Requirements for the Auth0 Dedicated Cloud Service

If your subscription agreement includes a Private SaaS (PSaaS) Appliance that is hosted in a dedicated area of Auth0's cloud, Auth0 will set up the PSaaS Appliance on your behalf.


Auth0 will provide you with an account to access the Auth0 Support Center, where you can obtain information about your Auth0 environment and open support tickets. This account will be linked to your PSaaS Appliance and current Support plan.

In general, the tenant name you'll use for support is formatted as follows: customer_name-support

You will also be asked to provide a list of tenant admins. Note that tenant admins can invite other support users.

Preferred AWS Regions

You'll be asked for your preferred AWS regions, such as AWS US-WEST-2, AWS US-East-1, AWS EU-Central-1, and so on. You'll need to select:

  • One region for your Development node
  • One region (with at least three availability zones) for your Production cluster

DNS Records

Please finalize DNS names prior to PSaaS Appliance deployment.

Auth0 provides the domain names needed for your DNS zones/certificates. If you have Development and Production environments, your domain names will typically be formatted as follows:

Environment Sample Domain Name

You will also need names for the Management Dashboard, Webtask endpoints, Webtask dedicated domain, and App Tenant.

Management Dashboard The Management Dashboard is your web client's management interface. You'll typically choose the name manage, but you can use something else if needed
Webtask Endpoints The Webtask DNS is used for web extensions and external use of Webtasks. You'll typically use the name webtask, but you can use something else if needed
Webtask Dedicated Domain Beginning with Appliance version 13451, Webtask may now be configured on a dedicated domain. This enables safely using extensions in multi-tenant environments in the same manner as the Auth0 Public Cloud Service. Auth0 will set up a DNS zone to host the name entries for each tenant. Auth0 recommends *.wt.<customer_env>
App Tenant The App Tenant is the initial tenant where your applications reside. The is the tenant your users will interact with primarily, and you'll manage this using the Management Dashboard and API.

Sample Domain Name Sets

The following is a sample set of domain names for a typical Development and Production environment setup where the App Tenant's name is identity.


  • *


  • *

Domain Name Patterns

Each domain name will end in

The Management Dashboard, Webtask, and App Tenant(s) must be a part of the same parent domain (such as

The hostname (e.g. must be at least three characters long and must not contain any underscores(_).

The word login is reserved and cannot be used.

The domain name you use for tenants hosted in the Dedicated Cloud Service cannot be the same as any you're using for tenants hosted in the Public Cloud Service.

If you want to use your domain name in use on the Public Cloud Service in the Dedicated Cloud Service, we will need to delete your Public Cloud Service account.

Administrator Email Addresses

We will need the email addresses for the administrators of the Manage and App tenants in both the Development and Production environments

Group Email Address

Auth0 will provide a daily performance report of your PSaaS Appliance service, which is sent to an email address (with a group alias) specified by you.

In the event that there is an issue, this email address is the one we will use to notify you.

SMTP Settings

This information is not required until the required environments are ready. Auth0 will work with you to update your settings. See the SMTP section of the PSaaS Appliance infrastructure manual.

We will need the following SMTP-related values:

  • Host name
  • Port number
  • Username
  • Password

Custom Domains

Custom domains are optional, and Auth0 SLAs do not cover this portion of the PSaaS Appliance infrastructure.

You can configure custom domain names for your app tenants' domains.

If you choose to use custom domains, you'll need to manage your DNS name records, SSL Certificate, and add the appropriate DNS entries that alias the Auth0 identity.

For example, you'll need to map identity.<your_name> to identity.<your_name>.com.

Webtask does not support custom domains.

Keep Reading

Was this article helpful?