See our other products: ChatBot.com - bot platform | helpdesk.com - support ticket system | KnowledgeBase - help center for website

Help and support

Resources that will teach you everything about LiveChat.

Auth0: boost your LiveChat’s security with Single Sign-On!

by Krzysztof Kraus

Using Auth0 as your Single Sign-On provider? That’s great! What’s even better is that you can now integrate it with LiveChat, which will not only enable the SSO as the login method for your agents but it will also boost your app’s security in the process!

With the following tutorial, you will learn:

Please note that login with SSO is available for customers using our Enterprise plan. To learn more what additional features will you gain with Enterprise, click here!

Endpoints and certificates required to enable SSO at LiveChat and how to find them

To integrate your custom SSO solution with LiveChat, you will need two things:

  • Signing Certificate (X.509 certificate);
  • SAML Protocol URL.

Both the certificate and the SAML Protocol URL will allow us to communicate with your custom SSO provider and confirm the identity of your LiveChat agents. So, the biggest question, for now, is how to find them?

  1. First, log into your Auth0 dashboard and proceed to the Applications section.
Go to Applications in your Auth0 dashboard
  1. Now, go to the Settings of your default application (or, if you don’t have one, create a new app!).
Go to Settings of your default app or create a new one!
  1. In the Settings section, Auth0 allows you to set up things like the name of your SSO app, its description or even its logo.
By the way, if you’d like to use LiveChat’s logo as the logo of your SSO app, feel free to copy and use the following URL:
https://www.livechatinc.com/wp-content/themes/livechat2.0/media/img/press/lc-logos/logo-livechat.png
  1. After setting up the descriptive aspects of your app, let’s scroll down a bit until you reach the option called Allowed Callback URLs. Once there, copy the following URL address:
https://api.livechatinc.com/v2/authorize/saml/callback

and paste it as the URL that your SSO app will be allowed to communicate with.

Paste allowed callback into your SSO app settings
  1. Now we have a little bit more scrolling ahead. At the bottom of your app’s settings, click on Show advanced settings.
Go to Advanced Settings of your Auth0 SSO app
  1. To proceed, you will need two things taken straight from this section: the Signing Certificate (X.509 certificate) and the SAML Protocol URL mentioned a while ago. You can get them from the Certificates and Endpoints sections of Advanced Settings.
Get the Signing Certificate and SAML Protocol URL from Certificated and Endpoints
After copying them, remember to store them in a safe place for later!
  1. To continue, Save Changes to your app.
Save changes to your app

OK, so now that you’ve got your Signing Certificate and SAML Protocol URL ready, it is time to configure the SAML 2.0 protocol itself. But don’t close the configuration of your SSO App yet!

Configuring the SAML 2.0 protocol

  1. While still in your SSO App’s Settings, go to the Addons section.
Go to Addons section of your Auth0 SSO app
  1. From the list of available Addons, enable SAML2 WEB APP.
Enable SAML2 WEB APP Addon
  1. Now we’ve reached the part that may seem difficult and over-complicated. But just as mentioned before, fear not! Simply copy the pre-made SAML 2.0 configuration from below:
{
  "mappings": {
    "email": "http://schemas.xmlsoap.org/ws/2005/05/identity/claims/emailaddress"
  },
  "nameIdentifierFormat": "urn:oasis:names:tc:SAML:2.0:nameid-format:email",
  "nameIdentifierProbes": [
    "http://schemas.xmlsoap.org/ws/2005/05/identity/claims/emailaddress"
  ]
}

and paste it right into the configuration’s code area:

Paste the provided SAML 2.0 configuration
  1. And that’s it! After providing the configuration, all that is left at the Auth0’s side is to Save changes made to your SAML2 WEB APP addon.
Save changes to your SAML2 WEB APP Addon

Now we can proceed with applying all of that configuration to your LiveChat account.

Enabling the SAML configuration in your LiveChat

  1. We like to make things dead easy, so now that you have everything ready, the steps that are ahead of us can be compared to a walk in the park. Let’s start with going to the Settings of your LiveChat app. While there, proceed to Security section.
Go to LiveChat's Security Settings
  1. From the list of available options, choose Agent authentication.
Go to the Agent authentication in LiveChat's Security settings
  1. We are trying to integrate LiveChat with your own SSO solution, so configuring the Your own SAML implementation is the way to go. 😎
Configure Your own SAML implementation
  1. As we have configured the SAML WEB APP before, skip this step by clicking on Continue
Skip the initial step by clicking on Continue
  1. … and proceed to the next section, where you can paste the SAML Protocol URL (Identity Provider Single Sign-On URL) and Signing Certificate (X.509 certificate) that you’ve gathered before.
Paste the SAML Protocol URL Signing Certificate
  1. We are almost here! Now that absolutely everything is in place, there’s just one more thing for you to do: save changes by clicking on the Enable button!
Click on Enable button to apply changes

And that’s it! Your SAML implementation has been configured properly, and your agents can start using the Sign in with custom SSO as their login method.

Start using custom SSO as your login method!

Don’t forget to check out our other articles! And, if you need any additional information on this topic, don’t hesitate to start a chat with us – we are available 24/7/365!

Did you find this helpful? Yes No
Thanks for your feedback.
100% of people found this helpful.

Start free LiveChat trial!

5-minute setup, test out the Team plan features for 30 days, no credit card required.

Rate us! Rate this chat to help us become better support. +