User Provisioning and Sync

The User Provisioning & Sync module is an Identity and Access Management (IAM) solution that enables automatic user provisioning and synchronization of accounts across multiple systems concurrently.
Automate the process of creating, managing, updating & deleting your user accounts & their access across all connected apps.

Try it out in your a dedicated test environment.

Drop us an email, if you need any assistance in setting up the module.

Overview

This solution ensures users only get access to the resources they are authorized for, reducing security risks.
With automatic user provisioning, administrators can quickly assign the right permissions and revoke them when needed. This enhances both security and efficiency.

Features -

SCIM Provisioning -
User Provisioning and Deprovisioning based on the industry standard SCIM protocol.

Setup Drupal as SCIM Client: Changes done within Drupal, are propagated / pushed to the SCIM Server (connected service) e.g. any new user that is created on the Drupal side, would be automatically created in the connected service.
Especially helpful when Drupal is the primary Identity Source / source of truth.
This is a core capability for SCIM provisioning workflows.
Setup Drupal as SCIM Server: Changes done on the SCIM client (any IdP or user store), are reflected on the Drupal side. This enables smooth user account provisioning into Drupal.
Especially helpful in controlled environments where you don’t want end users creating accounts on their own. Admin creates an account in the IdP and is then pushed into Drupal.

API Based Provisioning -
Use APIs for user provisioning and deprovisioning, either alongside or instead of SCIM, to manage Users and Roles. Popular providers supported include Azure AD, AWS Cognito, Okta, and Salesforce.
Control how and when provisioning occurs -

Real-Time Provisioning: Immediate automatic provisioning of Users and Roles when CRUD operations occur, ensuring new changes are synced to and with the SCIM Server.
Scheduler-Based Provisioning: Define schedules (via CRON or custom) for provisioning and deprovisioning of user accounts & syncing of roles.
Provisioning On-Demand: Perform user access provisioning instantly whenever needed. Any user information can be provisioned or deprovisioned on the fly, making troubleshooting and temporary access simple.

Reporting Dashboard: Detailed logs of all CRUD operations - with details around the affected resource (account), status of the operation, and action performed - to monitor account provisioning and ensure compliance.
Group-to-Group Mapping: Map and synchronize groups between your SCIM Server and SCIM Client. This ensures that group memberships and roles stay consistent across systems, simplifying user access provisioning and improving authorization management.
Import / Export Users: Import users into Drupal, or update existing users, with data from a CSV or even a JSON file. Provides a wide range of features out of the box, and a comprehensive API to customize imports.