Auth0
- 3 Minutes to read
- Print
- PDF
Auth0
- 3 Minutes to read
- Print
- PDF
Article summary
Did you find this summary helpful?
Thank you for your feedback
About this document
This document gives you the step-by-step procedure to configure Auth0 in SAFE.
Introduction
SAFE integrates with Auth0, and fetches the security misconfiguration of the Auth0 account in SAFE.
Pre-requisite
Access required in SAFE:
SAFE Admin Access
Access required in Auth0:
Auth0 Admin Access
Required User Inputs:
API Identifier
Client ID
Client Secret
API Audience
Asset Name in SAFE (optional)
Required Scope:
read:attack_protection
read:mfa_policies
read:stats
Generate Connection Details
How to generate Client ID and Client Secret
Log in to your Auth0 account as Admin.
Click on the Applications on the left panel
Click on the Applications
Click on the Create Application
.png "1(14).png")
Enter Name and Select Machine to Machine Applications
Click on the Create button
.png "2(13).png")
Select the Auth0 Management API from the dropdown
Select the following permissions:
read:attack_protection
read:mfa_policies
read:stats
Click on the Authorize button
.png "3(12).png")
Click on the credentials
The system displays the Client ID and Client Secret. Copy and save the Client ID and Client Secret to use it while configuring Auth0 in SAFE.
It's important to regularly update the Client ID and Client Secret in SAFE according to its expiration date.
.png "4(10).png")
How to generate API Audience
Log in to your Auth0 account as Admin.
Click on the Applications on the left panel.
Click on the APIs.
The system displays the API Audience. Copy and save the API Audience to use it while configuring Auth0 in SAFE.
.png "5(12).png")
How to generate API Identifier
Log in to your Auth0 account as Admin.
Click on the Applications on the left panel.
Click on the APIs.
Select Auth0 Management API
.png "6(12).png")
The system displays the API Identifier. Copy and save the API Identifier to use it while configuring Auth0 in SAFE.
.png "7(10).png")
.png "1(14).png")
.png "2(13).png")
.png "3(12).png")
.png "4(10).png")
.png "5(12).png")
.png "6(12).png")
.png "7(10).png")
Configure Auth0 in SAFE
Log in to your SAFE account as Admin.
Click on the Integrations option from the left navigation.
Scroll to find the Auth0 integration card or search for Auth0 in the search bar.
.png "8(12).png")
Hover over the Auth0 integration card and click on the Configure button.
Enter the following:
API Identifier
Client ID
Client Secret
API Audience
Asset Name in SAFE - Provide a unique identifier which can uniquely identify the asset
Enter the Auto Sync Frequency.
Click on the Test Connection button.
Once the connection is successful, click on the Save button.
.png "9(12).png")
Once the configuration is saved successfully, click on the Sync Now button to trigger an on-demand sync.
Upon a successful sync, the system pulls the Auth0 assets and their findings in SAFE. You can track the status of the sync in the History table.
.png "10(11).png")
.png "8(12).png")
.png "9(12).png")
.png "10(11).png")
View Results
Go to the integration homepage
Scroll to find the Auth0 integration card or search for Auth0 in the search bar.
Click on the Auth0 integration card for Finding View and Asset View.
Finding View: This tab displays all the findings details pulled from Auth0.
.png "11(9).png")
Asset View: This tab displays all the assets pulled from Auth0.
.png "12(9).png")
.png "11(9).png")
.png "12(9).png")
History
Learn More about Integration History here.
SAFE's Outgoing IP Addresses
Click here to find the outgoing IP addresses of SAFE. All traffic to any integrations in SAFE will see one IP address as the source IP of the incoming connection.
Was this article helpful?