diff --git a/tracker.org b/tracker.org
index 321e8e0b..9c36c3d8 100644
--- a/tracker.org
+++ b/tracker.org
@@ -1577,7 +1577,17 @@ CSA team.
 IROH-Auth provided multiple different mechanisms to minimize the inevitable
 friction that would occurs when user will change their login system. So
 technically this is not that complex, we "just" needed from the CSA team to add
-the "link" from the previous and new
+the "link" from the previous account and new account.
+IROH-Auth exposes a provisioning API for this purpose.
+
+Mainly, every time a user perform a migration from CSA to SXSO in CSA (using the
+CSA URL, workflow, etc…) as IROH could not know that, CSA team call the provisioning
+API when:
+
+- a user perform a migration, so we could link the old CSA user-identity  to the
+  new SXSO user-identity in SecureX as well as it is done in CSA
+- a new user is created into a CSA organization and login via SXSO, in that case
+  the CSA team
 **** TODO Review [[https://github.com/advthreat/iroh/pull/6791][#6791 Wanderson access/refresh]]                                                 :work:
 SCHEDULED: <2022-06-09 Thu 14:00-14:30>
 [2022-06-10 Fri 09:00]