Skip to content
Insights
Request Services
SCIM 2.0
Cheat sheet · printable · CC BY 4.0

SCIM 2.0 — schema card

User + Group + Enterprise User schemas on a single reference page.

Share

Use your browser print dialog. Landscape for best fit.

askmeidentity · SCIM 2.0 · 2026-05-22

SCIM 2.0 — schema card

The SCIM 2.0 User + Group + Enterprise User schemas + the operations on /Users and /Groups — one page.

Core User schema (urn:ietf:params:scim:schemas:core:2.0:User)

idstringServer-assigned. Globally unique.
externalIdstringClient-defined identifier (e.g. HRIS employee ID)
userNamestringUnique within the tenant. Often email.
namecomplexfamilyName + givenName + middleName + formatted + honorific*
displayNamestringFor display in UIs
emailsmulti-valuedvalue + type (work / home / other) + primary
phoneNumbersmulti-valuedvalue + type (work / mobile / home / pager)
activebooleanfalse = disabled, true = active
passwordwrite-onlySet during create or replace
groupsmulti-valued read-onlyGroup memberships (computed)
rolesmulti-valuedTenant-specific role assignments
metacomplex read-onlycreated + lastModified + version + location

Enterprise extension (urn:ietf:params:scim:schemas:extension:enterprise:2.0:User)

employeeNumberstringInternal HRIS identifier
costCenterstring
organizationstring
divisionstring
departmentstring
managercomplexvalue (id) + $ref + displayName

Group schema (urn:ietf:params:scim:schemas:core:2.0:Group)

idstringServer-assigned
displayNamestringGroup name shown in UIs
membersmulti-valuedvalue (User id) + $ref + display + type

Operations (RFC 7644)

GET /UsersListFilters via ?filter= (RFC 7644 § 3.4.2.2)
GET /Users/:idReadSingle resource
POST /UsersCreateReturns 201 + Location header
PUT /Users/:idReplaceFull replacement of resource
PATCH /Users/:idModifyadd / remove / replace operations
DELETE /Users/:idRemove204 No Content

Common PATCH operation patterns

Disable user{op:"replace",path:"active",value:false}Most common
Update displayName{op:"replace",path:"displayName",value:"..."}
Add to group{op:"add",path:"members",value:[{value:"<user-id>"}]}
Remove from group{op:"remove",path:"members[value eq \"<user-id>\"]"}
askmeidentity.com · CC BY 4.0 · Reviewed 2026-05-22
More cheat sheets

All printable references in one place.

See all cheat sheetsStandards explainers

Identity, cybersecurity, and custom software for regulated enterprises. Audit-ready operations from advisory through audit.

Americas HQ

Wilmington, DE

America/New York

India HQ

Hyderabad, TG

Asia/Kolkata

Services
  • IAM Consulting
  • IAM Technologies
  • Custom Software & AI
  • IAM Staffing
  • Request Services
  • Case Studies
Resources
  • All Resources
  • Complete Guide to IAM
  • IAM Frameworks Compared
  • IAM Certification Roadmap
  • IAM API Hub
  • IAM Explainers
  • IAM Vendor Status
  • Release Notes
  • State of Identity
  • State of PAM
  • State of IGA
  • State of CIAM
  • State of AI Agent Identity
  • IAM Salary Benchmark
  • Vendor Pricing Index
  • Year in Review 2026
  • Acquisition Tracker
  • Outage Tracker
  • Identity Incidents
  • Vulnerability Tracker
  • Cheat Sheets
  • Standards Explainers
  • Migration Playbooks
  • Audit Checklists
  • Reference Architectures
  • RFP Templates
  • IAM Anti-Patterns
  • Compliance Crosswalk
  • Market Landscape
  • Awesome IAM
  • IAM Glossary
  • Compliance Frameworks
  • Integration Guides
  • Vendor Alternatives
  • IAM by Industry
  • Salary Lookup
  • Directory
Research & media
  • IAM Compensation 2026
  • Vendor Moves Q3 2026
  • Identity Incidents Q3 2026
  • Vendor Security Posture 2026
  • Vendor Pricing 2026
  • AI Citation Tracker
  • Top 50 IAM Tools 2026
  • Podcast
  • Videos
  • Newsletter
  • Newsletter Archive
  • Embed Widgets
Free tools
  • JWT Decoder
  • JWT Signer
  • SAML Decoder
  • SAML Metadata Diff
  • OAuth Flow Visualizer
  • OIDC Debugger
  • OIDC Discovery Validator
  • PKCE Generator
  • WebAuthn Tester
  • Bearer Token Inspector
  • SCIM Validator
  • Password Entropy
  • IAM RFP Template
  • PAM Vendor Selector
  • Maturity Assessment
  • ROI Calculator
  • TCO Calculator
  • MFA Bypass Risk
  • Audit-Prep Burden
  • Quizzes
Company
  • About
  • Leadership
  • Approach
  • Why Choose Us
  • Partners
  • Press Kit
  • Press Topics
  • Global Presence
  • Locations
  • Insights
  • Now
  • Community
  • Open Roles
  • Submit Resume
  • Training
  • Contact

© 2026 askmeidentity, Inc.. Safeguard your digital frontier.

  • Privacy Policy
  • Terms of Service
  • Accessibility