External identity

External identity providers allow customers to sign in using third-party authentication services, such as social logins or enterprise identity providers. This step in the login journey enables authentication by redirecting customers to their chosen provider and returning them to the application once authentication is complete. Configuration options determine which providers are available. For details on how external identities are linked to local accounts, see Account linking.

Diagram of the External identity screen within the Identify step of the login journey. It shows the flow sequence from Local identity to External identity, then to Account linking. A lifecycle event hook labeled “After external login” is connected to the External identity step, indicating where it can be triggered in the process.

External identity within the Identify step

On the External identity screen, external login options, such as social logins or federated logins, are available to customers. External logins are configured under Identities > Enterprise login and Identities > Social login and are applied to a customer journey via Applications > Tab: Login providers.

Screenshot of the External identity screen in the login journey. It prompts the user to enter their password for the displayed email address and includes a "Keep me logged in" checkbox. Below the password field and primary Continue button, there are options to sign in using external identity providers: Facebook, GitHub, and Twitter. A “Back to login” link is shown at the bottom.

External identity screen with social login options