System for Cross-Domain Identity Management (SCIM) Configuration Guide


The System for Cross-domain Identity Management (SCIM) standard allows organizations to manage users in a third-party application.


You should already have an SSO integration configured. See Single Sign-On Configuration.

Supported Features

  • Create users
  • Update user attributes
  • Deactivate users


Configuration details vary from identity provider to identity provider. Consult their documentation for specifics.

Note: Before setting up and enabling SCIM, please be sure to speak with a support representative. Any manual mapping to existing Getty Images users must be completed before enabling SCIM.


Authorization is completed via OAuth 2.0. Some identity providers use the Authorization Code OAuth 2.0 grant type.

Necessary information:

SCIM Connection

SCIM base URL: SCIM Service Provider Config URL:

Identity Provider Specific Information

Azure AD SSO

Azure does not support OAuth authorization for manually configured SSO/SCIM integrations. The integration must be set up via the Azure Active Directory application gallery. We are actively working on submitting our application for inclusion there.


See here for Okta specific information.