Auth0

    Auth0 solves the most complex and large-scale identity use cases for global enterprises with their extensible and easy-to-integrate platform, securing billions of logins every year. Using Plivo’s Messaging platform and Auth0 you can send SMS messages to send multi-factor verification codes via text messages. This integration will add SMS-based MFA to the login flow for the tenant in which you’re working.

    Prerequisites

    To start using Plivo with Auth0, you’ll need

    1. Make sure you have an Auth0 account and tenant.
    2. Your Plivo Auth ID and Auth Token: You can find your Plivo Auth ID and Auth Token on the overview page of the Plivo console. Find Your Auth Credentials on Plivo Console
    3. A Plivo number (optional): You must have an SMS-enabled Plivo phone number to send SMS messages to numbers in the US and Canada. Purchase numbers from the Phone Numbers page of the Plivo console, or by using the PhoneNumber API. Buy a New Plivo Number

    Plivo provides an SMS messaging service that Auth0 can use to deliver multi-factor verification via SMS messages. The following steps will enable you to add SMS-based MFA via the Plivo SMS API to the login flow for the tenant in which you’re working.

    Note:

    The following steps will add text-message-based MFA to the login flow for the tenant in which you're working. We highly recommend testing this setup on a staging or development server before making the changes to your production login flow.

    Set up Plivo

    Capture the authorization ID and authorization token from the Account and Payments section in the Plivo console.

    Add the Action

    1. Select Add Integration (at the top of this page).
    2. Read the necessary access requirements and click Continue.
    3. Configure the integration as directed
    4. Click Create to add the integration to your Library.
    5. Click the Add to flow link on the pop-up that appears.
    6. Drag the Action into the desired location in the flow.
    7. Click Apply Changes.

    Activate custom SMS factor

    To use the SMS factor, your tenant needs to have MFA enabled globally or required for specific contexts using Actions. To learn how to enable the MFA feature, see:

    The last steps are to configure the SMS Factor to use the custom code and test the MFA flow.

    Note:

    Once you complete the steps below, Auth0 will begin using this factor for MFA during login. Before activating this integration in production, please make sure you have configured all components correctly and verified on a test tenant

    1. Go to Dashboard > Security > Multi-factor Auth and click the Phone Message factor box.
    2. In the modal that appears, select Custom for the delivery provider, then make any adjustments you’d like to the templates. Click Save when complete, and close the modal.
    3. Enable the SMS factor using the toggle switch to begin using this factor.

    Test MFA flow

    Trigger an MFA flow and verify that everything works as intended.

    Troubleshoot

    If you do not receive the text message, look in your tenant logs for a failed Phone Message log entry. To learn which event types to search, see the Log Event Type Code list, or you can use the Filter control to find MFA errors.

    Make sure that:

    • The Action is in the Send Phone Message flow.
    • The secrets are the same ones you created in the steps above.
    • Your Esendex account is active (not suspended).
    • Your phone number is formatted using the E.164 format.