Search Results :

×

Setup User Provisioning (SCIM) into Drupal with Google Apps

Setup User Provisioning (SCIM) into Drupal with Google Apps


User Provisioning provides you with the ability to manage all the users at a central user management identity. Google Apps Provisioning service supports SCIM 2.0 protocol for automatic provisioning/de-provisioning. miniOrange User Provisioning and Sync module implement the SCIM endpoints to allow provisioning/de-provisioning of users into the Drupal site as and when any CRUD operation is performed in the central identity i.e. Google Apps.

Installation Steps


  • Download the module:
    composer require 'drupal/user_provisioning'
  • Navigate to Extend menu on your Drupal admin console and search for miniOrange User Provisioning using the search box.
  • Enable the module by checking the checkbox and click on Install button.
  • Configure the module at
    {BaseURL}/admin/config/people/user_provisioning/overview
  • Install the module:
    drush en user_provisioning
  • Clear the cache:
     drush cr
  • Configure the module at
    {BaseURL}/admin/config/people/user_provisioning/overview
  • Navigate to Extend menu on your Drupal admin console and click on Install new module button.
  • Install the Drupal User Provisioning and Sync module either by downloading the zip or from the URL of the package (tar/zip).
  • Click on Enable newly added modules.
  • Enable this module by checking the checkbox and click on Install button.
  • Configure the module at
    {BaseURL}/admin/config/people/user_provisioning/overview

Configure Drupal as SCIM Server:

  • Once the module is installed, navigate to the Configuration tab of the Drupal site and select miniOrange User Provisioning.
  • miniOrang User Provisioning and Sync module installation steps
  • Navigate to the User Provisioning tab of the module and click on the Configure button under the Changes from Provider to Drupal (SCIM Server) section.
  • Azure-AD-click-on-configure-button

Create Application in OneLogin:

  • Log into the Google Admin.
  • From the left menu bar, click on the Apps dropdown and select the Web and mobile apps option.
  • Google-Apps-SCIM-Client-Navigate-to-apps
  • Search for Keeper and select Keeper Web (SAML).
  • Google-Apps-SCIM-Client-Select-Keeper

    Note: You need to configure the Keeper application for SAML SSO by following the steps mentioned in this setup guide.

Configure Google apps as SCIM Client:

  • Once done with the SAML SSO configuration, click on the Configure autoprovisioning link.
  • Google-Apps-SCIM-Client-Click-Configure-autoprovisioning
  • Navigate to the Drupal site and copy the SCIM Bearer Token.
  • Google-Apps-SCIM-Client-Copy-SCIM-Bearer-Token
  • Navigate back to the Google Apps Console, paste the copied SCIM Bearer Token under the Access token text field, and click on the Continue button.
  • Google-Apps-SCIM-Client-Paste-SCIM-Bearer-Token
  • Navigate back to the Drupal site and copy the SCIM Base URL.
  • Google-Apps-SCIM-Client-Copy-SCIM-Base-URL
  • Navigate to the Google Apps console, paste the copied SCIM Base URL under the Endpoint URL, and click on the Continue button.
  • Google-Apps-SCIM-Client-Paste-SCIM-Base-URL
  • Attribute Mapping is an optional step. Click on the Continue button.
  • Google-Apps-SCIM-Client-Click-Next-Attribute-Mapping
  • The Provisioning Scope is an optional step. It allows to limit the Provisioning of a particular group only. Enter the Group to provision under the Groups text field.
  • Google-Apps-SCIM-Client-Provisioning-Group
  • You can configure the De-provisioning of the user. To know more about De-provisioning click here.
  • Click on the Finish button.
  • Google-Apps-SCIM-Client-Click-Finish-Deprovisioning
  • Click on the Autoprovisioning section.
  • Google-Apps-SCIM-Client-Click-Autoprovisioning-section
  • Toggle the Provisioning status to Turn on.
  • Google-Apps-SCIM-Client-Turn-on-provisioning
  • The users are automatically provisioned to the Drupal site from Google Apps.
  • Let’s check if the user is provisioned to the Drupal site. Navigate to the Drupal site and click on the People tab from the top navigation panel. As per the following screenshot, the user has been successfully created on the Drupal site.
  • Google-Apps-SCIM-Client-User-Provisioned

Congratulations, you have successfully set up Drupal as the SCIM server and Google Apps as the SCIM client.

If the Provision was not successful, please contact us at drupalsupport@xecurify.com. Please send the screenshot of the error window, and we will assist you in resolving the issue and guiding you through the setup.

Additional Features:

 Case Studies
miniOrange has successfully catered to the use cases of 400+ trusted customers with its highly flexible/customizable Drupal solutions. Feel free to check out some of our unique case studies using this link.
 Other Solutions
Feel free to explore other Drupal solutions that we offer here. The popular solutions used by our trusted customers include 2FA, SSO, Website Security. 
  24*7 Active Support
The Drupal developers at miniOrange offer quick and active support for your queries. We can assist you from choosing the best solution for your use case to deploying and maintaining the solution.
Hello there!

Need Help? We are right here!

support
Contact miniOrange Support
success

Thanks for your inquiry.

If you dont hear from us within 24 hours, please feel free to send a follow up email to info@xecurify.com