PSaaS Appliance Administration: Manage the Dashboard
Access the Dashboard
Connections for the Auth0 Application
The Auth0 application in the Root Tenant Authority (RTA) controls access to the Management Dashboard, and the only Connections that you should enable for this application is the built-in Database Connection (the default Connection for this application is a Database Connection called Initial-Connection) or an enterprise connection like the AD-LDAP Connector. You should never enable a Social Connection for the Auth0 application.
Additionally, please disable signups for the Auth0 application.
The Auth0 Dashboard uses the PSaaS Appliance to authenticate its users.
Within the list of applications, you will see the Auth0 Application, which represents the Dashboard itself. It uses a connection called
Initial-Connection, which stores the credentials of the administrators that have access to the Dashboard.
Because the Dashboard uses the PSaaS Appliance for authentication, any configured rules will run whenever a user accesses the Dashboard. Because errors in one or more of your rules may result in you losing access to the Dashboard, Auth0 suggests writing rules that exclude the Auth0 application:
To block the user, click Actions. Then, in the drop-down menu that appears, click Block User.
Restrict Access to the Dashboard
Because the Dashboard uses the PSaaS Appliance to authenticate users, the Dashboard is using Connections, Rules, and so on, just like any other application you might add in the future.
As a result, you have several options for restricting access to the dashboard, including, but not limited to:
- Writing rules to allow users only from a specific IP address;
- Writing rules to allow only co-administrators of the PSaaS Appliance to authenticate using their Active Directory (via either ADFS or AD Connector).