WirFixenAlles/Boilerplates
2
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity

Update IdentityProvider/engomo.md

Browse Source
This commit is contained in:
Manuel Gläser
2024-06-28 19:04:35 +00:00
parent 85367ccfe1
commit 0cc3cfa8bc
1 changed files with 7 additions and 4 deletions
Download Patch File Download Diff File Expand all files Collapse all files

11
IdentityProvider/engomo.md
View File

@@ -11,17 +11,20 @@ SP: `engomo.mydomain.com`
2) Name: `Engomo` 2) Name: `Engomo`
3) leave everything else default 3) leave everything else default
4) Save 4) Save
![IDP](screenshots/engomo_idp_01.png)
**#2 Authentication > OAuth Service > Policies** **#2 Authentication > OAuth Service > Policies**
1) Create New 1) Create New
2) Policy type: Name: `Engomo` 2) Policy type: Name: `Engomo`
3) Identity sources: `Realm: select your realm and Groups in den Filter that should have access` 3) Identity sources: `Realm: select your realm and Groups in den Filter that should have access`
4) Authentication factors: Change settings to your needs, f.e. `Application name for FTM push notification: Engomo` 4) Authentication factors: Change settings to your needs, f.e. `Application name for FTM push notification: Engomo`
![IDP](screenshots/engomo_idp_02.png)
**#3 Authentication > OAuth Service > Scopes** **#3 Authentication > OAuth Service > Scopes**
1) Create New 1) Create New
2) Name: `profile` 2) Name: `profile`
3) Name: `email` 3) Name: `email`
![IDP](screenshots/engomo_idp_03.png)
**#4 Authentication > OAuth Service > Relying Party** **#4 Authentication > OAuth Service > Relying Party**
1) Name: `Engomo` 1) Name: `Engomo`
@@ -47,14 +50,14 @@ SP: `engomo.mydomain.com`
| :--- | :----: | :----: | | :--- | :----: | :----: |
| openid | preferred_username | Email | | openid | preferred_username | Email |
15) Save 15) Save
![IDP](screenshots/engomo01.png) ![IDP](screenshots/engomo_idp_04.png)
## Engomo ## Engomo
**#1 Server > Authentication** **#1 Server > Authentication**
1) Hit the `+` icon to add a new IDP 1) Hit the `+` icon to add a new IDP
2) Name: `FortiAuthenticator` (choose name whatever you want) 2) Name: `FortiAuthenticator` (choose name whatever you want)
![createSP](screenshots/engomo02.png) ![createSP](screenshots/engomo_sp_01.png)
3) Type: OpenID Connect 3) Type: OpenID Connect
4) Issuer: https://fac.mydomain.com/api/vl/oauth 4) Issuer: https://fac.mydomain.com/api/vl/oauth
5) Client ID: `ID from FAC step #4-4` 5) Client ID: `ID from FAC step #4-4`
@@ -62,9 +65,9 @@ SP: `engomo.mydomain.com`
7) Config Mode: `Auto-Configuration` 7) Config Mode: `Auto-Configuration`
8) Access token pass-through: `Prohibited` 8) Access token pass-through: `Prohibited`
9) Save 9) Save
![SP](screenshots/engomo03.png) ![SP](screenshots/engomo_sp_02.png)
**#2 Users & Devices > Users** **#2 Users & Devices > Users**
1) Create a new user (`+` icon) or use an existing one 1) Create a new user (`+` icon) or use an existing one
2) Authenticator: Choose `FortiAuthenticator` from step #2 2) Authenticator: Choose `FortiAuthenticator` from step #2
![User](screenshots/engomo04.png) ![User](screenshots/engomo_sp_03.png)