Private Cloud Deployments
Auth0 offers two Private Cloud deployment options:
Standard Private Cloud
Managed Private Cloud, hosted by Auth0 or customer-hosted on Amazon Web Services (AWS).
In this table, you can see the differences between the options compared to Auth0 Public Cloud option (enterprise subscription plan):
|Capability||Managed Private Cloud||Standard Private Cloud||Public Cloud|
|Instance Type||Dedicated Cloud Instance||Dedicated Cloud Instance||Shared Cloud Instance|
|Deployment Location||Auth0 Private Cloud or Customer-Owned AWS Cloud||Auth0 Private Cloud||Auth0 Public Cloud|
|Pre-Production Environment||Includes fully-isolated and independently updated instance for development and testing||Additional tenants within the same instance as the production tenant available||Additional tenant within the shared environment|
|Updates||Choice of update frequency to be coordinated with Auth0. Update cycle begins with the Pre-Production Environment||Automatic Monthly Updates||Automatic Updates|
|Uptime Guarantee||99.95% SLA with optional upgrade to 99.99%||99.95% SLA with optional upgrade to 99.99%||99.90% (no upgrade option available)|
|Requests per Second||500 requests per second with optional upgrade to 1500 requests per second||500 requests per second with optional upgrade to 1500 requests per second||See Rate Limit Policy for Auth0 APIs|
|Data Residency||Region of Choice||Region of Choice||Varies based on tenant location|
|PCI Certified||Addon available||Addon available||No|
|Geographic High Availability (GEO-HA)||Addon available||No||No|
To see the limitations of the Private Cloud deployment options, see Private Cloud Limitations
Managed Private Cloud benefits
With a Managed Private Cloud, we work closely with you to make sure that all aspects of your Auth0 environment and deployment are tuned to best meet the needs of your business.
|On-Board Balancing||If you're expecting a usage spike, contact us and we'll scale your environment so that you have the capacity you need to handle the your traffic load.|
|Annual Load Testing||You may choose to load test your Auth0 environment if desired. While not required, Auth0 appreciates notification of such tests ahead of time.|
|Scheduled Updates||Scheduled updates to create a release cadence to fit your team and your business' schedule.|
|Staging Environment||Dedicated environment to test new releases and changes.|
|GEO-HA||(Optional) Addon available.|
|Customer-Hosting||(Optional) Can host your Auth0 deployment in an AWS cloud owned by you.|
Data residency and isolation
With Private Cloud you can choose the region where your data is stored. Auth0 can provide a list of available regions that use three availability zones for the Private Cloud deployment. All data can remain and be stored in the chosen region. This is crucial in instances where regulations prevent data from being stored or processed outside the origin region.
Backups and logs
For Auth0-hosted Private Cloud customers, by default, backups will be processed and stored in the United States (USA). Service logs will be processed in the region closest to where Private Cloud is hosted, currently, this includes:
If you are a Private Cloud customer with data sovereignty requirements, Auth0 supports Private Cloud deployments in the following regions:
Otherwise, the Private Cloud can be supported in other regions (except China). Furthermore, Auth0 can deploy backups to AWS's S3 service in the same region that hosts the Private Cloud.
Auth0's Private Cloud instances have the highest Service Level Agreement (SLA) for availability of all other deployment options. In both the Standard and Managed Private Cloud instances, there is a 99.95% SLA with an optional upgrade to 99.99%. If SLA uptime is your primary concern, an upgraded Private Cloud deployment is the maximum that can be acquired.
High demand apps
If your application requires a significantly high amount of requests per second (RPS), you may also wish to consider Private Cloud. Any requirement over 100 logins per second should choose a Private Deployment. Take a look at the rate limits policies for more information about the standard rate limits. For Private Cloud deployments, the limit is 500 RPS with optional upgrade to 1500 RPS.
PCI compliance certification
If your application is PCI Compliant, or striving to be, and your requirements indicate that your identity provider also needs to be PCI compliant, this is only available as a Private Cloud addon. Public cloud tenants cannot acquire this benefit.