The System for Cross-domain Identity Management (SCIM) is an open standard HTTP based protocol for automating the exchange of user identity information between identity domains, or IT systems. SCIM aims to simplify user provisioning and management in the cloud. For example, as an Identity Provider add, update and delete the user, they are added, updated and removed from the Magento User Profile. To achieve this functionality PingOne provides the User Provisioner with SCIM standard.
If your users are using both PingOne and Magento 2 website, it is preferred to have all users updated in Magento 2 site without login each time to update user list. miniOrange provides a solution which allows user provisioning into Magento website using SCIM standard.
miniOrange provides a solution by introducing a Magento extenstion to support PingOne User Provisioning and allows user to access your website by using their PingOne account credential to login into Magento. User Provisioning & Sync extension also allows provisioning with custom Providers. User Provisioning & Sync extention works with any IDP that conforms to the SCIM standard.
Pre-requisites : Download And Installation
Installation using Composer:
php bin/magento setup:di:compile
php bin/magento setup:upgrade
Manual Installation:
- Download the miniOrange User Provisioning & Sync extension.
- Unzip all contents of the zip inside the MiniOrange/SCIM directory.
{Root Directory of Magento} app code MiniOrange SCIM
Run the following commands on command prompt to enable the extension
php bin/magento setup:di:compile
php bin/magento setup:upgrade
Steps to configure Magento as SCIM Server and PingOne as SCIM Client (PingOne Automatic User Sync and Provision with Magento)
1. Configure Magento as SCIM Server
- Navigate to the SCIM Configuration tab to find the SCIM Base URL and SCIM Bearer Token, which you will keep handy.
2. Setup PingOne as SCIM Client
- Go to PingOne portal and login with the administrator account.
- After logging in, you will need to add the environment for your application.
- In the left tab, under the Connections section, select the Provisioning.
- Click on + to add the new connection.
- Select the SCIM based connection type and click on Next.
- Under Create a New Connection, enter the Name and Description and click on Next.
- In the next step, under the Configure Authentication section, enter the SCIM BASE URL from the SCIM Configuration tab of the User Provisioning & Sync extenstion.
- In the Authentication method field, select the OAuth 2 Bearer Token from the dropdown.
- Enter the SCIM Bearer Token in the OAuth Access Token field from the SCIM Configuration tab of the User Provisioning & Sync extension and click on Test Connection button.
- In the Configure Preferences, keep the field information as default and click on Finish.
- Under the Connections tab, select the application you have configured then enable the toggle button displayed on the right hand corner.
- Navigate back to the Provisioning tab, click on New Rule button.
- Enter the name and description and click on Create Rule button.
- Under the Available Connection, select the configured application and click on Save.
- In the Custom Filter section, add the appropriate attributes in the Attribute field and its Value. Click on Save.
- Enable the toggle, to enable the rules.
- You can now assign the users by going to the Users tab under the Identities in the left pane.
- Click on Add User button to add user for provisioning.
You have successfully configured the miniOrange Magento User Provisioning & Sync extension with PingOne.
3. Attribute Mapping
- In the Magento User Provisioning & Sync extension, navigate to the Attribute Mapping tab.
- In the Attribute Mapping section, enter the information and click on Save .
24*7 Active Support
If you face any issues or if you have any questions, please feel free to reach out to us at magentosupport@xecurify.com. In case you want some additional features to be included in the extension, please get in touch with us, and we can get that custom-made for you. Also, If you want, we can also schedule an online meeting to help you configure the Magento SCIM User Provisioning extension.