Communifire supports Auth0 integration for single-sign on (SSO). This page covers information about Auth0 SSO, walks you through how to configure Auth0 SSO on your intranet, and provides solutions to common issues. For more information or assistance from the Axero team, submit a private case.
On visiting your intranet, users will be re-directed to the Auth0 log in page.
Logging in with Communifire credentials
You can allow users to log in using Communifire credentials. Set System Properties > EnableAutoLoginViaSaml to false. When this property is set to false, users will see the Communifire login page. Users can either log in with Communifire credentials or click Login via SAML to sign in using Auth0 credentials.
In the mobile app, users will be re-directed to the Auth0 log in page after entering the site URL.
You can allow users to log in using Communifire credentials. Set System Properties > EnableAutoLoginViaSaml to false. When this property is set to false, users will see the Communifire login page. Users can either log in with Communifire credentials or click SSO Login to sign in using Auth0 credentials.
A user is created in Communifire when the user logs in for the first time. You can add users to Communifire before they log in using the methods below.
Bulk import users
Pre-populate users before Auth0 setup or launch with Bulk Import Users . The Communifire usernames you create must match the usernames in Auth0.
Add users in Control Panel > People > Manage People > Add User . The Communifire username you create must match the username in Auth0.
You can use our REST API to import users - REST API: Add User , REST API: Update User Profile Fields .
Adding Communifire administrator accounts
If Communifire administrator accounts are created before Auth0 is set up and the Communifire usernames match Auth0 usernames, the administrator accounts will sync with the corresponding Auth0 accounts. If not, you will need to re-configure permissions for the admin Auth0 accounts and remove the previous Communifire administrator accounts.
Any data can be imported from Auth0, as long as there are corresponding User Profile Fields in Communifire. Attribute mappings must be added to Control Panel > System > Single Sign On > Data Mapping > SAML. Enter the attribute name as the property name in Communifire. See the table below for common fields to import.
* The country code in Auth0 must match country options in Communifire exactly.
You can also use our REST API to import user data into Communifire.
User data is updated in Communifire every time a user logs in.
Email and username change
When a user's email is changed in Auth0, the user's Communifire email will be updated the next time they login. The Communifire username won't be changed and must be updated manually by a site administrator.
When a user's assignment is removed in Auth0, the user will be blocked from logging into Communifire using Auth0.
The user's account will still be active in Communifire. You can Delete User and delete their content or re-assign their content to another user or to the system anonymous user. You can also Ban User , which will retain their content.
This guide walks you through how to enable Auth0 SSO in Communifire. Client-side setup is estimated to take 1-2 hours and Communifire team setup is estimated to take 1-2 hours. The time to set up SSO can vary based on how long it takes to set up internal systems and to provide the Communifire team with required information. The total time for setting up SSO may take up to 1-2 business days.
Once you complete the guide, Auth0 SSO will be active on your intranet. If you run into any issues, submit a case here for assistance.
1. Login to your Auth0 account as an administrator
2. Navigate to Applications tab and click Create Application
3. Name your application and select Regular Web Applications. Click Create
4. Click Settings tab
Scroll down to Application URIs section and add your domain.
For Application Login URI
If it is a Communifire subdomain use https://yourdomain.communifire.com
If it is a custom domain use https://yourdomain.com
For Application Callback URLs
If it is a Communifire subdomain use https://yourdomain.communifire.com/SAML/AssertionConsumerService.aspx
If it is a custom domain use https://yourdomain.com/SAML/AssertionConsumerService.aspx
For Application Logout URLs
If it is a Communifire subdomain use https://yourdomain.communifire.com/logout
If it is a custom domain use https://yourdomain.com/logout
5. Scroll down to Advanced Settings. Click Certificates tab and download the CER file. Save this for later.
6. Next, click Endpoints and copy the SAML Protocol URL and save it for later
7. Save Changes.
8. Scroll to the top of the page and click Addons and turn on SAML 2 WEB APPS
9. On the screen that shows, confirm the Application Callback URL is correct
Scroll to the bottom of this screen and click Enable
10. On the Usage tab, copy the Issuer, and Identity Provider Login URL and save it for later.
is requesting access to a wiki that you have locked: https://my.axerosolutions.com/spaces/5/communifire-documentation/wiki/view/95294/auth0-saml-2-0-sso
Your session has expired. You are being logged out.