.
If a user leaves "RRPS" the user would remain in OpenShift 4.
For security reasons users who left "RRPS" must be decommission from OpenShift.
Currently "RRPS" would need to do this manually or based on a non standard automated implementation.
Using SCIM it would be easily possible to get the decommissioning done automated in a standard way without having to implement a custom solution. "RRPS" and other customers using Azure AD would just need to active SCIM on Azure side to have the user life cycle management in place.
3. Why does the customer need this? (List the business requirements here)
For security reasons the "Joiner Mover Leaver Process" has to be supported/implemented.
4. List any affected packages or components.
OpenShift 4, Azure AD, OpenShift OAuth