We’re excited to announce an update to our SCIM-based user management API that gives IT teams centralized control over admin rights in SendSafely via Okta. You can now manage SendSafely admin access the same way you manage users, roles, and lifecycle events through Okta. By defining a user profile extension, SendSafely can automatically grant or revoke Admin privileges based on a new "isAdmin" attribute sent through SCIM.
Here’s how it works:
- isAdmin = true → User is granted Admin rights in SendSafely
- isAdmin = false → User does not have Admin rights
- isAdmin missing or null → Ignored; SendSafely leaves the user’s current Admin status unchanged
When enabled for your organization, SAML users have their Admin rights managed exclusively via SCIM. The Admin toggle in the SendSafely Enterprise Console is disabled. Non-SAML users (such as break-glass username/password accounts) continue to be managed directly in the SendSafely Enterprise Console. This ensures that identity-managed users follow your IdP rules, while still preserving flexibility for emergency or service accounts.
To keep administrators informed, SendSafely automatically sends an email notification whenever a user’s Admin rights are changed, providing clear visibility into access changes.
This feature is available on request and must be enabled by the SendSafely Support team. To get started, and configure the user extension in okta, follow the steps outlined in this article.
SendSafely: Integrated File Transfer for the Apps you Love
If you are looking for a secure way to transfer files with customers or business partners, our platform might be right for you. Contact us today to request a demo and free trial subscription.