When I tried to implement SCIM between Okta and SAS Viya application deployed on AWS EKS cluster, I need to specify Okta IP address ranges to AWS Security Group. AWS Security Group only allows 60 inbound rules for CIDR entries. Current Okta IP address range includes more than 2400+ CIDR entries. https://s3.amazonaws.com/okta-ip-ranges/ip_ranges.json
At the moment, to get SCIM API call working, I need to open up my AWS application wide open to the public. This is not an acceptable setup in production environment. Okta needs to provide a way to narrow down the IP address range for the SCIM API call.