We are using universal login. My case scenario is if user domain is not in listed in the connection, I want to send them all to a default connection. I do not want to use the db connection. New to auth0 so any help on this will be greatly appreciated.
Case 1: abc@auth0.com => send to auth0 IdP (this can be setup via home realm discovery)
Case 2: abc@randomdomain.com => send to default IdP (???)
Thanks,
Nirajan
Hi @nirajan.kharal,
You should be able to do this by setting your authentication profile to Identifier First and configuring a home realm discovery identity provider.
I recommend referring to our Configure Identifier First Authentication documentation.
Let me know if you have any questions.
Thanks,
Rueben
Hi @rueben.tiow ,
I guess I was not clear on my question. In identifier first if the domain is found in home realm it will take you the IdP provider. This part is easy. My business case is if email is not found in any domain then I want to send it to another IdP lets call it default IdP. So example will be “@nk.com” will take to NK company. However, I have have domain of “randomuser@**.com” then it should redirect to default identity provider instead of the username/password flow. I do not want to use the database for the people who don’t have domain but the default IdP. Basically for all other users instead of using database to store them I want to use another catch all IdentityProvider.
Thanks,
Nirajan
Hi team! 
This is just a heads-up that we’ll be hosting an Ask Me Anything (AMA) session all about Universal Login, and this question is relevant to our event. Auth0 by Okta Subject Matter Experts will answer your question on Thursday, October 24th, from 9 a.m. to 11 a.m. PST.
Have more questions about customizing your login experience, boosting security, or implementing advanced features?
Drop your questions in this thread before October 23rd, and our experts will provide answers during the AMA!
Plus, you’ll earn points and a special badge for participating!
Ask Me Anything: Tailor Your Experience with Universal Login — From Low-Code to Pro-Code
Thanks
Dawid
Hi @nirajan.kharal,
You should be able to set a Default Directory in your tenant settings so that users are prompted to log in with that default IdP if their email domain does not match one found in home realm discovery when using identifier first authentication.
For more information on this setting, check out our Tenant Settings documentation.
Thanks,
Rueben
This topic was automatically closed 14 days after the last reply. New replies are no longer allowed.