SCIM Credential Mgmt Discussion

From IIW

SCIM Credential Management Discussion

Wednesday 4H

Convener: Phil Hunt – Oracle

Notes-taker(s): Bill Mills – Microsoft/Skype

Tags for the session - technology discussed/ideas considered:

SCIM, Password management, password suitability.

Discussion notes, key understandings, outstanding questions, observations, and, if appropriate to this discussion: action items, next steps:

  • Exploration of SCIM vs. password policy enforcement.
  • Password vs. other authenticators and how to handle them
  • Extending the schema to support various policy.
  • Is SCIM going to be an authentication engine.
  • Does SCIM become a validation engine?
  • Phil: Let’s look at this for lessons learned. This draft may not go forward as is.
  • Using SCIM as a back channel for account event propagation is potentially interesting.