Search
Search

Map Entra ID User Attributes to WordPress User Profiles

Introduction

WPO365 can help to map Entra ID User Attributes to WordPress User Profiles. Examples of such attributes include a user’s standard attributes such as mobile phone, the department, job title but also custom (security) properties. This powerful integration ensures that user information – such as names, email addresses, job titles, and custom attributes, remains synchronized and up-to-date without manual intervention.

Custom user fields can be automatically updated during the following events:

Supported features

Basic user fields

WPO365 differentiates between updating basic WordPress user profile fields and custom user attributes that WordPress will store in so-called user meta fields.

Basic WordPress user fields are:

  • First name
  • Last name
  • Display name
  • Email address
Custom user fields

Examples of custom user attributes are:

  • Employee ID
  • Job title
  • Department
  • Mobile phone

A full list of custom user attributes is available from Microsoft here.

Map Entra ID User Attributes to WordPress User Profiles.
An example of custom user attributes synchronized from Azure AD to WordPress.

WPO365 can be configured to look for custom user attributes in the ID token it receives when a user signs in with Microsoft using OpenID Connect or in the SAML response when a user signs in with Microsoft using SAML 2.0. By default, however, will the plugin try and connect to Microsoft Graph to retrieve a complete set of user attributes.

BuddyPress Extended Profile Fields

If you configured custom user attributes such as Job title or Mobile phone and you are using BuddyPress, then you can configure the WPO365 plugin to update so-called BuddyPress Extended Profile Fields.

Custom security attributes

Custom security attributes is a new category of attributes that Microsoft has recently introduced and that are supported by WPO365. It requires additional configuration in Azure AD. An administrator must create separate attribute sets and grant specific permissions to assign, read and define attribute sets and their values. You must – for example – assign the App registration that you created for application-level access in Azure AD the role of Attribute Assignment Reader.

Plugins with this feature

The features in this article can be unlocked by the WPO365 | PROFESSIONAL and the WPO365 | INTEGRATE bundles.

Documentation

Videos

More Features

Latest Articles

Latest News

Integrate with Entra ID Application / User Provisioning service

There’s no longer any reason not to integrate with Entra ID Application / User Provisioning Service today – because much [...]

Vulnerability WPO365 | […] MAILER <= 3.2

At WPO365, your security is prioritized. If you haven’t updated the WPO365 | MICROSOFT GRAPH MAILER plugin to the latest [...]

View all Latest News

Blog

WP Engine: Staging to production

After receiving numerous inquiries from customers using WP Engine‘s hosting platform about staging site deployments, I decided to explore the [...]

Customize your login button

The “Sign in with Microsoft” login button that is displayed on the (default) WordPress login page can now be customized [...]

View all Articles