Skip to main content
To use Highly Regulated Identity features, you must have an Enterprise Plan with the Highly Regulated Identity add-on. Refer to Auth0 Pricing for details.
When you require Sender Constraining for a client application, access tokens are constrained to that application. Auth0 verifies requests to ensure that only the application that requested the token can use it to access the associated resource. To learn more, read Configure Sender Constraining.
  • Auth0 Dashboard
  • Management API
  1. Go to Dashboard > Applications > Applications. Select the application you want to configure.
  2. Under Settings, scroll to Token Sender-Constraining.
  3. Toggle on to Require Sender Constraining. Toggle off to remove the requirement for Sender Constraining for the application.