Update SAML and SCIM mapping docs (#55190)
Co-authored-by: Joe Clark <31087804+jc-clark@users.noreply.github.com> Co-authored-by: Sunbrye Ly <56200261+sunbrye@users.noreply.github.com>
This commit is contained in:
Taylor Reis
@@ -169,6 +169,7 @@ Before a person with an identity on your identity management system can sign in
|
||||
|
||||
* For an overview of the supported attributes for users, see [SCIM](/rest/enterprise-admin/scim#supported-scim-user-attributes) in the REST API documentation.
|
||||
* You can view provisioned users in the {% data variables.product.github %} UI. For more information, see [AUTOTITLE](/admin/managing-accounts-and-repositories/managing-users-in-your-enterprise/viewing-people-in-your-enterprise).
|
||||
{% ifversion scim-for-ghes-ga %}* {% data reusables.scim.ghe-scim-identities-csv %}{% endif %}
|
||||
|
||||
| Action | Method | Endpoint and more information | Events in the audit log |
|
||||
| :- | :- | :- | :- |
|
||||
|
||||
@@ -87,6 +87,7 @@ If you currently use SAML SSO, and you are enabling SCIM, you should be aware of
|
||||
* If a user account with a matching username does exist, {% data variables.product.prodname_ghe_server %} links the SCIM identity to this user account.
|
||||
* If a user account with a matching username doesn't exist, {% data variables.product.prodname_ghe_server %} creates a new user account and links it to this SCIM identity.
|
||||
* If {% data variables.product.prodname_dotcom %} successfully matches a user who is authenticating via SAML with an existing user account, but account details such as email address, first name, or last name don't match, the instance **overwrites the details** with values from the IdP. Any email addresses other than the primary email provisioned by SCIM will also be deleted from the user account.
|
||||
{% ifversion scim-for-ghes-ga %}* {% data reusables.scim.ghe-scim-identities-csv %}{% endif %}
|
||||
|
||||
## What happens during SAML authentication?
|
||||
|
||||
|
||||
Reference in New Issue
Block a user