Integrating SSO via Auth0 into the Altinity.Cloud login page
How to set up single sign-on in Altinity.Cloud
Overview
Altinity uses Auth0 so that users who are already logged into other identity providers (Google, Microsoft, or Okta, for example) are automatically granted access to Altinity.Cloud.
The following diagram shows the Altinity.Cloud login process with an SSO provider that uses Auth0. A user clicks the link in the login panel to invoke the SSO provider. The SSO provider returns an Auth0 access token that logs the user into Altinity.Cloud. (Or not, depending on the user’s permissions.)
Figure 1 – Altinity Auth0 login via an SSO provider
Setting up integration with an enterprise identity provider
It’s straightforward to integrate an Auth0 provider with your Altinity.Cloud account. No matter what provider you’re using, here’s what you need to do:
- Gather the following information from your identity provider:
- The domain you want to use for single sign-on, such as
example.com
. Note: This must match your organization’s domain in your Altinity.Cloud account. - The domain set up with your identity provider, such as
example.okta.com
. - The Client Secret from your identity provider.
- The Client ID from your identity provider.
- The domain you want to use for single sign-on, such as
- Pass that information along to Altinity support. There are a couple of additional things you might want to think about beforehand:
- We can configure your account to map roles in your Auth0 provider to roles defined by Altinity.Cloud. For example, you might want the admin role in Okta to map to the Altinity.Cloud orgadmin role.
- We can also set things up so that user accounts are created for a new user that authenticated through Auth0, including the default role for the new user.
- Altinity support does the rest.
For more information
- The Auth0 site has a list of Enterprise Identity Providers with links to the setup instructions for many different vendors, including Google, Microsoft Azure Active Directory, and Okta.
- There are also a number of Altinity customers using Keycloak; see the Keycloak website for more information.
- Finally, the Altinity blog features a post that covers how we set up Okta as an Altinity Cloud identity provider using Auth0 in great detail.