# Auth0 First, we need to add Exivity to your Auth0 applications. Follow these steps: * On the Auth0 dashboard, click the **Applications** menu item, and then the **Create application** button: ![](https://1141395848-files.gitbook.io/~/files/v0/b/gitbook-legacy-files/o/assets%2F-LHEKskLK6aXinV75Knl%2F-LSKcpV95hnzMKOxav2j%2F-LSKggxNvNWNB_xvBRSS%2Fwalk-through-create-application.png?alt=media\&token=09c59605-a092-4ee4-8eac-d4e2b3d88d85) * Choose a descriptive name for your application, click the **Single Page Web App** button, and finally the **Create** button: ![](https://1141395848-files.gitbook.io/~/files/v0/b/gitbook-legacy-files/o/assets%2F-LHEKskLK6aXinV75Knl%2F-LSKcpV95hnzMKOxav2j%2F-LSKh8uwuR6rDuPhKzz8%2Fwalk-through-confirm-create-application.png?alt=media\&token=a2c7a0dc-af66-41b6-86c7-ed4f741e8850) * On the application overview page, click the **Settings** tab: ![](https://1141395848-files.gitbook.io/~/files/v0/b/gitbook-legacy-files/o/assets%2F-LHEKskLK6aXinV75Knl%2F-LSRBJH6A1dEN22U_t-3%2F-LSRCYmNcf6zdH1zUfUo%2Fwalk-through-settings.png?alt=media\&token=6eac7995-b53f-4a82-ad66-a6d97e24a212) * On this page, fill out the following details and click on the **Save changes** button: | Field | Value | | ------------------------- | -------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------- | | **Allowed Callback URLs** |

Exivity Entity ID / Metadata URL endpoint (see endpoints) and

Exivity Assertion Consumer Service endpoint (see endpoints)

| | **Allowed Logout URLs** | Exivity *Single Logout Service* endpoint (see [endpoints](https://olddocs.exivity.io/advanced/integrate/sso/..#endpoints)) | ![](https://1141395848-files.gitbook.io/~/files/v0/b/gitbook-legacy-files/o/assets%2F-LHEKskLK6aXinV75Knl%2F-LSKcpV95hnzMKOxav2j%2F-LSKy-sD2RLVNPOgbH6F%2Fwalk-through-add-ons.png?alt=media\&token=944c28b3-2417-4db1-bc38-b0ba08f86a76) * Click on the **SAML2** addon button. On the **Settings** tab, fill out the following details and click the **Save** button: | Field | Value | | ---------------------------- | ----------------------------------------------------------------------------------------------------------------------------- | | **Application callback URL** | Exivity *Entity ID / Metadata URL* endpoint (see [endpoints](https://olddocs.exivity.io/advanced/integrate/sso/..#endpoints)) | | **Settings** | See below | ```javascript { "nameIdentifierProbes": [ "http://schemas.xmlsoap.org/ws/2005/05/identity/claims/emailaddress", "http://schemas.xmlsoap.org/ws/2005/05/identity/claims/nameidentifier", "http://schemas.xmlsoap.org/ws/2005/05/identity/claims/name" ], "logout": { "callback": "[Exivity Single Logout Service endpoint]" }, "binding": "urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Redirect" } ``` {% hint style="warning" %} Replace the text`[Exivity Single Logout Service endpoint]` with the *Single Logout Service* endpoint of your Exivity instance (see [endpoints](https://olddocs.exivity.io/advanced/integrate/sso/..#endpoints)) {% endhint %} * Click on the **Usage** tab. ![](https://1141395848-files.gitbook.io/~/files/v0/b/gitbook-legacy-files/o/assets%2F-LHEKskLK6aXinV75Knl%2F-LSKcpV95hnzMKOxav2j%2F-LSKzfJw09keXoxJkKHj%2Fwalk-through-add-ons-usage.png?alt=media\&token=44b69b57-d52a-4956-8ccb-7cd385d0e8cc) In a separate browser tab, open the Exivity SAML configuration (see [configuration](https://olddocs.exivity.io/advanced/integrate/sso/..#configuration)) and copy over the following settings: | Exivity SAML setting | Use value | | --------------------- | ---------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------- | | **Entity ID** | *Issuer* | | **SSO URL** | *Identity Provider Login URL* | | **SLO URL** | *Identity Provider Login URL*, suffix with `/logout` | | **X-509 certificate** |

Download the certificate by clicking the Download Auth0 certificate link.

Open the .pem file with a text editor and remove

the text-----BEGIN CERTIFICATE-----, -----END CERTIFICATE-----

and all line breaks so you end up with a single-line base64 encoded string.

| | **Advanced settings** |

{
"security": {
"wantXMLValidation": false
}
}

| * As the last step, enable Single Sign-On in Exivity by navigating to *Administration* > *Settings* and then clicking on the *System* tab. Make sure the *Single Sign-On* option is set to *Enabled*, and click the *Update* button: ![](https://blobscdn.gitbook.com/v0/b/gitbook-28427.appspot.com/o/assets%2F-LHEKskLK6aXinV75Knl%2F-LHF0G1lYWN8xZtENgii%2F-LHF0U2a-1m4rWCtNzX6%2Fazure-ad-exivity-configuration.png?generation=1531424669531682\&alt=media) SSO is now configured and enabled, and you can now use Auth0 to login to your Exivity instance. The login screen will look something like this: ![](https://blobscdn.gitbook.com/v0/b/gitbook-28427.appspot.com/o/assets%2F-LHEKskLK6aXinV75Knl%2F-LHF0G1lYWN8xZtENgii%2F-LHF0U2cVXgVSEJprLbl%2Fexivity-login-sso.png?generation=1531424668611642\&alt=media) And by clicking on the *Login* button, you'll be taken to the Auth0 login screen. Exivity will receive the Auth0 e-mail address and create a new user in the configured user group (see [configuration](https://olddocs.exivity.io/advanced/integrate/sso/..#configuration)) if no existing user is found.