miniOrange provides a ready to use solution for Joomla User Provisioning using SCIM (System for Cross-domain Identity Management) standard. This solution ensures that you can sync add, update, delete, and deactivate user operations with Joomla using the SCIM User Provisioning plugin.

Click here to know more about other features we provide in Joomla SCIM User provisioning plugin

Pre-requisites : Download And Installation

1. Install miniOrange SCIM User Provisioning Plugin

• Download the zip file for the miniOrange SCIM User provisioning plugin for Joomla from the link here.
• Now go to the System -> under Install section -> click on Extensions

• Now under Upload Package File click on browse for file then select zip file of SCIM User Provisioning plugin.

• Once zip file is uploaded then click on Components -> Joomla miniOrange SCIM -> Account Setup -> Register/Login

2. Configure Joomla as SCIM Server

• Navigate to the SCIM Configuration tab to find the SCIM Base URL and SCIM Bearer Token, which will be handy for you.

Note: These information are required to configure your application CyberArk as IDP.

2. Automated User Provisioning with CyberArk

• Login into your CyberArk Admin Console.


Note: You can setup Single Sign-On (SSO) into Joomla as SAML SP with CyberArk as IDP by following the steps give here.

• Click on the Provisioning tab.
• Select Enable provisioning for this application then click on Save.

• Open a popup SCIM Provisioning window then click on Yes button.

• Select Preview or Live Mode according to your requirement.

• Enter SCIM Base URL in the SCIM Service URL text field.

• Select Authorization Type.

Note: The Authorization Type determines what information is required and where to find the information.



OAuth 2.0	This Authorization Type uses a workflow to authorize access. The Authorization Header directly provides credentials.
Authorization Header	Required choosing a header type

• In Authorization Type fill all the required information:

If you choose OAuth 2.0 required infromation from here.

• Authorize URL: Copy and paste Authorize URL from the Configure OAuth tab in the Joomla OAuth/OpenId connect client Plugin
• Access Token URL: Copy and paste Authorize URL from the Configure OAuth tab in the Joomla OAuth/OpenId connect client Plugin
• Client ID: Copy and paste Client ID from the Configure OAuth tab in the Joomla OAuth/OpenId connect client Plugin
• Client Secret: Copy and paste Client Secret from the Configure OAuth tab in the Joomla OAuth/OpenId connect client Plugin
• Scope: Copy and paste Scope from the Configure OAuth tab in the Joomla OAuth/OpenId connect client Plugin

• Authorization Header
• If you select Authorization Header require you to choose Header Type.
• Select Bearer Token if your app requires the header in the format: Bearer .
• Select Basic if your app requires authentication in the format: HTTP BASIC.
• Select Direct if your app uses some other format.

• Select Bearer Token.
• Copy SCIM Bearer Token from the SCIM Configuration tab and paste the Bearer Token text field.
• Click on Verify and Save button to save your SCIM Provisioning information.

• You have successfully configured the miniOrange Joomla SCIM User Provisioning Plugin with CyberArk.
• Click on the Upgrade Plans tab to check out our complete list of features and various licensing plans. OR you can click here to check features and licensing plans.
• If you want to purchase any of the paid version of the plugin, you have to register/login with us in Account Setup tab. OR you can register/login here.

Additional Resources

• How to configure SCIM with Azure AD
• How to configure SCIM with Okta
• How to configure SCIM with Google Apps
• How to configure SCIM with Centrify
• How to configure SCIM with Onelogin

Mail us on joomlasupport@xecurify.com for quick guidance(via email/meeting) on your requirement and our team will help you to select the best suitable solution/plan as per your requirement.