To install a proxy sync server follow the instructions at the [Install sync server page](https://bookstack.soffid.com/link/28#bkmrk-install-next-sync-se).
2. If the installation is in a **dedicated Sync server:** 2.1. You need open the Sofid Console and approve the Task to accept the new Sync server.  2.1. You need tune the **Sync server memory usage.** `Main Menu > Administration > Configure Soffid > Integration engine > Synchronization servers`  3. Once the Sync server is registered, if you want to create a **Soffid IdP** you must create a new **Identity Provider Agent**. ` > Administration > Configure Soffid > Integration engine > Agents` - **Type**: Soffid Identity Provider. - **Server**: select the sync server that will host the identity provider. - **Trust password**: must be unchecked. - **Read only**: must be unchecked. - **Manual account creation**: usually is unchecked, but could be useful to check it during initial tests. - **Role based**: usually is unchecked, despite it could be used to limit the users that can use it. - **Groups**: select the groups that can use it. Leave it blank to allow any user. - **User domain**: use default users domain. Nevertheless, depending on your needs, creating another user domain could be a good option. - **Password domain**: use default password domain. - **User types**: check the user types that can use the identity provider. - **Public ID**: enter the public ID assigned in the federation management page. Your identity provider agent should look like this one:  4. Upload the **Federation addon** to the Soffid Console:To upload the addon follow the instructions at the [How to install Federation in Soffid page](https://bookstack.soffid.com/books/federation/page/how-to-install-federation-in-soffid "How to install Federation in Soffid").
5. Once you are connected to the Soffid console, you can start creating an **Entity Group**. 5.1. First of all, open the **Identity & Service providers** page ` > Administration > Configure Soffid > Web SSO > Identity & Service providers` 5.2. Then, click the "Add group" button and Soffid will display a new window to fill in the **Entity group** attributes. 5.3. Once you fill in the fields, you need to save (disk button) or apply changes (Apply changes button) to save the data. When the Entity Group is created, inside there will be two options, one to create the Identity Providers and other to create the Service Providers.  5.3.1. Clicking on the Identity Providers record a identity providers list will be displayed and it will be able to create new identity providers. To create a new Identity Provider continue on step 5rd. 5.3.2. Clicking on the Service Providers record a service provider list will be displayed and it will be able to create new service providers. To create a new Service Provider continue on step 6th. 6. New **Identity Provider:** 6.1. To create a new Identity Provider you can click on the "Add identity provider" button on the tree view, or click the add button (+) on the Identity Provider list. Then Soffid will display a new window. 6.2. At the new window you must select the IdP type you want to create and fill in the required fields. The fields to full fill depend on the IdP type selected. - - You can visit the [Identity Provider page ](https://bookstack.soffid.com/books/federation/page/identity-provider)for more detail. 6.2.1. When creating a Soffid identity provider, it will be mandatory to create an agent. The agent will have to be a Soffid Identity Provider agent. On the connector parameters you must define a unique *Public ID* which will be used on the Identity Provider configuration.  6.3. Once you fill in all the data, you need to enable the proper profiles by clicking on the profile list and configuring them. - - You can fin more information visiting the[ Profile page](https://bookstack.soffid.com/books/federation/page/profiles "Profiles") where the available protocols are defined. 6.4. Finally, you need to save (disk button) or apply changes (Apply changes button) to save the data.Note that in some cases it will be necessary to **restart the synchronization server**, so Soffid will generate the additional metadata or certificate data needed.
Note that you may have to **open the standard port**.
**Soffid Identity Provider Screenshot** [](https://bookstack.soffid.com/uploads/images/gallery/2023-08/image-1691748396068.png) [](https://bookstack.soffid.com/uploads/images/gallery/2023-08/image-1691748424764.png) ##### You could check your Identity Provider ``` https://You can visit the [Authentication page](https://bookstack.soffid.com/books/soffid-3-reference-guide/page/authentication "Authentication") for more information.