SAML is great for authentication, but very clunky for provisioning and deprovisioning of user accounts across applications. The industry standard for resolving this is SCIM.
WeftID 1.8 delivers an outbound SCIM 2.0 connector. When a user joins a group, the right accounts are created in the right applications automatically. When a user leaves, those accounts are removed. Group memberships, attribute changes, role updates: WeftID pushes the change to the application instead of waiting on a manual ticket or a login that will never happen.
In practice, every application implements SCIM a little differently, so being serious about SCIM means handling those quirks per vendor. That is why WeftID 1.8 includes day-one support for Slack, GitHub, Atlassian, and GitLab (with more providers coming). A generic SCIM 2.0 path covers everything else.
Configuration lives in the admin UI under each Service Provider's SCIM tab. SCIM is opt-in per SP; nothing pushes anywhere until you set a target and mint a credential.
The full walkthrough, with per-vendor setup, is in the SCIM admin guide.
Next on the horizon for WeftID is inbound SCIM.