« Security

Auth0: boost your LiveChat's security with Single Sign-On!

Krzysztof Kraus
4 min read
updated: Jun 19, 2019

Using Auth0 as your Single Sign-On provider? That’s great! What’s even better is that you can now integrate it with LiveChat, which will not only enable the SSO as the login method for your agents but it will also boost your app’s security in the process!

With the following tutorial, you will learn:

Please note that login with SSO is available for customers using our Enterprise plan. To learn more what additional features will you gain with Enterprise, click here!
Please note that login with SSO is available for customers using our Enterprise plan. To learn more what additional features will you gain with Enterprise, click here!

Endpoints and certificates required to enable SSO at LiveChat and how to find them

To integrate your custom SSO solution with LiveChat, you will need two things:

  • Signing Certificate (X.509 certificate);
  • SAML Protocol URL.

Both the certificate and the SAML Protocol URL will allow us to communicate with your custom SSO provider and confirm the identity of your LiveChat agents. So, the biggest question, for now, is how to find them?

  1. First, log into your Auth0 dashboard and proceed to the Applications section.

Go to Applications in your Auth0 dashboard

  1. Now, go to the Settings of your default application (or, if you don’t have one, create a new app!).

Go to Settings of your default app or create a new one!

  1. In the Settings section, Auth0 allows you to set up things like the name of your SSO app, its description or even its logo.
By the way, if you’d like to use LiveChat’s logo as the logo of your SSO app, feel free to copy and use the following URL:
https://www.livechatinc.com/wp-content/themes/livechat2.0/media/img/press/lc-logos/logo-livechat.png
By the way, if you’d like to use LiveChat’s logo as the logo of your SSO app, feel free to copy and use the following URL:
https://www.livechatinc.com/wp-content/themes/livechat2.0/media/img/press/lc-logos/logo-livechat.png
  1. After setting up the descriptive aspects of your app, let’s scroll down a bit until you reach the option called Allowed Callback URLs. Once there, copy the following URL address:
https://api.livechatinc.com/v2/authorize/saml/callback

and paste it as the URL that your SSO app will be allowed to communicate with.

Paste allowed callback into your SSO app settings

  1. Now we have a little bit more scrolling ahead. At the bottom of your app’s settings, click on Show advanced settings.

Go to Advanced Settings of your Auth0 SSO app

  1. To proceed, you will need two things taken straight from this section: the Signing Certificate (X.509 certificate) and the SAML Protocol URL mentioned a while ago. You can get them from the Certificates and Endpoints sections of Advanced Settings.

Get the Signing Certificate and SAML Protocol URL from Certificated and Endpoints

After copying them, remember to store them in a safe place for later!
After copying them, remember to store them in a safe place for later!
  1. To continue, Save Changes to your app.

Save changes to your app

OK, so now that you’ve got your Signing Certificate and SAML Protocol URL ready, it is time to configure the SAML 2.0 protocol itself. But don’t close the configuration of your SSO App yet!

Configuring the SAML 2.0 protocol

  1. While still in your SSO App’s Settings, go to the Addons section.

Go to Addons section of your Auth0 SSO app

  1. From the list of available Addons, enable SAML2 WEB APP.

Enable SAML2 WEB APP Addon

  1. Now we’ve reached the part that may seem difficult and over-complicated. But just as mentioned before, fear not! Simply copy the pre-made SAML 2.0 configuration from below:
{
  "mappings": {
    "email": "http://schemas.xmlsoap.org/ws/2005/05/identity/claims/emailaddress"
  },
  "nameIdentifierFormat": "urn:oasis:names:tc:SAML:2.0:nameid-format:email",
  "nameIdentifierProbes": [
    "http://schemas.xmlsoap.org/ws/2005/05/identity/claims/emailaddress"
  ]
}

and paste it right into the configuration’s code area:

Paste the provided SAML 2.0 configuration

  1. And that’s it! After providing the configuration, all that is left at the Auth0’s side is to Save changes made to your SAML2 WEB APP addon.

Save changes to your SAML2 WEB APP Addon

Now we can proceed with applying all of that configuration to your LiveChat account.

Enabling the SAML configuration in your LiveChat

  1. We like to make things dead easy, so now that you have everything ready, the steps that are ahead of us can be compared to a walk in the park. Let’s start with going to the Settings of your LiveChat app. While there, proceed to Security section.

Go to LiveChat's Security Settings

  1. From the list of available options, choose Agent authentication.

Go to the Agent authentication in LiveChat's Security settings

  1. We are trying to integrate LiveChat with your own SSO solution, so configuring the Your own SAML implementation is the way to go. 😎

Configure Your own SAML implementation

  1. As we have configured the SAML WEB APP before, skip this step by clicking on Continue

Skip the initial step by clicking on Continue

  1. … and proceed to the next section, where you can paste the SAML Protocol URL (Identity Provider Single Sign-On URL) and Signing Certificate (X.509 certificate) that you’ve gathered before.

Paste the SAML Protocol URL Signing Certificate

  1. We are almost here! Now that absolutely everything is in place, there’s just one more thing for you to do: save changes by clicking on the Enable button!

Click on Enable button to apply changes

And that’s it! Your SAML implementation has been configured properly, and your agents can start using the Sign in with custom SSO as their login method.

Start using custom SSO as your login method!

Don’t forget to check out our other articles! And, if you need any additional information on this topic, don’t hesitate to start a chat with us - we are available 24/7/365!

Was this article helpful?

Got it!

Thanks for your feedback.

Thank you!

We’re happy to help.

Start using LiveChat now!

Free 14-day trial · Team plan features · No credit card required

Still not convinced? See what else we have to offer