# Editing or disabling SCIM provisioning
## Changing your provisioning token
To change the Bearer token used in your SCIM provisioning configuration:
1. Retrieve your enterprise. See [Managing your enterprise](/sonarqube-cloud/administering-sonarcloud/managing-enterprise.md) for more details.
2. Go to **Administration** > **SSO & Provisioning**. The **SSO & Provisioning** page opens.
3. Expand the **Provisioning (SCIM)** section and select **Edit configuration**. The **Configure Your Connection** page opens.
4. Select **Provisioning**. The SCIM provisioning setup assistant opens.
5. Select **Generate token** to create a new token and copy it.
6. Paste the token into your identity provide. To do so, follow the instructions depending on your identity provider in [Set up SCIM](/sonarqube-cloud/administering-sonarcloud/enterprise-security/sso-and-provisioning/set-up-scim.md#set-up-scim-provisioning-in-your-identity-provider).
7. In the setup assistant, select **Delete** in front of the token to be replaced to delete it. Confirm the deletion.
8. Select **Done**.
## Updating the SCIM group mapping of organizations
For information about the group mapping, see [Set up SCIM](/sonarqube-cloud/administering-sonarcloud/enterprise-security/sso-and-provisioning/set-up-scim.md#map-your-groups-to-organizations).
{% hint style="info" %}
If you unmap a SonarQube Cloud organization from a group, the group will be removed from this organization. However, if the group contains non SSO users, only the SSO users will be removed from the group, and the group itself will remain in the organization.
{% endhint %}
To change the SCIM group mapping of an organization:
1. Retrieve your enterprise. See [Retrieving and viewing your enterprise](/sonarqube-cloud/administering-sonarcloud/managing-enterprise/retrieving-and-viewing-your-enterprise.md) for more details.
2. Go to **Administration** > **SSO & Provisioning**. The **SSO & Provisioning** page opens.
3. Expand the **IdP group mapping** section**,** and select **View groups**. The **Group mapping** page opens.
4. In the **SonarQube Organizations** panel, select the organization you want to configure.
5. In the **Map IdP groups to \** panel, select or unselect the groups you want to map/unmap to/from your organization. You can filter the groups by using the **Search IdP groups** field.
6. Select **Save changes**. A confirmation dialog opens.
7. Confirm the mapping. The mapping change is started and may take several minutes. Don’t leave the page as long as the mapping is in progress.
## Disabling SCIM provisioning
To disable SCIM provisioning in your enterprise, you can delete the Bearer token used in your SCIM provisioning configuration. To do so, proceed as explained above in [#changing-your-bearer-token](#changing-your-bearer-token "mention") by skipping steps 5 and 6. During the last step, when you select **Done**, a confirmation dialog opens as illustrated below. Select **Proceed** to confirm the deletion.
## Related pages
* [Set up SCIM](/sonarqube-cloud/administering-sonarcloud/enterprise-security/sso-and-provisioning/set-up-scim.md)
* [Troubleshooting SSO and provisioning](/sonarqube-cloud/administering-sonarcloud/enterprise-security/sso-and-provisioning/troubleshooting.md)
---
# Agent Instructions: Querying This Documentation
If you need additional information that is not directly available in this page, you can query the documentation dynamically by asking a question.
Perform an HTTP GET request on the current page URL with the `ask` query parameter:
```
GET https://docs.sonarsource.com/sonarqube-cloud/administering-sonarcloud/enterprise-security/sso-and-provisioning/update.md?ask=
```
The question should be specific, self-contained, and written in natural language.
The response will contain a direct answer to the question and relevant excerpts and sources from the documentation.
Use this mechanism when the answer is not explicitly present in the current page, you need clarification or additional context, or you want to retrieve related documentation sections.