From f53ea8de37baecda9010a2580ffc49ee6409cf2f Mon Sep 17 00:00:00 2001
From: admManuel <admmanuel@noreply.gitea>
Date: Fri, 28 Jun 2024 18:52:51 +0000
Subject: [PATCH] Update IdentityProvider/FortiAuthenticator.md

---
 IdentityProvider/FortiAuthenticator.md | 27 +++++++++++++++++++++++---
 1 file changed, 24 insertions(+), 3 deletions(-)

diff --git a/IdentityProvider/FortiAuthenticator.md b/IdentityProvider/FortiAuthenticator.md
index 3fbc18a..d264959 100644
--- a/IdentityProvider/FortiAuthenticator.md
+++ b/IdentityProvider/FortiAuthenticator.md
@@ -6,7 +6,7 @@ In this repo we use `fac.mydomain.com` as our base URL for the FAC.
 ## Engomo
 For this serviceprovider we use this URL `engomo.mydomain.com`
 
-### FAC - part
+### FAC
 
 **#1 Authentication > OAuth Service > Portals**
 1) Create New
@@ -49,5 +49,26 @@ For this serviceprovider we use this URL `engomo.mydomain.com`
 | :---        |    :----:   |    :----:   |
 | openid      | preferred_username | Email |
 
-**#5 Screenshots for IDP
-![RelyingParty](screenshots/engomo01.png)
\ No newline at end of file
+**#5 Screenshots for IDP**
+![IDP](screenshots/engomo01.png)
+
+### Engomo
+
+**#1 Server > Authentication**
+1) Hit the `+` icon to add a new IDP
+2) Name: `FortiAuthenticator` (choose name whatever you want)
+3) Type: OpenID Connect
+4) Issuer: https://fac.mydomain.com/api/vl/oauth
+5) Client ID: `ID from FAC step #4-4`
+6) Client secret: `secret from FAC step #4-5`
+7) Config Mode: `Auto-Configuration`
+8) Access token pass-through: `Prohibited`
+9) Save
+
+**#2 Users & Devices > Users**
+1) Create a new user (`+` icon) or use an existing one
+2) Authenticator: Choose `FortiAuthenticator` from step #2
+
+**#3 Screenshots for IDP**
+![SP](screenshots/engomo02.png)
+![User](screenshots/engomo03.png)
\ No newline at end of file