FAQ
Quick answers. For full details, follow the links.
What is IdentityScribe?
Section titled “What is IdentityScribe?”Scribe syncs LDAP directories to PostgreSQL and serves queries through LDAP, REST, GraphQL, and MCP channels. Every change is recorded as an immutable event. See Architecture.
How many entries can it handle?
Section titled “How many entries can it handle?”Millions. Typical deployments handle 10,000+ queries/second. Performance scales with your PostgreSQL instance. See Deployment for sizing.
What protocols are available?
Section titled “What protocols are available?”LDAP, REST, GraphQL, and MCP are stable. gRPC is on the roadmap. See Channels for details and examples.
How do I check if sync is working?
Section titled “How do I check if sync is working?”Check the ingest stats at /observe/stats/ingest or open the Operator UI at /ui/observe. See Monitoring.
How do I add another entry type?
Section titled “How do I add another entry type?”Add a new block under transcribes {} in your config file. Each transcribe syncs one entry type. See Transcribes configuration.
How do I rotate credentials?
Section titled “How do I rotate credentials?”Update the environment variables (LDAP_BIND_PASSWORD, DB_PASSWORD, etc.) and restart. Scribe reads secrets from env vars at startup. See Production Checklist.
What happens during an upgrade?
Section titled “What happens during an upgrade?”Scribe runs database migrations automatically on startup. See Upgrading for version-specific migration notes and breaking changes.
How do I debug a problem?
Section titled “How do I debug a problem?”Enable debug logging with SCRIBE_LOG_LEVEL=debug, check the doctor endpoint at /observe/doctor, or inspect traces. See Logging and Traces for the full investigation workflow.