Setup PingOne as a SCIM Client using the User Provisioning module in Drupal

Overview

User Provisioning provides you with the ability to manage all the users at a central user management identity. PingOne Provisioning service supports SCIM 2.0 protocol for automatic provisioning/de-provisioning. miniOrange User Provisioning and Sync module implement the SCIM endpoints to allow provisioning/de-provisioning of users into the Drupal site as and when any CRUD operation is performed in the central identity i.e. PingOne.

Installation Steps

• Using Composer
• Using Drush
• Manual Installation

• Download the module:

  composer require 'drupal/user_provisioning'

• Navigate to Extend menu on your Drupal admin console and search for miniOrange User Provisioning using the search box.
• Enable the module by checking the checkbox and click on the Install button.
• You can configure the module at:

  {BaseURL}/admin/config/people/user_provisioning/overview

• Install the module:

  drush en drupal/user_provisioning

• Clear the cache:

   drush cr

• You can configure the module at:

  {BaseURL}/admin/config/people/user_provisioning/overview

• Navigate to Extend menu on your Drupal admin console and click on Install new module.
• Install the Drupal User Provisioning and Sync module either by downloading the zip or from the URL of the package (tar/zip).
• Click on Enable newly added modules.
• Enable this module by checking the checkbox and click on install button.
• You can configure the module at:

  {BaseURL}/admin/config/people/user_provisioning/overview

Configuration Steps

Configure Drupal as SCIM Server

• Once the module is installed, navigate to the Configuration tab of the Drupal site and select miniOrange User Provisioning.

• Navigate to the User Provisioning tab of the module and click on the Configure button under the Changes from Provider to Drupal (SCIM Server) section.

Configure PingOne as SCIM Client

• Go to the PingOne portal and login with the administrator account.
• In the left tab, under the Connections section, select the Provisioning.
• Click on + to add the new connection. Select the SCIM connection type and click on Next.

• Under Create a New Connection, enter the Name and Description as per your choice and click on the Next button.

• Under the Configure Authentication section, paste the SCIM Base URL copied from the Drupal SCIM User Provisioning module under the SCIM Base URL textfield.
• In the Authentication method field, select the OAuth 2 Bearer Token from the dropdown.
• Paste the SCIM Bearer Token in the OAuth Access Token field copied from the Drupal SCIM User Provisioning module and click on the Test Connection button.

• In the Configure Preferences, keep the field information as default and click on Finish.

• Under the Connections tab, select the application you have configured and then enable the toggle button located in the right-hand corner.

• Navigate back to the Provisioning tab, click on New Rule button.

• Enter the name and description and click on Create Rule button.
• Under the Available Connection, select the configured application and click on Save.

• In the Custom Filter section, add the appropriate attributes in the Attribute field and its Value. Click on Save.

• To enable the rules, toggle the switch to the 'On' position.

• You can now assign the users by going to the Users tab under the Identities in the left pane.
• Click on Add User button to add user for provisioning.

You have successfully configured the miniOrange Drupal SCIM User Provisioning module with PingOne.