Auth0 Universal Login provides the essential feature of an : the login flow. When a user needs to prove their identity to gain access to your application, you can redirect them to and let Auth0 handle the authentication process. Universal Login is Auth0’s primary hosted login solution. Universal Login features easy-to-use customization tools and promotes a simpler, faster experience for end-users. Alternatively, Auth0 also supports Classic Login, a hosted login experience that uses JavaScript controls for customization.
At this time, Auth0’s active development efforts are focused on Universal Login, and Classic Login no longer receives updates. Unless your specific use case requires the Classic experience, implementing Universal Login is recommended.
To help you choose the best solution for your needs, the table below compares the features of both login experiences.
FeatureUniversal LoginClassic Login
Adopt new features without changing HTMLYesNo
Ongoing development and new feature additionsYesNo
Lightweight HTMLYesNo
JavaScript requiredNoYes
CustomizationYes, using page templates or the no-code editorYes, using HTML, and only for login, multi-factor authentication (MFA), and password reset pages
No-Code solutionYes, using the no-code editorNo
Passwordless authenticationYesYes, with SMS or Email
Email magic linkNoYes
PasskeysYesNo
WebAuthn and device biometricsYesNo
Web Content Accessibility Guidelines (WCAG) ComplianceYesNo
Organizations supportYesNo
Terms of service acceptance on signupYesYes
Custom fields on signupYesYes
Full localizationYes, in these languagesOnly for the login page
Customizable localized text on all pagesYesNo
Email MFAYesNo
Voice MFAYesNo
Duo MFAYes, but Duo must be the only MFA factor enabledYes
MFA customization with ActionsYesNo
Buttons for enterprise connectionsYesNo
Ability to disable self-service password recoveryYesYes
Custom URLs for password reset and user signupYes, using page templates and a custom-built password reset or signup pageYes
Kerberos support for AD/LDAP connectionsNoYes
Requires exposing identity provider domains in a public endpointNoYes

Learn more