Auth0 Home Blog Docs

SSO and Universal Login select account feature (formerly disabled seamless sso)

sso
oidc
hosted-login-page
lock-11

#1

Hi,

I created a Tenant a while ago which had in the tenant settings the option “Enable/Disable seamless SSO” which when using the default Universal Login (Hosted Lock 11) could make the user prompt for account selection if he still had a session with auth0 or just redirecting him to callback right away.

With a newly created Tenant i do not have this option anymore. Now when using all standard settings in the tenant im not able to achieve the same behaviour again.

I tried various options of the lock11 like rememberLastLogin or from the auth flow of the openid standard prompt=select_account, neither somehow works.


https://openid.net/specs/openid-connect-core-1_0.html (3.1.2.1 see prompt)

Not sure if its a bug, but would be awesome if anyone could point me in the right direction.
Thnx


#3

Hey there @christian.fuerst!

When it comes to “Enable/Disable seamless SSO” option, all new Auth0 tenants come with seamless SSO enabled, legacy tenants may choose whether to enable this feature.

Let me know if that helps!


#4

Hi Konrad,

Thanks, i read this too. But the question remains: openid standard has a spec for account prompt:
https://openid.net/specs/openid-connect-core-1_0.html (3.1.2.1 see prompt)

and i would like to still have account prompting with new tenants.
So how do i do that?

Thanks