Skip to main content


SSO supports identity federation with SAML (Security Assertion Markup Language) 2.0. With SSO enabled, users can access their Kisi accounts based on their existing identity provider credentials (such as a user name and password).

The System for Cross-domain Identity Management (SCIM) v2.0 standard keeps the identities in your IdP in sync with the identities in Kisi. This includes: provisioning, deprovisioning, role and group membership updates.

In summary: while SSO SAML 2.0 is responsible for the identity ('who can access Kisi'), SCIM is responsible for the permissions ('what can the user do' in Kisi).