Summary and recommendation
X Ads, the advertising platform formerly known as Twitter Ads, does not support SCIM provisioning on any plan. While X offers basic SSO integration through Okta for authentication, this only covers login—not user lifecycle management. User access to X Ads accounts must be managed manually through the platform's multi-user login feature at ads.X.com, where account administrators must individually invite users and assign permission levels (Account administrator, Ad manager, Campaign analyst, Organic analyst, Creative Manager). This manual process creates significant overhead for IT teams managing advertising access across multiple campaigns and teams.
The lack of automated provisioning becomes particularly problematic for enterprises running complex advertising operations with frequent team changes, seasonal contractors, or cross-functional campaign teams. IT administrators cannot automatically provision users when they join advertising projects or deprovision them when campaigns end, creating both security risks and administrative burden. Since X Ads operates on a pay-per-performance model where unauthorized access can directly impact advertising spend, manual user management introduces compliance risks around financial controls and access governance.
The strategic alternative
X Ads has no native SCIM. Automate offboarding, user access reviews, and license workflows across every app, including the ones without APIs. We maintain the integration layer underneath. You focus on judgment, not plumbing.
Quick SCIM facts
| SCIM available? | No |
| SCIM tier required | N/A |
| SSO required first? | No |
| SSO available? | Yes |
| SSO protocol | SAML 2.0 |
| Documentation | Not available |
Supported identity providers
| IdP | SSO | SCIM | Notes |
|---|---|---|---|
| Okta | ✓ | ❌ | General X (Twitter) integration for authentication. No SCIM provisioning for ads platform. |
| Microsoft Entra ID | Via third-party | ❌ | No official Entra integration for X Ads |
| Google Workspace | Via third-party | ❌ | No native support |
| OneLogin | Via third-party | ❌ | No native support |
The cost of not automating
Without SCIM (or an alternative like Stitchflow), your IT team manages X Ads accounts manually. Here's what that costs:
The X Ads pricing problem
X Ads gates SCIM provisioning behind premium plans, forcing significant cost increases for basic user management.
Tier comparison
| Plan | Price | SSO | SCIM |
|---|---|---|---|
| Free access | Free platform access | ||
| Pay-per-click/impression | Variable ad spend |
Pricing structure
| Plan | Price | SSO | SCIM |
|---|---|---|---|
| Free access | Free platform access | ||
| Pay-per-click/impression | Variable ad spend |
What this means in practice
Without SCIM provisioning, every user addition, role change, or removal requires manual intervention:
This creates security risks when employees change roles or leave the company, as their X Ads access may not be immediately revoked.
Additional constraints
Summary of challenges
- X Ads does not provide native SCIM at any price tier
- Organizations must rely on third-party tools or manual provisioning
- Our research shows teams manually provisioning this app spend significant hidden costs annually
What X Ads actually offers for identity
Multi-user Access (All accounts)
X Ads provides basic multi-user functionality through their ads platform:
| Feature | Details |
|---|---|
| Access method | Manual invitations via ads.x.com |
| Permission levels | Account administrator, Ad manager, Campaign analyst, Organic analyst, Creative Manager |
| User management | Manual invite/remove process |
| SSO support | None for ads platform |
Critical limitation: Every user addition, role change, or removal requires manual intervention through the X Ads interface. No automated provisioning exists.
Okta Integration (General X platform only)
The Okta Integration Network listing covers general X (Twitter) authentication, not the ads platform:
| Feature | Supported? |
|---|---|
| SAML SSO | ✓ Yes (main X platform) |
| SCIM provisioning | ❌ No |
| Ads platform access | ❌ Not covered |
| User lifecycle management | ❌ No |
| Group management | ❌ No |
Translation: The Okta integration handles authentication for personal/business X accounts, but provides zero identity management for the advertising platform where your team actually works.
Microsoft Entra Integration
No official integration exists between Microsoft Entra and X Ads. Organizations using Entra must manage X Ads access entirely outside their identity provider.
What IT admins are saying
X Ads's lack of automated provisioning creates operational overhead for IT teams managing advertising access:
- Manual user invitations required for every new team member
- No automated deprovisioning when employees leave the company
- Permission management scattered across multiple X Ads accounts
- SSO available but doesn't eliminate manual account creation steps
The multi-user login feature helps with collaboration, but we still have to manually invite each user and set their permission level. There's no way to sync this with our identity provider.
When someone leaves the marketing team, we have to remember to remove them from all our X Ads accounts manually. It's easy to forget, especially with contractors.
The recurring theme
X Ads treats user management as an afterthought, forcing IT teams to maintain separate user lifecycles for advertising platform access alongside their primary identity management workflows.
The decision
| Your Situation | Recommendation |
|---|---|
| Small advertising team (<10 users) with stable membership | Manual user management is workable |
| Medium advertising agency (10-30 users) with regular team changes | Use Stitchflow: automation saves significant admin overhead |
| Enterprise marketing team with compliance requirements | Use Stitchflow: essential for audit trail and access governance |
| Multi-brand organization managing multiple X Ads accounts | Use Stitchflow: automation critical for complex permission management |
| Agency managing client accounts with frequent contractor access | Use Stitchflow: automated provisioning prevents access sprawl |
The bottom line
X Ads offers no SCIM provisioning—just manual user invitations through their multi-user login feature across five permission levels. For marketing teams that need automated user lifecycle management and proper access governance, Stitchflow delivers the provisioning automation that X Ads doesn't provide.
Make X Ads workflows AI-native
X Ads has no native SCIM. We build complete offboarding, user access reviews, and license workflows across every app, including the ones without APIs.
Technical specifications
SCIM Version
Not specifiedSupported Operations
Not specifiedSupported Attributes
Plan requirement
Not specifiedPrerequisites
Not specifiedKey limitations
- No SCIM provisioning support
- User access managed through multi-user login feature in ads.X.com
- Permission levels: Account administrator, Ad manager, Campaign analyst, Organic analyst, Creative Manager
- Manual user invitation required
Documentation not available.
Configuration for Okta
Integration type
Okta Integration Network (OIN) app
Where to enable
Docs
General X (Twitter) integration for authentication. No SCIM provisioning for ads platform.
Use Stitchflow for automated provisioning.
Unlock SCIM for
X Ads
X Ads has no native SCIM. We still automate end-to-end workflows across every app, including the ones without APIs.
See how it works
