Requirements for the Auth0 Dedicated Cloud Service

If your subscription agreement includes a Private SaaS (PSaaS) Appliance that is hosted in a dedicated area of Auth0's cloud, Auth0 will set up the PSaaS Appliance on your behalf.

Support

Auth0 will provide you with an account to access the Auth0 Support Center, where you can obtain information about your Auth0 environment and open support tickets. This account will be linked to your PSaaS Appliance and current Support plan.

In general, the tenant name you'll use for support is formatted as follows: customer_name-support

You will also be asked to provide a list of tenant admins. Note that tenant admins can invite other support users.

Preferred AWS Regions

You'll be asked for your preferred AWS regions, such as AWS US-WEST-2, AWS US-East-1, AWS EU-Central-1, and so on. You'll need to select:

  • One region for your Development node
  • One region (with at least three availability zones) for your Production cluster

DNS Records

Please finalize DNS names prior to PSaaS Appliance deployment.

You'll need to choose the domain names for your environments. If you have Development and Production environments, your domain names will typically be formatted as follows:

Environment Sample Domain Name
Development company-dev.auth0.com
Production company.auth0.com

You will then need to chose DNS names for the Management Dashboard, Webtask endpoints, and App Tenant.

Description
Management Dashboard The Management Dashboard is your web client's management interface. You'll typically choose the name manage, but you can use something else if needed
Webtask Endpoints The Webtask DNS is used for web extensions and external use of Webtasks. You'll typically use the name webtask, but you can use something else if needed
App Tenant The App Tenant is the initial tenant where your applications reside. The is the tenant your users will interact with primarily, and you'll manage this using the Management Dashboard and API.

Sample Domain Name Sets

The following is a sample set of domain names for a typical Development and Production environment setup where the App Tenant's name is identity.

Development

  • manage.mycompany-dev.auth0.com
  • webtask.mycompany-dev.auth0.com
  • identity.mycompany-dev.auth0.com

Production

  • manage.mycompany.auth0.com
  • webtask.mycompany.auth0.com
  • identity.mycompany.auth0.com

Domain Name Patterns

Each domain name has four parts, with the last part being auth0.com.

The Management Dashboard, Webtask, and App Tenant(s) must be a part of the same parent domain (such as yourdomain.auth0.com).

The first (left-most) part of the name must have at least three characters.

The word login is reserved and cannot be used.

The domain name you use for tenants hosted in the Dedicated Cloud Service cannot be the same as any you're using for tenants hosted in the Public Cloud Service.

If you want to use your domain name in use on the Public Cloud Service in the Dedicated Cloud Service, we will need to delete your Public Cloud Service account.

Administrator Email Addresses

We will need the email addresses for the administrators of the Manage and App tenants in both the Development and Production environments

Group Email Address

Auth0 will provide a daily performance report of your PSaaS Appliance service, which is sent to an email address (with a group alias) specified by you.

In the event that there is an issue, this email address is the one we will use to notify you.

SMTP Settings

This information is not required until the required environments are ready. Auth0 will work with you to update your settings. See the SMTP section of the PSaaS Appliance infrastructure manual.

We will need the following SMTP-related values:

  • Host name
  • Port number
  • Username
  • Password

Custom Domains

Custom domains are optional, and Auth0 SLAs do not cover this portion of the PSaaS Appliance infrastructure.

You can configure custom domain names for your app tenants' domains.

If you choose to use custom domains, you'll need to obtain the appropriate certificates signed by a public certificate authority (as well as renew them when the time comes), manage the DNS name records, and add the appropriate DNS entries that alias the Auth0 identity.

For example, you'll need to map identity.<your_name>.auth0.com to identity.<your_name>.com.

Webtask does not support custom domains.

Keep Reading