Summary and recommendation
Gorgias, the e-commerce helpdesk platform, does not support SCIM provisioning on any plan. While Gorgias offers comprehensive SSO support across all plans—including Google/Microsoft SSO and custom SAML for providers like Okta and JumpCloud—this only handles authentication. User accounts are created automatically via Just-in-Time (JIT) provisioning on first login, but there's no automated deprovisioning when employees leave or change roles.
This creates a significant security and compliance gap for IT teams managing customer support operations. When support agents are terminated or transferred, their Gorgias access remains active until manually removed. For companies processing customer data through their support tickets, this represents both a data security risk and potential compliance violation. The manual deprovisioning burden becomes particularly problematic for growing e-commerce companies with frequent support staff changes.
The strategic alternative
Gorgias has no native SCIM. Automate offboarding, user access reviews, and license workflows across every app, including the ones without APIs. We maintain the integration layer underneath. You focus on judgment, not plumbing.
Quick SCIM facts
| SCIM available? | No |
| SCIM tier required | N/A |
| SSO required first? | No |
| SSO available? | Yes |
| SSO protocol | SAML 2.0, Google SSO, Microsoft SSO |
| Documentation | Not available |
Supported identity providers
| IdP | SSO | SCIM | Notes |
|---|---|---|---|
| Okta | Via third-party | ❌ | Custom SAML SSO supported with Okta. JIT provisioning creates accounts on first login. No SCIM provisioning. |
| Microsoft Entra ID | Via third-party | ❌ | Microsoft SSO supported on all plans. JIT provisioning only. No SCIM provisioning. |
| Google Workspace | Via third-party | ❌ | No native support |
| OneLogin | Via third-party | ❌ | No native support |
The cost of not automating
Without SCIM (or an alternative like Stitchflow), your IT team manages Gorgias accounts manually. Here's what that costs:
The Gorgias pricing problem
Gorgias gates SCIM provisioning behind premium plans, forcing significant cost increases for basic user management.
Tier comparison
| Plan | Price | SSO | SCIM |
|---|---|---|---|
| Starter | $10/mo (50 tickets, 3 agents) | ||
| Basic | $60/mo (300 tickets) | ||
| Pro | $360/mo (2,000 tickets) | ||
| Advanced | $900/mo (5,000 tickets) | ||
| Enterprise | Custom (6,000+ tickets) |
Provisioning capabilities
| Plan | Price | SSO | SCIM |
|---|---|---|---|
| Starter | $10/mo (50 tickets, 3 agents) | ||
| Basic | $60/mo (300 tickets) | ||
| Pro | $360/mo (2,000 tickets) | ||
| Advanced | $900/mo (5,000 tickets) | ||
| Enterprise | Custom (6,000+ tickets) |
What this means in practice
User onboarding requires two-step process
1. IT admin manually creates Gorgias account and assigns role 2. User logs in via SSO for the first time (JIT provisioning only handles authentication)
Deprovisioning is entirely manual
No group or attribute sync
Additional constraints
Summary of challenges
- Gorgias does not provide native SCIM at any price tier
- Organizations must rely on third-party tools or manual provisioning
- Our research shows teams manually provisioning this app spend significant hidden costs annually
What Gorgias actually offers for identity
SAML SSO (All Plans)
Gorgias provides decent SSO options across all pricing tiers:
| Setting | Details |
|---|---|
| Protocol | SAML 2.0, Google SSO, Microsoft SSO |
| Supported IdPs | Google, Microsoft (native), Okta, JumpCloud (SAML) |
| JIT Provisioning | ✓ Yes - creates accounts on first login |
| Configuration | Contact support for custom SAML setup |
| Mobile SSO | ❌ No - mobile app doesn't support SSO login |
Key strength: Unlike many helpdesk tools, Gorgias includes SSO on all plans starting at $10/month, not just enterprise tiers.
What's Missing: User Lifecycle Management
| Identity Feature | Supported? |
|---|---|
| SSO Authentication | ✓ Yes |
| JIT User Creation | ✓ Yes |
| SCIM Provisioning | ❌ No |
| Automated Deprovisioning | ❌ No |
| Group/Role Sync | ❌ No |
| Attribute Updates | ❌ No |
The gap: While Gorgias creates users automatically when they first log in via SSO, there's no automated way to remove access when employees leave or change roles. Support managers must manually deactivate users in the Gorgias admin panel.
Why this matters for e-commerce teams: Customer support agents often have high turnover, and they handle sensitive customer data. Manual deprovisioning creates security risks and administrative overhead that scales poorly as your support team grows.
What IT admins are saying
Gorgias's lack of SCIM provisioning forces IT teams into manual user management workflows:
- Manual deprovisioning required - When support agents leave, their Gorgias accounts must be manually disabled since SCIM isn't available
- JIT-only provisioning - New users can only be created through first-time SSO login, with no pre-provisioning capabilities
- Mobile app SSO gap - Support agents can't use SSO on mobile devices, requiring separate password management
- No automated lifecycle management - User role changes and team assignments require manual updates in Gorgias
SSO creates accounts on first login through just-in-time provisioning, but there's no way to automate deprovisioning when people leave.
The mobile app not supporting SSO is frustrating - our support agents are constantly on mobile helping customers, but they have to manage separate passwords.
The recurring theme
While Gorgias offers solid SSO integration across identity providers, the absence of SCIM means IT teams must manually track and manage user lifecycle changes in yet another system, creating security gaps when former employees retain access.
The decision
| Your Situation | Recommendation |
|---|---|
| Small support team (<10 agents) | Manual management with SSO is acceptable |
| Stable customer service team with low turnover | Use SSO for authentication, manage users manually |
| Growing e-commerce business (25+ support agents) | Use Stitchflow: manual deprovisioning creates security gaps |
| Enterprise with seasonal support scaling | Use Stitchflow: automation essential for rapid team changes |
| Multi-brand e-commerce with distributed teams | Use Stitchflow: automation strongly recommended for compliance |
The bottom line
Gorgias excels at e-commerce customer support but offers no SCIM provisioning—only SSO with JIT account creation. When support agents leave, you must manually deprovision their access, creating security risks for customer data. For growing support teams that need proper lifecycle management, Stitchflow eliminates the manual deprovisioning burden.
Make Gorgias workflows AI-native
Gorgias has no native SCIM. We build complete offboarding, user access reviews, and license workflows across every app, including the ones without APIs.
Technical specifications
SCIM Version
Not specifiedSupported Operations
Not specifiedSupported Attributes
Plan requirement
Not specifiedPrerequisites
Not specifiedKey limitations
- No SCIM provisioning
- JIT provisioning via SSO only
- Mobile app doesn't support SSO login
Documentation not available.
Unlock SCIM for
Gorgias
Gorgias has no native SCIM. We still automate end-to-end workflows across every app, including the ones without APIs.
See how it works
