What percentage of SaaS apps support SCIM?

Only 39% support SCIM at all. Of those, 99% require Enterprise pricing. Only 0.5% (3 apps) offer SCIM without Enterprise tiers.

How many apps require Enterprise tier for SCIM?

206 apps in our analysis (37%) offer SCIM only on Enterprise tiers. Combined with the 61% that have no SCIM at all, 98% of apps require either manual management or an expensive upgrade.

What is the SCIM coverage gap?

The SCIM coverage gap is the 98% of SaaS applications that don't support automated provisioning on standard plans, creating manual work for IT.

What is the difference between native SCIM and IdP connectors?

Native SCIM uses the standardized protocol for direct integration. IdP connectors often only support SSO (authentication), not provisioning (lifecycle management).

State of Automation 2026

The 98% SCIM gap

We analyzed 552 SaaS applications to answer one question:
Is manual provisioning your fault, or the vendor's?

The data nobody wants to publish

Every IdP vendor promises the same thing: "Connect your apps. Automate provisioning. Secure your organization."

Then you try to automate your actual stack. The reality? Out of 552 applications analyzed, only 11 offer native SCIM without an Enterprise upgrade.

The 2.0% club (Open SCIM)

AWS IAM Identity Center

Fivetran

15Five

SCIM availability across 552 apps

No SCIM Support55% (306 apps)

Manual management required. No automation possible natively.

SCIM Paywalled43% (235 apps)

Locked behind "Enterprise" pricing (2-3x markup).

Open SCIM2.0% (11 apps)

Available on standard plans.

The gap by department

Not all teams suffer equally. Finance and Marketing tools are the worst offenders, leaving huge gaps in offboarding security.

Finance

9 apps

89%No SCIM

Marketing

16 apps

81%No SCIM

Password Managers

138 apps

75%No SCIM

Sales / CRM

29 apps

72%No SCIM

HR / Payroll

94 apps

71%No SCIM

Developer Tools

10 apps

60%No SCIM

The business model

Why is automatic provisioning so rare?

SCIM is not technically difficult. The protocol has existed since 2011. Vendors don't withhold it because they can't build it—they withhold it because it's profitable.

The upsell trap

Vendors use SCIM as a "feature gate" to force mid-market companies into Enterprise contracts. It's often bundled with audit logs and SSO, justifying a 200-300% price increase.

The "free tier" funnel

Mass-market tools land cheap with free tiers to get adoption. Once usage spreads, IT needs to manage it. That's when the "Enterprise Tax" hits.

Save $12k per app / year

Stop paying the enterprise tax.

You don't need to upgrade to Enterprise to get automation. Stitchflow connects your IdP (Okta or Entra) to the "unsupported" 98% of apps, giving you SCIM-like provisioning on the plan you're already on.

Automate your stack

The cost of manual management

1
7 orphaned accounts
Average per app. Ex-employees retaining access.
2
12 unused licenses
Paying for seats nobody uses because offboarding failed.
3
101 IT hours
Wasted annually per app on manual tickets.