Okta Automated User Provisioning into WordPress using SCIM
Okta Automated User Provisioning into WordPress using SCIM
Configure real-time Okta - WP user provisioning using SCIM. Our WordPress (WP) SCIM plugin allows you to automate user creation, update and delete user information from the IDP (identity provider) in real-time to your WordPress site. This guide will enable you to configure SCIM user provisioning for your WordPress site using Okta as the Identity Provider, to achieve seamless automated real-time WordPress Okta SCIM user provisioning.
The following provisioning features are supported:
Push New Users :
New users created through Okta will also be created in the third party application.
Push Profile Updates (Premium Feature):
Updates made to the user's profile through Okta will be pushed to the third party application
Push User Deactivation (Premium Feature):
Deactivating the user or disabling the user's access to the application through Okta will deactivate/delete the user in the third party application.
Note: For this application, deactivating/delete a user will depend on the miniOrange SCIM user provisioning add-on.
Reactivate Users (Premium Feature):
User accounts can be reactivated in the application.
Note: For the Reactivating the user it is required to select the Deactivation mode in the SCIM user provisioning add-on.
Import Users (Premium Feature):
Users can import active users from WordPress to Okta.
Future Enhancements in the Plugin:
Enhanced group push
Pre-requisites : Download And Installation
To configure Okta as SAML IdP with WordPress, you will need to install the miniOrange SCIM user provisioning plugin:
Navigate to Admin Portal > Applications and click on Browse App Catalog.
Search for WordPress SSO with SCIM Provisioning and click on Create New App
Add the WordPress SSO with SCIM Provisioning application.
Click on Done to configure the application further.
Navigate to the Provisioning menu of the application and Click on the Configure API Integration button.
Check the Enable API Integration box and enter the SCIM base URL in Base URL field and SCIM Bearer Token in API token field from the SCIM Configuration tab of the SCIM user provisioning plugin.
Click on Test API Credentials; if successful, a verification message appears at the top of the screen.
Click on Save.
Select To App in the left panel, then select the Provisioning Features you want to enable by clicking on Edit.
Click on Save
You can now assign people to the app and finish the application setup.
With this guide, we have successfully configured SCIM user provisioning between WordPress (WP) and Okta as the identity provider (IDP) using the WordPress SCIM plugin. This solution ensures that you are ready to roll out seamless and real-time WordPress Okta SCIM user provisioning within minutes.
Step 3: Import WordPress Users to Okta (optional)
If you want to push the WordPress user to Okta then you can follow the steps below. Otherwise you can Skip this section.
Navigate to the provisioning section of the Okta app.
Select To Okta in the left panel, then select the Import feature.
Schedule import :- Choose an interval from the dropdown. Okta will check the list users to import users from WordPress.
Okta username format :- Select “Email address”.
User Creation and & Matching
You can refer to the screenshot below to check default options.
Step 4: De-provisioning of Users [This is a premium feature]
You can select the deprovisioning mode in the SCIM configuration tab of the SCIM User Provisioning plugin.
By default, De-provisioning will delete the users from the WordPress site.
Step 5: Attribute Mapping for SCIM Users [This is a premium feature]
Attribute Mapping feature allows you to map the user attributes sent by the IDP during SCIM Provisioning to the user attributes at WordPress. These attributes can be seen on right hand corner.
Custom Attribute Mapping: This feature allows you to map any attribute sent by the IDP to the usermeta table of WordPress.
Click on Add Attribute button to add custom attribute field.
Under the Custom Attribute Name field, enter the attribute name you want to map.
Under the Attribute Name from the IDP filed, select the IDP attribute from the dropdown that you want to map.
Enable the toggle for an attribute if you want to display it in the WordPress Users table.Then Click on Save.
Step 6: SCIM Audit [This is a premium feature]
SCIM Audit allows you to keep the track of all the provisioning activity taking place. It shows you the detailed information about each user being provisioned. This information includes the User Action, Status, Created Date etc.
In the miniOrange SCIM User Provisoner plugin, naviagate to the SCIM Audit tab.
Here you can see all the User provision information.
Click on the Show Advanced Search button, to search the provisoned user details by using the search filters like Wordpress Username, IP Address etc.
On clicking the Clear Reports button, you can clear all the user provisioned details.
miniOrange SCIM user provisioning plugin doesn’t support Schema Discovery.
Note: WordPress doesn't allow to change userName of a user. You can change the email but not the username.
If you dont hear from us within 24 hours, please feel free to send a follow up email to firstname.lastname@example.org
This privacy statement applies to miniorange websites describing how we handle the personal
When you visit any website, it may store or retrieve the information on your browser, mostly in the
form of the cookies. This information might be about you, your preferences or your device and is
mostly used to make the site work as you expect it to. The information does not directly identify
you, but it can give you a more personalized web experience.
Click on the category headings to check how we handle the cookies.
Strictly Necessary Cookies
Necessary cookies help make a website fully usable by enabling the basic functions like site
navigation, logging in, filling forms, etc. The cookies used for the functionality do not store any
personal identifiable information. However, some parts of the website will not work properly without
These cookies only collect aggregated information about the traffic of the website including -
visitors, sources, page clicks and views, etc. This allows us to know more about our most and least
popular pages along with users' interaction on the actionable elements and hence letting us improve
the performance of our website as well as our services.