Search Results :

×
Sign Up Contact Us

Contents

Setup Guide on Auth0 as SCIM Server and Drupal as SCIM Client

The User Provisioning & Sync Module allows you to automatically create (provision) and delete (deprovision) user accounts and have them synced bidirectionally between Drupal and Auth0. Any changes or updates done to the user information can also be synced between the Drupal and Auth0.

free trial plugin Playground plugin pricing button schedule meeting button Schedule a Meeting
  • Download the module: 
    composer require 'drupal/user_provisioning'
  • Navigate to Extend menu on your Drupal admin console and search for miniOrange User Provisioning using the search box.
  • Enable the module by checking the checkbox and click on Install button.
  • Configure the module at 
    {BaseURL}/admin/config/people/user_provisioning/overview
  • Install the module: 
    drush en user_provisioning
  • Clear the cache: 
     drush cr
  • Configure the module at 
    {BaseURL}/admin/config/people/user_provisioning/overview
  • Navigate to Extend menu on your Drupal admin console and click on Install new module button.
  • Install the Drupal User Provisioning and Sync module either by downloading the zip or from the URL of the package (tar/zip).
  • Click on Enable newly added modules.
  • Enable this module by checking the checkbox and click on Install button.
  • Configure the module at 
    {BaseURL}/admin/config/people/user_provisioning/overview
Note and Contact Us

Note: Before setting up Auth0 as a SCIM server, you’ll need to configure it as a Service Provider (SP). This requires the miniOrange SAML IdP module.

  • Log into the Auth0 Admin console.
  • To get started, go to the left-side panel, click the Authentication dropdown, and choose Enterprise from the list.
Drupal user provisioning - Auth0 select enterprise

  • Click on SAML under Custom Connections.
Drupal user provisioning - Auth0 select SAML

  • Make sure Auth0 is configured as an Service Provider (SP) before proceeding. If not, set it up under New SAML Connection.
  • Click on Create to continue.
Drupal user provisioning - Auth0 as IDP setup

  • Then, click on the created connection link.
Drupal user provisioning - Auth0 connection created

  • Navigate to the Provisioning tab, scroll down to the Sync user profiles using SCIM section, and click on Setup.
Drupal user provisioning - Auth0 connection created

  • Under the Setup tab, copy the SCIM Endpoint URL. Keep it handy.
Drupal user provisioning - Auth0 copy SCIM Endpoint

  • Now, click the Generate New Token button.
  • Under Generate New Bearer Token, select the Scopes and click the Generate Token button.
Drupal user provisioning - Auth0 generate token

  • Once the token has been successfully generated, click Copy and Close button.
Drupal user provisioning - Auth0 copy Token

  • Go to the User Provisioning tab of the module and click the Configure button under the Changes from Drupal to Provider (SCIM Client) section.
Drupal user provisioning - select changes from drupal

  • Turn on the Enable SCIM Client API Integration toggle and paste the copied SCIM Endpoint URL and Bearer Token into the SCIM 2.0 Base URL and SCIM Bearer Token text fields, respectively.
  • Once done, click the Save and Test Credentials button.
Drupal user provisioning - Enable toggle

  • If the test is successful, you’ll see a success message.
Drupal user provisioning - test configuration successfull

  • After successfully testing the configuration, scroll down to the Attribute Mapping section.
  • Select the Drupal User Attribute you want to map to the corresponding SCIM Provider Attribute, then click the Save mapping button.
  • Once done, click on the Next Step.
Drupal user provisioning - Attribute Mapping

  • The User Provisioning & Sync module supports three types of provisioning:
    • Manual/On-Demand Provisioning: In Manual/On-Demand Provisioning, users are created, updated, deactivated, or deleted by the admin as needed.
    • Automatic Provisioning: With Automatic Provisioning, when you create, update, or delete a user on one Drupal site, the same changes happen automatically on the other site. It keeps both sites in sync without manual work.
    • Scheduler-based Provisioning: This allows you to perform CRUD operations on any Drupal user in your provider during the CRON run.
  • Choose the Provisioning Types based on your preference.
Drupal user provisioning - Attribute Mapping

  • Select the Provisioning Operations (create, update, deactivate, delete) as needed.
Drupal user provisioning - Attribute Mapping

  • This feature allows provisioning of users who have any of the selected roles. Only those users will be sent to the Auth0 (server) site; others will be skipped.
Drupal user provisioning - Role filter

  • This feature allows you to send user roles from Drupal as groups to other Auth0 (server) site.
    • Note and Contact Us

    Note: Default roles of Drupal will not be synced.


  • Click on the All Done button.
Drupal user provisioning - Group provisioning

  • Click the Perform Manual Sync button under the Manual Provisioning column.
Drupal user provisioning - perform manual on demand provisioning

  • Search for the user you want to provision to the Auth0 (server) site, then click the Submit button.
Drupal user provisioning - perform manual on demand provisioning

  • Once the user is successfully provisioned to the application, a success message will be displayed.
Drupal user provisioning - successfullly performed manual-provisioning

  • Let's check whether the user has been created/provisioned on the Auth0 (server) site. Follow the steps below to find the created user:
    • From the left panel, open the User Management dropdown and click on Users.
    Drupal user provisioning - user craeted on Auth0 site

  • Automatic Provisioning will help you to provision users based on any of the following events:
    • Admin Interface: When admins or authorized users manually create, update, or delete a user’s account through the Drupal admin panel.
    • User Account Change: When users create, update, or delete their own information using the user/{user_id}/edit page or a custom form.
    • 3rd Party Modules: When a user is created or updated on the Drupal site through third-party modules, apps, or custom code.
  • For example, let’s see how automatic provisioning works using the Admin Interface:
    • Navigate to the People tab (admin/people) in the top navigation bar of the Drupal Client site and click on the +Add user button.
    Drupal user provisioning - add user

    • Fill in the user details, then click the Create new account button.
    Drupal user provisioning - Enter user details

  • Let's check whether the user has been created/provisioned on the Auth0 (server) site. Follow the steps below to find the created user:
    • From the left panel, open the User Management dropdown and click on Users.
    Drupal user provisioning - Enter user details

Congratulations! You’ve successfully set up Auth0 as the SCIM Server and Drupal as SCIM Client.

If the provisioning was not successful, please contact us at drupalsupport@xecurify.com. Kindly include a screenshot of the error window, and we will assist you in resolving the issue and guide you through the setup.

24x7 Support

24/7 Support

The Drupal developers at miniOrange offer quick and active support for your queries. We can assist you from choosing the best solution for your use case to deploying and maintaining the solution.

 Contact us
Case Study

Case Studies

miniOrange has successfully catered to the use cases of 400+ trusted customers with its highly flexible/customizable Drupal solutions.

 Read more
Other Solutions

Other Solutions

Feel free to explore other Drupal solutions that we offer the popular solutions used by our trusted customers include 2FA, User Provisioning, Website Security.

 Know More
ADFS_sso ×
Hello there!

Need Help? We are right here!

support