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

Enable users to sign-in to your apps/sites using their netID Account. Users with existing accounts at well-known brands like WEB.DE or GMX get seamless access to your apps/sites using the account they already use to read their e-mail or watch videos online. With an active user base of more than 38 million, 60% of the German online population are ready to sign-in with netID.

The European netID Foundation was established 2018 by Mediengruppe RTL Deutschland, ProSiebenSat.1 and United Internet AG. The foundation pursues the goal of establishing netID as a European alternative to US social login providers. Learn more about netID and its user facing functionality on our [consumer website](https://netid.de/)

<h2 id="prerequisites">Prerequisites</h2>
<p>Before you begin:</p>
<ol>
<li>Register an Auth0 account and setup a tenant. If not, <a href="https://auth0.com/signup">register a free account and tenant here</a></li>
<li>Furthermore, we assume that you have already registered a developer account at netID. If not, <a href="https://developer.netid.de/register">register a free account here</a></li>
</ol>


<h2 id="configure-integration-with-netid">Configure integration with netID</h2>
<p>To configure the integration with netID, follow the steps below.</p>
<ol>
<li>Login into the netID Developer Portal with your account</li>
<li>Create a <code>service</code> for which you want to enable the netID Single Sign-On by navigating to <code>Services</code> and then selecting <code>Add service</code>. Detailed documentation can be found <a href="https://developerzone.netid.dev/devportal/tutorial/services/">here</a></li>
<li>Create a <code>client</code> for this service by selecting on <code>Add client</code>. Detailed documentation can be found <a href="https://developerzone.netid.dev/devportal/tutorial/clients/#creating-a-client">here</a>. <strong>It&#39;s critical</strong> to configure the proper <code>callback url</code> for your tenant, like <code>https://&lt;YOUR_AUTH0_DOMAIN&gt;/login/callback</code>. Your Auth0 domain is either your <a href="https://auth0.com/docs/custom-domains">custom domain</a>, if one is configured, or your tenant name and a region (for most tenants) prepended to <code>auth0.com</code>. <a href="https://auth0.com/docs/get-started/learn-the-basics#create-a-tenant-and-domain">More information on Auth0 tenant domains are here</a>.</li>
<li>Once the client is created it will initially run in a sandboxed mode, which means it can only be used with netID-Accounts on the configured allow list. In order to successfully run through the initial integration add a
test user (e-mail address) to the allow list by selecting <code>Add test user</code></li>
</ol>
<p>Remember <strong>Client ID</strong> and <strong>Client secret - sandbox</strong> (later referred to as <strong>Client Secret</strong>) for the Auth0 configuration by expanding the client details.</p>


<h2 id="create-and-enable-connection-in-auth0">Create and enable connection in Auth0</h2>
<p><a href="https://auth0.com/docs/dashboard/guides/connections/set-up-connections-social">Set up this social connection</a> in Auth0. Make sure you have the generated <strong>Client ID</strong> and the <strong>Client Secret</strong>.</p>


<h2 id="test-connection">Test connection</h2>
<p>You&#39;re ready to <a href="https://auth0.com/docs/get-started/dashboard/test-social-connections">test your connection</a>. Make sure to use an eligible account as configured for your sandboxed client.</p>
<p>Once you successfully tested the integration you are free request the approval of your service for production use (i.e. without limitations to test users) by netID as described <a href="https://developerzone.netid.dev/devportal/tutorial/services/#approval-for-production-use">here</a> and once done enable it for users.</p>


netID Single Sign-On - Enable users to login with their netID Account (WEB.DE, GMX, 7Pass)

netID Single Sign-On Integration with Auth0

netID Single Sign-On

Enable users to login with their netID Account (WEB.DE, GMX, 7Pass)