Summary and recommendation
TalentLMS includes SCIM 2.0 provisioning on all paid plans ($109/month and up), with solid support for user creation, attribute updates, and deactivation across major identity providers. However, there's a critical configuration dependency: SAML SSO must be configured before SCIM can be enabled. This creates a chicken-and-egg problem for organizations that want to automate user provisioning from day one, as manual SSO setup becomes a prerequisite for automation.
The sequential setup requirement means IT teams can't achieve fully automated onboarding workflows without manual intervention. New employees must wait for SSO configuration before their accounts can be provisioned via SCIM, creating delays in training access and potential compliance gaps for organizations with strict onboarding timelines.
The strategic alternative
TalentLMS gates SCIM behind All paid plans. Skip the All paid plans plan upgrade and automate complete outcomes across your stack. We maintain the integration layer underneath. You focus on judgment, not plumbing.
Quick SCIM facts
| SCIM available? | Yes |
| SCIM tier required | Custom |
| SSO required first? | Yes |
| SSO available? | Yes |
| SSO protocol | SAML 2.0 |
| Documentation | Official docs |
Supported identity providers
| IdP | SSO | SCIM | Notes |
|---|---|---|---|
| Okta | ✓ | ✓ | OIN app with full provisioning |
| Microsoft Entra ID | ✓ | ✓ | Gallery app with SCIM |
| Google Workspace | ✓ | JIT only | SAML SSO with just-in-time provisioning |
| OneLogin | ✓ | ✓ | Supported |
The cost of not automating
Without SCIM (or an alternative like Stitchflow), your IT team manages TalentLMS accounts manually. Here's what that costs:
The TalentLMS pricing problem
TalentLMS gates SCIM provisioning behind premium plans, forcing significant cost increases for basic user management.
Plan Structure (Billed Annually)
| Plan | Price | SSO | SCIM |
|---|---|---|---|
| Free | $0 | ||
| Core | $109/mo | ||
| Grow | $229/mo | ||
| Pro | $399/mo | ||
| Enterprise | Custom |
Note: All paid plans include SAML 2.0 SSO and SCIM 2.0. Monthly billing available at 20% premium.
What this means in practice
While SCIM is available on all paid tiers, the user-based pricing creates forced upgrades as your training program grows:
| Current Users | Required Plan | Annual Cost | Cost Per User |
|---|---|---|---|
| 75 users | Core (100 max) | $1,308 | $17.44 |
| 150 users | Grow (500 max) | $2,748 | $18.32 |
| 750 users | Pro (1,000 max) | $4,788 | $6.38 |
| 1,200 users | Enterprise | Custom pricing | Variable |
Additional constraints
Summary of challenges
- TalentLMS supports SCIM but only at Custom tier (Custom pricing)
- Google Workspace users get JIT provisioning only, not full SCIM
- Our research shows teams manually provisioning this app spend significant hidden costs annually
What the upgrade actually includes
TalentLMS includes SCIM on all paid plans, starting at $109/month for the Core plan. The bundle includes:
One quirk: SAML SSO must be configured before SCIM, and TalentLMS only supports SP-initiated SSO (users must start login from TalentLMS, not your IdP).
Stitchflow Insight
The Core plan at $109/month gets you both SSO and SCIM for up to 100 users. Unlike many LMS platforms that gate identity features behind enterprise tiers, TalentLMS makes them accessible on all paid plans. However, you're still paying for LMS features you may not need - we estimate ~60% of TalentLMS functionality is training-specific rather than identity management.
What IT admins are saying
Community sentiment on TalentLMS's SCIM implementation is generally positive, with most complaints focused on setup complexity rather than cost barriers.
- SAML SSO must be configured before SCIM can be enabled
- Limited to SP-initiated SSO only (no IdP-initiated login)
- Documentation could be clearer on the prerequisite steps
- Initial configuration requires coordination between SSO and provisioning setup
The recurring theme
TalentLMS offers good value with SCIM on all paid plans, but the prerequisite of configuring SAML first creates setup friction that catches some admins off guard.
The decision
| Your Situation | Recommendation |
|---|---|
| On Core/Grow/Pro plans, need SCIM | Use Stitchflow: avoid the Enterprise pricing jump |
| Already on Enterprise with SCIM included | Use native SCIM: you're paying for it |
| Need advanced Enterprise features beyond SCIM | Evaluate Enterprise: SCIM comes bundled |
| Small training team, infrequent user changes | Manual may work: but watch for training access gaps |
| Multi-IdP environment or complex provisioning needs | Use Stitchflow: broader IdP support and automation |
The bottom line
TalentLMS includes SCIM on all paid plans, but many organizations discover they need more sophisticated provisioning workflows than the basic user create/update/deactivate operations provide. Stitchflow delivers comprehensive managed automation without requiring an Enterprise upgrade or custom implementation work.
Make TalentLMS workflows AI-native
TalentLMS gates SCIM behind All paid plans. We build complete offboarding, user access reviews, and license workflows without that SCIM Tax upgrade.
Technical specifications
SCIM Version
2.0
Supported Operations
Create, Update, Deactivate, Groups
Supported Attributes
Not specifiedPlan requirement
Custom
Prerequisites
SSO must be configured first
Key limitations
- SAML must be configured before SCIM
- SP-initiated SSO only
Configuration for Okta
Integration type
Okta Integration Network (OIN) app with SCIM provisioning
Prerequisite
SSO must be configured before enabling SCIM.
Where to enable
Required credentials
SCIM endpoint URL and bearer token (generated in app admin console).
Configuration steps
Enable Create Users, Update User Attributes, and Deactivate Users.
Provisioning trigger
Okta provisions based on app assignments (users or groups).
Custom required for SCIM
TalentLMS gates SCIM behind All paid plans. Stitchflow automates complete workflows without that SCIM Tax upgrade.
Configuration for Entra ID
Integration type
Microsoft Entra Gallery app with SCIM provisioning
Prerequisite
SSO must be configured before enabling SCIM.
Where to enable
Required credentials
Tenant URL (SCIM endpoint) and Secret token (bearer token from app admin console).
Configuration steps
Set Provisioning Mode = Automatic, configure SCIM connection.
Provisioning trigger
Entra provisions based on user/group assignments to the enterprise app.
Sync behavior
Entra provisioning runs on a scheduled cycle (typically every 40 minutes).
Custom required for SCIM
TalentLMS gates SCIM behind All paid plans. Stitchflow automates complete workflows without that SCIM Tax upgrade.
Unlock SCIM for
TalentLMS
TalentLMS gates SCIM behind All paid plans. We automate complete offboarding and access reviews across your stack without that SCIM Tax upgrade.
See how it works
