Configuring an Auth0 SAML v2.0 identity provider on Keycloak

Last Updated : Jun 05, 2026 |

About this task

To use Auth0 SSO capabilities and authenticate users, you must configure a SAML v2.0 identity provider on Keycloak.

Before you begin

Configure an application for SSO on Auth0 Dashboard and obtain a configuration metadata file in XML format. For more information, see Creating a new application.

Procedure

  1. Log in to the Keycloak web administration interface.
  2. Navigate to Solution Realm > Identity Provider.
  3. Click Add provider and then select SAML v2.0.

    Keycloak displays the Add identity provider page.

  4. In Alias, type the name that you used when configuring an SAML application on Auth0 Dashboard.

    For example, Auth0SAML.

  5. Navigate to the Import External IDP Config section.
  6. Click Select file, navigate to the federation metadata XML file that you downloaded from Auth0 and then click Import.

    Keycloak imports the configuration data and populates the Single Sign-On Service URL field.

  7. In NameID Policy Format, select Email.
  8. Click Save.

Next Steps

Configure attribute mapping between Keycloak and the Auth0 identity provider.