Yoodli supports managing user membership and groups via System for Cross-domain Identity Management [SCIM] 2.0 integrations with compatible identity provider [IdP] systems, such as Entra ID and Okta.

SCIM configuration in Yoodli is tied to the Yoodli organization.

Navigate to “Org settings” > “Access and SSO”, find “SCIM 2.0”, and click the “Configure” button. If the button says “Manage”, then SCIM has already been configured and you can click the “Manage” button to modify the configuration.

If you don’t see the “SCIM 2.0” section, please contact Yoodli support to request access to this feature.

The SCIM configuration page provides the Yoodli SCIM server URL and allows you to generate the bearer token. Note that the bearer token is specific to your Yoodli organization. When you generate the bearer token, all previous bearer tokens generated for your organization’s SCIM configuration immediately become invalid.

SCIM configuration varies by IdP. Please see the following resources.

In all cases, you will need to provide the Yoodli SCIM server URL and your organization’s SCIM bearer token to configure the integration within the IdP.

For the SCIM enterprise application, ensure that the user attribute mapping configuration for the customappsso attribute “emails[type eq "work"].value” maps to the user email address they will use during signin to Yoodli.

A single SCIM user corresponds to a single IdP user and a single Yoodli user. When the user is provisioned to the Yoodli SCIM integration within the IdP, that user will be provisioned within Yoodli as a Yoodli user.

When a new SCIM user is provisioned to Yoodli, that user’s “emails[type eq "work"].value” attribute is used as the Yoodli user’s email address. If a Yoodli user already exists with that email address, then they will be associated with this SCIM user. If a Yoodli user does not already exist with that email address, then the SCIM user will not be associated with a Yoodli user until someone starts using Yoodli with that email address.

When a new SCIM user is provisioned to Yoodli, they are not immediately added to the Yoodli organization. That will happen only after they are added to a SCIM group and the SCIM group membership is updated in Yoodli.

When an existing SCIM user is deprovisioned from Yoodli, the corresponding Yoodli user is deleted, along with any recordings they have made in Yoodli.

A single SCIM group corresponds to a single IdP group and a single Yoodli group. When the group is provisioned to the Yoodli SCIM integration within the IdP, that group will be provisioned within Yoodli as a Yoodli group within the organization.

When a new SCIM group is provisioned to Yoodli, that group’s name is used to map the SCIM group to an existing Yoodli group. If a Yoodli group already exists with that group name, then the SCIM group will be associated with that Yoodli group. If a Yoodli group does not already exist with that group name, then the SCIM group will be associated with a new Yoodli group.

The Yoodli group corresponding to a SCIM group will show “SCIM managed” in the group list. SCIM-managed Yoodli groups do not allow changes to group membership in the Yoodli UI for group members. Group administrators may still be added and removed in the Yoodli UI.

When an existing SCIM group is deprovisioned from Yoodli, the corresponding Yoodli group is deleted if there are no remaining administrators assigned to the group.

When a SCIM user is added to a SCIM group and both the user and group are provisioned to Yoodli via SCIM, the corresponding Yoodli user will have membership in the corresponding Yoodli group.

In order for a new SCIM group membership to be provisioned to Yoodli, the SCIM user and SCIM group must have already been provisioned to Yoodli.

When a SCIM group membership is provisioned to Yoodli and the user already exists as a Yoodli user, the Yoodli user is granted membership in the Yoodli group.

When a SCIM group membership is provisioned to Yoodli and the user does not already exist as a Yoodli user, the user’s email address is invited to the Yoodli group. When the user signs into Yoodli, the invitation is converted to membership within the Yoodli group.

When a SCIM group membership is deprovisioned from Yoodli and the user already exists as a Yoodli user, the Yoodli user is removed from the Yoodli group.

When a SCIM group membership is deprovisioned from Yoodli and the user does not already exist as a Yoodli user, the user’s email address is removed from the invitation list for the Yoodli group.