The System for Cross-domain Identity Management (SCIM) is an open standard HTTP based protocol for automating the exchange of user identity information between identity domains, or IT systems. SCIM aims to simplify user provisioning and management in the cloud. For example, as an Identity Provider add, update and delete the user, they are added, updated and removed from the Drupal User Profile. To achieve this functionality pingOne provides the User Provisioner with SCIM standard.

If your users are using both PingOne and Drupal website, it is preferred to have all users updated in Drupal site without login each time to update user list. miniOrange provides a solution which allows user provisioning into Drupal website using SCIM standard.

miniOrange provides a solution by introducing a Drupal module to support PingOne User Provisioning and allows user to access your website by using their PingOne account credential to login into Drupal. SCIM User Provisioner module also allows provisioning with custom Providers. SCIM User Provisioner module works with any IDP that conforms to the SCIM standard.

Steps to configure Automatic User Provisioning with PingOne as SCIM Client and Drupal as SCIM Server

1. Configure Drupal as SCIM Server

• Navigate to the SCIM Configuration tab to find the SCIM Base URL and SCIM Bearer Token, which you will keep handy.

Note: These information are required to configure your application PingOne as IDP.

Step 2: Configure PingOne for SCIM provisioning

• Go to PingOne portal and login with the administrator account.
• After logging in, you will need to add the environment for your application.
• In the left tab, under the Connections section, select the Provisioning.
• Click on + to add the new connection.
• Select the SCIM based connection type and click on Next.

• Under Create a New Connection, enter the Name and Description and click on Next.

• In the next step, under the Configure Authentication section, enter the SCIM BASE URL from the SCIM Configuration tab of the SCIM User Provisioning module.
• In the Authentication method field, select the OAuth 2 Bearer Token from the dropdown.
• Enter the SCIM Bearer Token in the OAuth Access Token field from the SCIM Configuration tab of the SCIM User Provisioning module and click on Test Connection button.

• In the Configure Preferences, keep the field information as default and click on Finish.

• Under the Connections tab, select the application you have configured then enable the toggle button displayed on the right hand corner.

• Navigate back to the Provisioning tab, click on New Rule button.

• Enter the name and description and click on Create Rule button.
• Under the Available Connection, select the configured application and click on Save.

• In the Custom Filter section, add the appropriate attributes in the Attribute field and its Value. Click on Save.

• Enable the toggle, to enable the rules.

• You can now assign the users by going to the Users tab under the Identities in the left pane.
• Click on Add User button to add user for provisioning.

You have successfully configured the miniOrange Drupal SCIM User Provisioning module with PingOne.

24*7 Active Support

If you face any issues or if you have any questions, please feel free to reach out to us at drupalsupport@xecurify.com. In case you want some additional features to be included in the module, please get in touch with us, and we can get that custom-made for you. Also, If you want, we can also schedule an online meeting to help you configure the Drupal SCIM User Provisioning module.

Our Other modules