> For the complete documentation index, see [llms.txt](https://docs.aisera.com/llms.txt). Markdown versions of documentation pages are available by appending `.md` to page URLs; this page is available as [Markdown](https://docs.aisera.com/aisera-platform/channels/aisera-webchat/webchat-sso-saml-and-oauth2-sso-integration-with-auth0.md).

# Webchat SSO-SAML and OAuth2-SSO Integration with Auth0

This topic discusses two ways that you can set up SSO options via the Auth0 application.

## In the Auth0 Dashboard:

1\. Login to Auth0 dashboard <https://manage.auth0.com/dashboard/>

2\. Navigate to **Dashboard > Applications > Applications**.

3\. Click on  **+ Create Application**.

<figure><img src="https://lh7-rt.googleusercontent.com/docsz/AD_4nXfD6HVus_9fbIPjmr-d0QA8qbiFspTQsB9Vix6SDWs5esOWdt6eDJ-riUG0aaQ-zsIi-gnEqq0UnZDGfb4HE6BY6Tl-PN5YrsV3_Q5i-2P6yDsSC99mfVJGYx6DqUCcc90v9ESvBf1iIRR-vHajC6IdY3An_5313UeogBve3pqrNGRKJ0Dx?key=7iL2ZOh7YBQmH-tJCPo89Q" alt=""><figcaption><p>Creating Auth0 Applications</p></figcaption></figure>

### Choose one of the following two SSO options for Webchat:

* [**SSO-SAML (Auth0)**](/aisera-platform/channels/aisera-webchat/webchat-sso-saml-and-oauth2-sso-integration-with-auth0.md#to-set-up-ssl-saml-auth0)
* [**OAuth2 - SSO (Auth0)**](/aisera-platform/channels/aisera-webchat/webchat-sso-saml-and-oauth2-sso-integration-with-auth0.md#to-set-up-sso-oauth2-auth0)

### To set up SSL-SAML (Auth0)

1. Set your apps Name and Select “Regular Web Applications”

<div align="left"><figure><img src="https://lh7-rt.googleusercontent.com/docsz/AD_4nXfpGyu2ZxQKwXEK5lPejwidROi0hd7pKyvTnRpjlCaBDkhmwDYeTRCIKmL0aURuZpGePOqq6G_xSmVEVq4pv7mkeUPTxgxEq1VOKLGQtz5dPutu2KT3U-aYQQgNDckjTwjlkGM8KMJrfzSwt3C0UEP5b-KNdNeJcotblDJ95jBGIBSTchfbrA?key=7iL2ZOh7YBQmH-tJCPo89Q" alt="" width="563"><figcaption></figcaption></figure></div>

4\. Go directly to the Settings tab

<div align="left"><figure><img src="https://lh7-rt.googleusercontent.com/docsz/AD_4nXfliiZXkPz_HvDOhDA23J1SHFiCaKucTd1rpDXSToJMlrFhWve9kbFtjulAETEDIEsoSccz5YX_NBPfMNOOHOLqj0n64trQ5L9aIu3-SbvryrNgq19tVKOSE8oDgSHFEfkFYDOdxQoXrae0lfjkv8lxvG0dK80j8CvsDMMQzHEDWOfsa0QCvg?key=7iL2ZOh7YBQmH-tJCPo89Q" alt=""><figcaption></figcaption></figure></div>

5\. Go to section “Application URIs” and set the required value in Allowed Callback URLs

Callback URLs need to be in the syntax: `{vanityUrl}/aisera/ssoLoginCallback,`

such as: `https://acme.chatbot.aisera.cloud/aisera/ssoLoginCallback`

<div align="left"><figure><img src="https://lh7-rt.googleusercontent.com/docsz/AD_4nXcy0Fhxe0SWCnVXbM23R0D-DDzfonXh-sPcXczgYzOuQpfCpt_3N4siR_OkVvsmq2l0xjjmq9pG3p9NocZcdVG9_QcVIrAq2mZfirq6-HS-f4nR2tF9ypP9n4aAOua3dUzBTOfia3Mc45WHpVs_VHfgeT5RDGE6JNzBLXJ3swWx15ldfZA63Uk?key=7iL2ZOh7YBQmH-tJCPo89Q" alt="" width="563"><figcaption></figcaption></figure></div>

6\. Scroll to “Advanced Settings” and select the tab “Endpoints”

<div align="left"><figure><img src="https://lh7-rt.googleusercontent.com/docsz/AD_4nXcq8Q2hd81454LVbtH_BVwjG8PkmPWtDusuGSIej0YJZtROZTYQfuVJlUTSGHQyl7CWcXR-udY2IDtVAdfSeXlVGUA70WN_nsf_QK9-OFl4d_J-fId_NNvCEVqCMnatzSpCXfApUlMcMnxEYRz3YAxHv1q6DWcC2SWFZdG3vjK8-4ky0OkiqQ?key=7iL2ZOh7YBQmH-tJCPo89Q" alt=""><figcaption></figcaption></figure></div>

7\. Copy the SAML Protocol URL

<figure><img src="https://lh7-rt.googleusercontent.com/docsz/AD_4nXfQMDOfHqxZAcK6cdYBldT7x_AvmphfYqGYij6oz8In6SXspfMQqjWqwK9f-fsPZNg9rgh1YyHci1VkoYmhqpjnZdoe4eTmK0adXCOIMR084iY4nYmby_uatO8SpY5VPbbcP_pSsPfzD_28KZKJkiuQeCUE31jkQ0oHtOwWA1neRrqCL8Xi1Q?key=7iL2ZOh7YBQmH-tJCPo89Q" alt=""><figcaption></figcaption></figure>

8\. Move to the “Certificates” tab and copy the “Signing Certificate”

<figure><img src="https://lh7-rt.googleusercontent.com/docsz/AD_4nXfmMyCFvp0Mx13r-JMYZX508sQknOVARsvKKNrmUQ10zGeeroeG4MCKy_BNCJ9Swso7QiVAxpxGuOLDxYyotTlDjk5W6VLsSvo2iGoRFFb_xd-RvfWaiheJx8US6TFqL58Pp7MxCmVScMa5e0vNj6ArB-0JAdXJx3Nkyr_ka2i11XyNtGsIVgM?key=7iL2ZOh7YBQmH-tJCPo89Q" alt=""><figcaption></figcaption></figure>

## Setting up SSO for a channel in Admin Console

1. Open Aisera Admin UI and go to  **Settings > Channels > New Channel** to set up a new Webchat channel
2. Under the **Authentication** tab, select **SSO** and provide:\
   \
   **Login URL:** SAML Protocol URL\
   **ACS URL:** The identity provider's SSO URL used by Aisera to authenticate.\
   **Issuer:** The Aisera Entity ID. If none specified, it is generated based on the cluster as 'aisera-saml-{clusterType}'. (such as, aisera-saml-staging or aisera-saml-prod)\
   **IFrame embedding:** If checked then the SSO authentication form is displayed in the same window instead of opening a separate one. You may need to configure the identity provider to allow iframe embedding for this to work.\
   **Skip compression:** If checked, the SAML request from Aisera will not be compressed.\
   **x509 Certificate:** Signing Certificate

## Finish the channel setup and add the channel to an Aisera App

1. Select **Settings > Channels**, and choose your Webchat channel.
2. Choose the **pencil icon** to open the **Edit Channel** window.

<figure><img src="/files/UFRMQzUaAAy1q0IpqMcB" alt=""><figcaption><p>Webchat Details Window</p></figcaption></figure>

3\. Fill in the remaining values for the SSO section and click **OK**.

### To set up SSO-OAuth2 (Auth0)

1. Set your apps **Name** and Select **Single Page Applications.**

<div align="left"><figure><img src="/files/p1ynaJQwgMHvpnJaAKbS" alt="" width="563"><figcaption><p>Auth0 Application Types</p></figcaption></figure></div>

2. Go to the **Settings** tab<br>

<div align="left"><figure><img src="/files/X6LdxbQyCqSXOqnuvo1c" alt="" width="563"><figcaption></figcaption></figure></div>

3. Go to section “**Application URIs**” and set the <`vanityUrl>` as value in **Allowed Callback URLs.**\
   Need to be in the form of\
   such as, `https://acme.chatbot.aisera.cloud/`

<div align="left"><figure><img src="/files/tkgPckdWl9YkyuTHEo4q" alt="" width="563"><figcaption></figcaption></figure></div>

4. In **Cross-Origin Authentication** enable **Allow Cross-Origin Authentication** and set the vanity URL as value in **Allowed Origins (CORS)**

<figure><img src="/files/UBIjzg1TwCooIOJ0LZgQ" alt=""><figcaption><p>Allow Cross-Origin Communication</p></figcaption></figure>

5. **IMPORTANT!**: In order to allow Cross-Origin Authentication the **Universal Login Experience** needs to be set to “**Classic**”.
6. Go to **Branding > Universal Login Settings** and select **Classic**.

<figure><img src="/files/PBmWF523yPIogf06olmA" alt=""><figcaption><p>Universal Login</p></figcaption></figure>

7. Open Aisera Admin UI and go to **Settings** > **Channels** > **New Channel** to setup a new webchat channel.
8. In Authentication select **SSO-Auht0** and provide
   * **Domain**: Copy from **Auth0 > App > Settings**
   * **Client ID**: Copy from **Auth0 > App > Settings**

<figure><img src="/files/kEm0oDkxRxNGFd4k9w41" alt=""><figcaption><p>OAuth2-SSO Option</p></figcaption></figure>

7. Finish the channel setup and add the channel to an Aisera App


---

# Agent Instructions
This documentation is published with GitBook. GitBook is the documentation platform designed so that both humans and AI agents can read, navigate, and reason over technical content effectively. Learn more at gitbook.com.

## Querying This Documentation
If you need additional information that is not directly available in this page, you can query the documentation dynamically by asking a question.

Perform an HTTP GET request on the current page URL with the `ask` query parameter, and the optional `goal` query parameter:

```
GET https://docs.aisera.com/aisera-platform/channels/aisera-webchat/webchat-sso-saml-and-oauth2-sso-integration-with-auth0.md?ask=<question>&goal=<endgoal>
```

`ask` is the immediate question: it should be specific, self-contained, and written in natural language.
`goal` is optional and describes the broader end goal you are ultimately trying to accomplish on behalf of the user. GitBook uses it to tailor the answer towards what is most useful for that goal.

The response will contain a direct answer to the question and relevant excerpts and sources from the documentation.

Use this mechanism when the answer is not explicitly present in the current page, you need clarification or additional context, or you want to retrieve related documentation sections.