What if Bob API fails, and stops sending or confirming data for active users, how can we be sure that it will not cause the deletion or deactivation of users in the Identity & Access Management system?
API Identity & Access Management integrations are event based.
That means that we sync users to the Identity & Access Management system only when an event is taking place in Bob.
In case there was a user creation/update, we check first if the selected user is already exists in the provisioning system according to the UPN (Work email).
If the user exists we only push an update according to the data in bob and if the user does not exist, we will create a new one.
Since Bob is the single source of truth, we are not checking if the user is activated or not in the provisioning system.
We only check if the user exists or not. So it means, if we lose connection to the provisioning system, we will not deactivate any user in the provisioning system.