Configuring Auth0 for a new Private Deployment

When provisioning a new Foundation deployment, the following Auth0 configuration is required:

  1. Auth0 Application Setup

    • Create a new Auth0 application for the specific Foundation instance

    • Configure the application type and authentication flow

    • Set up callback URLs and allowed origins for the Foundation frontend

  2. Identity Provider Connection

    • Configure the connection to the customer's SSO provider (typically Azure AD/Entra ID)

    • Map user attributes and groups from the corporate directory

    • Enable SCIM support for automated user provisioning and deprovisioning

  3. Permission and Role Mapping

    • Map corporate user groups to Foundation roles (Data Owner, Data Steward, Data Product Developer, etc.)

    • Configure attribute-based access control (ABAC) rules

    • Set up role-based access control (RBAC) policies

  4. Security Settings

    • Configure token expiration and refresh policies

    • Set up Multi-Factor Authentication (MFA) requirements

    • Define session management rules and timeout periods

PreviousAuthenticationNextGenerating Tokens for API Authentication

Last updated