Automated JIT provisioning and SCIM deprovisioning on Webflow Enterprise

Today we released SCIM automated user deprovisioning on Webflow Enterprise to allow teams to securely control the full user lifecycle from their IdP.

SCIM (System for Cross-domain Identity Management) allows you to manage your team securely at scale with automated provisioning and deprovisioning. When an admin grants a user access to Webflow from their IdP (e.g. Okta), a Webflow account for that user is automatically created via JIT provisioning when they log in using SSO for the first time. When the time comes to remove a user's Webflow access from their IdP, that user account in Webflow will automatically lose access to the associated Webflow Workspace. 

This will save admins time by no longer having to manually add or remove users from Workspaces, as well as provide an additional layer of security to ensure that access is revoked automatically for the right user at the right time. For more on how SCIM and SSO works in Webflow, take a look at our Webflow University documentation. 

If you’re a Webflow Enterprise customer and would like to set up SCIM deprovisioning or SSO, contact your Customer Success Manager. If you’d like to speak to someone about getting access to SCIM or SSO on Webflow Enterprise, get in touch with our sales team.