Integrate Auth0 as the SAML Identity Provider with IBM Security Verify

View Only

Integrate Auth0 as the SAML Identity Provider with IBM Security Verify

By Deepak Thorat posted yesterday

Like

Content

Introduction
Prerequisites
Steps
End User Flow
Conclusion
Authors

Introduction

Integrating multiple Identity and Access Management (IAM) solutions is often necessary for organizations that rely on various cloud-based IAM platforms. Most IAM solutions support protocols like SAML and OIDC, which enable seamless integration between different systems. In this context, the IAM solution that manages user identities is known as the Identity Provider (IdP), while the IAM solution providing the services is referred to as the Service Provider (SP).

This blog will guide you through integrating Auth0 as a SAML Identity Provider with an IBM Security Verify (ISV), where the ISV acts as the Service Provider.

Prerequisites

The Organization required the following tenants:

IBM Security Verify tenant (free trial ISV tenant)
Auth0 tenant

Steps

Step 1

Log in to the ISV tenant admin console using an admin account. Next, navigate to Authentication and select the Identity Providers tab. Click the Add Identity Provider button, then choose SAML Enterprise Identity Provider.

Step 2

Enter the Name and Realm Name values, then select the Enabled checkbox. Click the Next button to proceed.

Step 3

The To Identity Provider page will appear, where the ISV admin needs to share the values from Option 2 with Auth0.

Step 4

Log in to Auth0 at https://manage.auth0.com/dashboard/us/<tenant>.

Next, navigate to Applications and click on the Create Application tab. Select Native App as the application type, enter the application name, and click the Create button.

Next, update the Application URIs section under the Settings tab with the values provided in Step 3. The attribute mapping given below:

Application Login URI: Entity ID
Allowed Callback URLs: Assertion Consumer Service URL
Allowed Logout URLs: Single Logout URL

Step 5

Next, navigate to the Auth0 Application Settings tab and update the mapping in the Settings window with the code provided below.

Snippet:

{
  "mappings": {
    "user_id": "external_id",
    "email": "preferred_username",
    "name": "name",
    "given_name": "given_name",
    "family_name": "family_name",
    "upn": "upn",
    "groups": "groupIds"
  }
}

Step 6

Next, go to the Auth0 Application Usage tab, download the Identity Provider metadata, and upload it to the From Identity Provider tab in the ISV SAML Identity Provider settings. (Click Next at Step 3, then upload the metadata.)

Continue clicking the Next button until the Identity Provider configuration is saved.

Step 7

Next, go to Auth0 – Application Settings, open the Connections tab, and enable Username-Password-Authentication option.

End User flow:

Conclusion:

This blog guides you through configuring Auth0 as an identity provider with IBM Security Verify. it enables your organization to leverage ISV Identity and Access Management capabilities.

IBM Security

Join our 16,000+ members as we work together to
overcome the toughest challenges of cybersecurity.

IBM Verify