UXPin User Management API Guide

Auth method: Not documented

User object field mapping is not yet verified for this app.

Endpoint coverage is not yet verified for this app.

• Rate limits: Not documented

• Rate-limit headers: No

• Retry-After header: No

• Rate-limit notes: Not documented

• Pagination method: none

• Default page size: 0

• Max page size: 0

• Pagination pointer: Not documented

• Webhooks available: No

• Webhook notes: No webhook system for user-management events is documented in UXPin's official help center or developer resources.

• Alternative event strategy: Manual user management via the UXPin web UI or SSO-based provisioning through a supported IdP (Okta, OneLogin) using SAML.

• SCIM available: No
• SCIM version: Not documented
• Plan required: Enterprise
• Endpoint: Not documented

Limitations:

• No SCIM provisioning is documented in UXPin's official help center as of the research date.
• SSO (SAML) is available on the Enterprise plan but automated SCIM provisioning/deprovisioning is not publicly documented.
• IdP support confirmed for Okta and OneLogin via SAML SSO only; no SCIM connector documented.

Three operational scenarios are relevant.

For day-to-day user management, all actions occur in the Team Management UI at app.uxpin.com/team - no API equivalent exists, and bulk provisioning via REST or SCIM is not possible.

For Enterprise teams enabling SSO, the flow requires upgrading to Enterprise, contacting UXPin support for SAML 2.0 metadata exchange, and configuring Okta or OneLogin accordingly;

JIT provisioning on first login may be available but is not explicitly confirmed in public documentation.

For offboarding, removal is UI-only and immediate

there is no SCIM deprovisioning trigger, so offboarding pipelines must either rely on manual UI actions or on IdP session termination via SAML, which does not guarantee seat release in UXPin.

Invite and manage users via web UI

1. Log in as an account admin at app.uxpin.com.
2. Navigate to Account Settings > Team Members.
3. Use the Invite Members flow to add users by email.
4. Assign roles (Viewer, Editor, Admin) manually per user.

Watch out for: No API equivalent exists publicly; bulk provisioning is not automatable via REST or SCIM.

Enable SSO for Enterprise team

1. Upgrade to the Enterprise plan.
2. Contact UXPin support to initiate SSO (SAML 2.0) setup.
3. Configure your IdP (Okta or OneLogin) with the SAML metadata provided by UXPin.
4. Test SSO login; users are provisioned on first login if JIT is enabled.

Watch out for: SSO configuration is not self-serve; it requires UXPin support involvement. Entra ID and Google Workspace are not listed as supported IdPs.

Remove a user from the team

1. Log in as an account admin.
2. Navigate to Account Settings > Team Members.
3. Locate the user and select Remove from Team.
4. Confirm removal; the user loses access immediately.

Watch out for: No API or SCIM deprovisioning available; offboarding must be performed manually in the UI or relies on IdP session termination via SAML.

The core automation trap with UXPin is the absence of any documented API or SCIM surface, which means any identity graph or provisioning pipeline that assumes REST or SCIM coverage will hit a dead end.

SAML SSO partially mitigates joiner flows on Enterprise via JIT, but it does not cover role changes, seat audits, or leaver deprovisioning in a way that is queryable or event-driven.

Teams relying on a centralized identity graph to maintain accurate access state across their SaaS portfolio will need to treat UXPin as a manual node - no polling, no webhooks, no automated reconciliation - until UXPin publishes a provisioning API or a verified SCIM connector.