Change Identity Provider for Dashboard Admin SSO Integration
This article describes the process for updating the enterprise Identity Provider (IdP) used for Dashboard Administrator Single Sign-On (SSO) access.
- Enterprise subscriptions
- Enterprise identity provider (IDP)
- Single Sign-On (SSO)
-
-
The most important thing is to request an update to the IdP for the Dashboard SSO connection by opening a Support ticket.
-
If the current connection uses the Security Assertion Markup Language (SAML) protocol and the new IdP also uses SAML, two options are available:
-
Option 1: Create a new SSO connection.
- Use this option when the underlying user identifiers are changing.
-
This process mirrors the initial Dashboard SSO setup and requires a new connection name.
-
This process requires re-inviting administrators to all tenants using the new SSO identity.
-
The previous connection remains active until the migration is complete.
-
Option 2: Update the current SSO connection.
- Use this option when the underlying user identifiers are not changing and you want to minimize disruption for your administrators.
-
This option only requires an update to the metadata XML file or URL, and the change is transparent.
-
Administrators retain their current SSO identities.
-
This requires that the new IdP send the same Name Identifier/Email Address for each user.
-
For this option, provide the SAML metadata XML file or URL and a proposed date and time for the change. Availability during the change is required to confirm correct operation and avoid access disruptions.
-
-
If the previous or new IdP uses an OpenID Connect (OIDC) protocol, only Option 1 (creating a new connection and re-inviting administrators) is available.
-
Find configuration data for different identity providers in the following documentation:
-
- Configure Single Sign-on for Auth0 Dashboard: Share IdP configuration data
- Configure Single Sign-on for Auth0 Dashboard: Share IdP configuration data
Related References
-
