website/integrations: portainer: group config steps

website/integrations/services/portainer/index.md

@@ -24,9 +24,11 @@ The following placeholders are used in this guide:
 - `portainer.company` is the FQDN of Portainer.
 - `authentik.company` is the FQDN of authentik.
 
-### Step 1 - authentik
+## authentik configuration
 
-In authentik, under _Providers_, create an _OAuth2/OpenID Provider_ with these settings:
+### Step 1
+
+In the Admin interface of authentik, under _Providers_, create an _OAuth2/OpenID Provider_ with these settings:
 
 :::note
 Only settings that have been modified from default have been listed.
@@ -39,12 +41,21 @@ Only settings that have been modified from default have been listed.
 - Client Secret: Copy and Save this for later
 - Redirect URIs/Origins: `https://portainer.company/`
 
-### Step 2 - Portainer
+### Step 2
+
+Create an application which uses this provider. Optionally apply access restrictions to the application.
+
+- Name: Portainer
+- Slug: portainer
+- Provider: Portainer
+- Launch URL: https://portainer.company
+
+## Portainer configuration
 
 In Portainer, under _Settings_, _Authentication_, Select _OAuth_ and _Custom_
 
-- Client ID: Client ID from step 1
-- Client Secret: Client Secret from step 1
+- Client ID: The 'Client ID' from the authentik provider
+- Client Secret: The 'Client secret' from the authentik provider
 - Authorization URL: `https://authentik.company/application/o/authorize/`
 - Access Token URL: `https://authentik.company/application/o/token/`
 - Resource URL: `https://authentik.company/application/o/userinfo/`
@@ -59,15 +70,6 @@ Portainer by default shows commas between each item in the Scopes field. Do **NO
 
 ![](./port1.png)
 
-### Step 3 - authentik
-
-In authentik, create an application which uses this provider. Optionally apply access restrictions to the application using policy bindings.
-
-- Name: Portainer
-- Slug: portainer
-- Provider: Portainer
-- Launch URL: https://portainer.company
-
 ## Notes
 
 :::note