This describes how to set up Foxpass to delegate password verification to OneLogin.
Follow the instructions here to create an "Authentication Only" API credential pair:
Copy down the "Client Secret" and "Client ID".
Go to the Foxpass authentication settings page. Scroll down to "Password authentication delegation". Enable it, and choose OneLogin /1. Enter the API credentials you copied in the previous step and select the United States (US) or Europe (EU) endpoint to use.
Now all authentication requests are sent to OneLogin and users can manage their passwords through their service.
Note: We do not currently check for OneLogin MFA enforcement
If a user provides a correct OneLogin password, we allow them to authenticate with Foxpass regardless of their MFA settings.