Search Results :

×

Setup Okta as a SCIM Client and Drupal as a SCIM Server

With the User Provisioning and Sync Module, you should be able to automatically create (provision) and delete (deprovision) user accounts and have them synced bidirectionally between Drupal and any Identity Provider - in this case, Okta. Any changes or updates done to the user information can also be synced between the SCIM Client and Server. Follow along to learn how.

  • Download the module:
    composer require 'drupal/user_provisioning'
  • Navigate to Extend menu on your Drupal admin console and search for miniOrange User Provisioning using the search box.
  • Enable the module by checking the checkbox and click on the Install button.
  • You can configure the module at:
    {BaseURL}/admin/config/people/user_provisioning/overview
  • Install the module:
    drush en drupal/user_provisioning
  • Clear the cache:
     drush cr
  • You can configure the module at:
    {BaseURL}/admin/config/people/user_provisioning/overview
  • Navigate to Extend menu on your Drupal admin console and click on Install new module.
  • Install the Drupal User Provisioning and Sync module either by downloading the zip or from the URL of the package (tar/zip).
  • Click on Enable newly added modules.
  • Enable this module by checking the checkbox and click on install button.
  • You can configure the module at:
    {BaseURL}/admin/config/people/user_provisioning/overview
Note and Contact Us

Note: You will require the Premium Version of the module to set up Drupal as an SCIM server.

  • Once the module is installed, go to the Configuration tab on your Drupal site and select miniOrange User Provisioning.
miniOrang User Provisioning and Sync module installation steps

  • Navigate to the User Provisioning tab of the module and click the Configure button under the Changes from Provider to Drupal (SCIM Server) section.
Dalinea-click-on-configure-button

  • Copy the SCIM Base URL and SCIM Bearer Token, and keep them handy, as they will be required for the SCIM Client configuration.
Drupal User Provisioning and Sync - Copy the SCIM Base URL and SCIM Bearer Token

  • Log into the Okta portal.
  • From the left panel, select Applications under the Applications dropdown.
Okta-SCIM-Client-navigate-to-application

  • Click on the Browse App Catalog button.
Okta-SCIM-Client-click-browse-api-cataloge

  • Search for the SCIM Bearer Token and select SCIM 2.0 Test App (OAuth Bearer Token).
Okta-SCIM-Client-search-SCIM-Bearer-Token

  • Click on the Add Integration button.
Okta-SCIM-Client-click-add-integration

  • In General Settings, enter the application name in the Application Label text field and click the Next button.
Okta-SCIM-Client-enter-application-name

  • Under the Sign-On Options, scroll down and click on the Done button.
Okta-SCIM-Client-click-done-saml-application

  • Navigate to the Provisioning tab and click on the Configure API Integration button.
Okta-SCIM-Client-click-configre-api-integration

  • Check the Enable API Integration checkbox.
Okta-SCIM-Client-enable-api-integration-checkbox

  • Paste the copied SCIM Base URL and Bearer Token into the SCIM 2.0 Base Url and OAuth Bearer Token fields, respectively.
  • Click on the Test API Credentials button.
Okta-SCIM-Client-Paste-SCIM-bearer-token

  • Once the Test is successful, click on the Save button.
Okta-SCIM-Client-click-save-after-test-connection

  • Navigate to the To App section from the left panel of the Provisioning tab.
Okta-SCIM-Client-navigate-to-app

  • Click on the Edit button next to the Provisioning to App.
Okta-SCIM-Client-click-edit-button

  • Enable the operations (Create/Update/Deactivate/Sync Password) that will be allowed for provisioning.
Okta-SCIM-Client-select-operations

  • Click on the Save button.
Okta-SCIM-Client-click-save-after-operations-select
  • Navigate to the Assignments tab and click on Assign. From the dropdown, select Assign to People.
Okta-SCIM-Client-click-assign-to-people

  • Search for the user(s) to be assigned and click on the Assign button.
Okta-SCIM-Client-search-user-click-assign

  • Fill in or Confirm the user details and click on Save and Go Back button.
Okta-SCIM-Client-verify-user-information

  • Once the user(s) is assigned, click on the Done button.
Okta-SCIM-Client-click-done-button-assigned

  • The user has been successfully assigned to the Okta Application.
Okta-SCIM-Client-user-succesfully-assigned

  • Let us verify whether the user has been successfully provisioned to the Drupal site:
    • Navigate to the Drupal site and click on the People tab in the top navigation panel (/admin/people).
    • The user has been successfully created on the Drupal site.
Okta-SCIM-Client-user-successfully-provisioned
  • Under the Assignments tab, click on Assign, then select Assign to Groups.
Drupal-Okta-provisioning-assogn-to-groups
  • Select the group and click on the Assign button.
Drupal-Okta-provisioning-assogn-to-groups
  • Next, click on the Save and Go Back button.
  • After successfully assigning the group, click on the Done button.
Drupal-Okta-provisioning-group-assigned
  • It will only provision users and will not create any group or role on the Drupal site. To create a role on the Drupal site, follow the next step.
Drupal-Okta-provisioning-provisionined user
  • To create a role on the Drupal site, click on the Push Groups button.
Drupal-Okta-provisioning-push groups
  • From the Push Groups dropdown, select Find groups by name.
Drupal-Okta-provisioning-find-groups-by-name
  • Search for the group name and select the group.
Drupal-Okta-provisioning-select-group
  • Scroll down and click on the Save button.
Drupal-Okta-provisioning-click-on-save
  • The group has been successfully pushed to the Drupal site.
Drupal-Okta-provisioning-successfully pushed group
  • Let us verify whether the user role has been successfully provisioned to the Drupal site:
    • Navigate to the Drupal site and click on the People tab in the top navigation panel (/admin/people).
    • The user role has been successfully created on the Drupal site.
    Drupal-Okta-provisioning-group created
    • The created role has been successfully assigned to the user.
    Drupal-Okta-provisioning-user role created in drupal

Congratulations, you have successfully set up Drupal as the SCIM server and Okta as the SCIM client.

If the provisioning was not successful, please contact us at drupalsupport@xecurify.com. Kindly include a screenshot of the error window, and we will assist you in resolving the issue and guide you through the setup.

ADFS_sso ×
Hello there!

Need Help? We are right here!

support