Crisp SCIM guide

Freshchat offers SCIM provisioning only on Enterprise plans ($95/agent/month), but only through specific marketplace apps for OneLogin and Azure AD - not as native SCIM functionality. This creates a significant limitation for organizations using other identity providers like Okta or Google Workspace, who must rely on workarounds or manual provisioning. Even with supported IdPs, the implementation requires installing separate Freshworks marketplace apps rather than standard SCIM connectors, adding complexity to your identity management stack. The restricted SCIM support creates operational friction for IT teams managing Freshchat access across support, sales, and customer success teams. Without proper provisioning automation, organizations face the dual burden of manual user lifecycle management and the security risk of orphaned accounts when agents leave or change roles. For growing support teams that need rapid onboarding and consistent access controls, the Enterprise-only requirement represents a substantial cost barrier - potentially adding tens of thousands annually just to access basic provisioning capabilities.

6sense, the B2B revenue intelligence platform, has paused SCIM provisioning for new customers until Q4 2026. While existing customers with SCIM enabled can continue using it, new implementations are limited to JIT (Just-In-Time) provisioning through SAML SSO. This creates a significant gap for IT teams managing revenue intelligence access, as JIT only creates users on first login and provides minimal attribute mapping (email, first name, last name only). For an enterprise platform with typical pricing of $55,000-$130,000 annually, the absence of automated user lifecycle management is a substantial limitation. The lack of SCIM until Q4 2026 forces IT teams into manual provisioning workflows for a platform handling sensitive revenue data. While SAML SSO handles authentication, it doesn't address user lifecycle events like role changes, department transfers, or offboarding. This creates compliance risks in revenue teams where access to prospect data and sales intelligence must be tightly controlled. The nearly two-year wait for SCIM restoration means organizations implementing 6sense today face manual user management for the foreseeable future.

ActiveCampaign, the marketing automation platform, does not offer native SCIM provisioning on any plan. While the Enterprise plan ($145+/month) includes SAML 2.0 SSO with just-in-time (JIT) provisioning, this only creates user accounts on first login—there's no automated deprovisioning when employees leave or change roles. New SSO users are automatically added to a generic "SSO Users" group with configurable permissions, but IT teams have no way to programmatically manage user lifecycles or enforce granular access controls based on department or role changes. This creates a significant gap for marketing teams that need to manage access to customer data and campaign tools. When employees leave the company or change departments, their ActiveCampaign access must be manually revoked, creating compliance risks and potential data exposure. The lack of automated deprovisioning means former employees could theoretically retain access to sensitive marketing data and customer information until someone manually removes them from the platform.