FAQ about Credential Guard Addon and Breached Password Detection

Overview

Auth0 Credential Guard prevents account takeover attacks by detecting and resetting stolen passwords faster. This article explains some frequently asked questions about this addon.

  1. How to enable Credential Guard Addon? Is there a trial?
  2. Is data reported from Credential Guard credible for use in Production systems?
  3. How to report breached passwords to Auth0?

Solution

How to enable Credential Guard Addon? Is there a trial?

  • Credentials Guard is an addon feature for our Enterprise customers. To enable Credential Guard on an Auth0 tenant, email tam@auth0.com with the request.
    • There is an extra cost associated with this feature. To try this addon, the TAM team can help enable a trial for an Auth0 tenant.

Is data reported from Credential Guard credible for use in Production systems?

  • Yes, the data is credible. Auth0 recommends using Credential Guard in production. It comes from a dedicated security team that infiltrates criminal communities and gains access to breach data that is not otherwise available: See Detect breaches faster with Credential Guard for more details.

Is it possible to report breached passwords to Auth0?

  • Yes, if there are breached credentials and it is necessary to pass them along to the Security Team, reach out to Auth0 Support and submit a case requesting the information.