Stepwork logo
Why Stepwork
Capabilities
Security
Company
Book a Demo
Why StepworkCapabilitiesSecurityCompany
Stepwork logo

Interface automation that can automate any flow a human can do. No APIs needed.

Product

  • Why Stepwork
  • Capabilities
  • Benchmark

Compare

  • All Comparisons
  • Stepwork vs UiPath
  • Stepwork vs Zapier
  • Stepwork vs ServiceNow
  • Stepwork vs Scribe

Provisioning

  • Overview
  • Directory

Integrations

  • All Integrations
  • Okta
  • Microsoft Entra ID
  • Google Workspace
  • 1Password
  • OneLogin
  • Ping Identity

Company

  • About
  • Security

Legal

  • Terms and Conditions
  • Privacy Policy
  • Data Processing Agreement
  • Subprocessors
1849 Union St, San Francisco, CA 94123, USA·Loot Discount inc dba Stepwork
LinkedIn

© 2026 Stepwork. All rights reserved.·Design System

  1. Home /
  2. Provisioning /
  3. Security /
  4. Abnormal Security Portal

Automate Abnormal Security Portal User Provisioning
Without SCIM

Abnormal Security Portal does not currently offer SCIM-based user provisioning. Stepwork automates Abnormal Security Portal provisioning with 98% accuracy — no API required.

Abnormal Security Portal

portal.abnormalsecurity.com/ ↗
No SCIM Support
Category: SecuritySign-On: SAMLSCIM: Not supported

Why This Is Painful

Primary: Email threats are automated, but analyst provisioning isn’t
  • Creating security access risk
  • Lingering high-privilege access
  • Operational friction for security teams

Technical Constraint

No SCIM Support Complexity Vector: Automation fails because security tools prioritize controlled, auditable actions (investigations, quarantine/release, policy changes) and often keep high-impact operations behind UI + approvals, making “hands-off” automation risky and incomplete.

How Stepwork Solves This

In email security environments like Abnormal Security, AI agents need orchestration to investigate alerts, manage user remediation, and coordinate response actions without disrupting live security operations. Stepwork applies strict, policy-based guardrails around those agent actions, ensuring automation can assist at speed while staying within approved response scopes and escalation paths which is why teams use Stepwork to automate Abnormal Security Portal flows with 98% accuracy without needing an API.

How Stepwork Authenticates to Abnormal Security Portal

Abnormal Security Portal supports SAML sign-on. Stepwork authenticates through your existing identity provider — the same way your employees do.

OktaMicrosoft Entra ID1PasswordGoogle Workspace
  • ✓Full MFA support — OTP, passkeys, push notifications
  • ✓Signs in via your SSO / identity provider
  • ✓No service accounts or separate credentials
  • ✓Every action logged and auditable for SOC2 / GDPR

Works Alongside Your Stack

Identity
OktaMicrosoft Entra ID
Compliance
Microsoft DefenderSplunk
Data
Snowflake

Frequently Asked Questions About Abnormal Security Portal Provisioning

Does Abnormal Security Portal support SCIM?

No. Abnormal Security Portal does not currently offer SCIM-based user provisioning, leaving IT teams to manage user lifecycle changes manually.

How do you automate user provisioning in Abnormal Security Portal?

Stepwork automates Abnormal Security Portal provisioning through interface automation — the same way a human would, but with 98% accuracy and no API required. Record the flow once, and Stepwork runs it on demand or on a schedule.

Is Stepwork secure for Abnormal Security Portal?

Yes. Stepwork authenticates to Abnormal Security Portal through your existing identity provider (Okta, Microsoft Entra ID, 1Password, etc.) and completes MFA natively — including OTP, passkeys, and push notifications. No separate credentials or service accounts are needed.

What are the risks of manual Abnormal Security Portal provisioning?

The primary risk is email threats are automated, but analyst provisioning isn’t. Additional risks include creating security access risk, lingering high-privilege access, operational friction for security teams. Stepwork eliminates these risks by automating the entire provisioning workflow.

Does Stepwork bypass Abnormal Security Portal MFA?

No. Stepwork completes MFA exactly like a human user — supporting OTP, passkeys, push notifications, and other methods. It signs in through your existing identity provider via SAML, mirroring your organization's security posture.

More Security Apps

1Password

SCIM Paywalled

Security

Abine

No SCIM Support

Security

Aembit

No SCIM Support

Security

Agari BP

No SCIM Support

Security

Airgap Networks (Acquired by Zscaler)

No SCIM Support

Security

Akeyless

No SCIM Support

Security

Automate Abnormal Security Portal Provisioning

See how Stepwork provisions users in Abnormal Security Portal with 98% accuracy — in a 15-minute demo.

Book a Demo