How to define `ForceAuthn: true` on a SAML connection

arel.rabinowitz · December 22, 2022, 8:35am

In the following post Conditionally force login with SAML connections, it is mentioned that ForceAuthn: true can be set on a specific SAML connection, to force login prompt every time the user goes to the upstream IdP. However, I couldn’t find any docs mentioning this other than this one post

Is it possible to set ForceAuthn: true for a specific SAML connection, to make all SAML requests have it?

david_wisecarver · December 24, 2022, 12:12am

Hi @arel.rabinowitz,

That post is correct, you can set ForceAuthn: true in the SAML Request template to force login prompt every time the user goes to the upstream IdP. Our docs page with all the template variables has not yet been updated with this, but it will still work.

Here is the list of the other template variables available: Configure Auth0 as SAML Service Provider

Topic		Replies	Views
Require email & password for SAML logins Get Help auth0 , login	0	1550	June 10, 2022
Login to an external client using different connection than "Username-Password-Authentication" Archived content authentication	2	3570	December 14, 2018
Is it possible to pass client id in SAML AuthnRequest? Get Help samlp	0	2276	April 7, 2022
Silent Authentication with SAML SSO Archived content saml , sso , silent-authenticatio	5	8549	July 26, 2019
Force a Specific Enterprise Connection ID for New Universal Login Get Help login-experience , login-prompt-new-experience	3	2372	March 3, 2023

How to define `ForceAuthn: true` on a SAML connection

Related topics