Auth0 SSO
Follow the sections in this guide to set up Auth0 SSO.
Security requirements for your production environment:
- DELETE the admin default account shipped by OM in case you had Basic Authentication enabled before configuring the authentication with Auth0 SSO.
- UPDATE the Private / Public keys used for the JWT Tokens. The keys we provide by default are aimed only for quickstart and testing purposes. They should NEVER be used in a production installation.
Create Server Credentials
Step 1: Create the Account
- If you don't have an account, Sign up to create one.
- Select the Account Type, i.e., Company or Personal
- Click I need advanced settings and click next.

- Provide the Tenant Domain, select the region and click on Create Account.

- Once done, you will land on the dashboard page.

Step 2: Create a New Application
- Once you are on the Dashboard page, click on
Applications > Applications
available on the left-hand side panel.

- Click on
Create Application
.

- Enter the Application name.
- Choose an application type and click on
Create
.

Step 3: Where to Find the Credentials
- Navigate to the Settings tab.
- You will find your
Client ID
,Client Secret
andDomain
.

Create Service Account (optional)
This is a guide to create ingestion bot service account. This step is optional if you configure the ingestion-bot with the JWT Token, you can follow the documentation of Enable JWT Tokens.
Step 1: Enable Client-Credential
- Go to your project dashboard.

- Navigate to
Applications > Applications

- Select your application from the list.

- Once selected, scroll down until you see the
Application Properties
section. - Change the Token Endpoint
Authentication Method
fromNone
toBasic
.

- Now scroll further down to the section on
Advanced Settings
. - Click on it and select
Grant Types
. - In the
Grant Types
, check the option forClient Credentials
.
- You will see the
Auth0 Management API
.

- Click on the
Auth0 Management API
.

- Click on the
Machine to Machine Applications
tab. - You will find your application listed below.

- Click on the toggle to authorize.
- Once done you will find a down arrow, click on it.

- Select the permissions (scopes) that should be granted to the client.
- Click on
Update
.

After the applying these steps, you can update the configuration of your deployment:
Configure Auth0 SSO for your Docker Deployment.
Bare Metal SecurityConfigure Auth0 SSO for your Bare Metal Deployment.
Kubernetes SecurityConfigure Auth0 SSO for your Kubernetes Deployment.
Configure Ingestion
After everything has been set up, you will need to configure your workflows if you are running them via the metadata
CLI or with any custom scheduler.
When setting up the YAML config for the connector, update the workflowConfig
as follows: