Updated 30 March 2026
Auth0 Free Plan Limits
7,500 MAU, 2 social providers, basic MFA, no custom domains, no Organizations. Auth0's free tier is genuinely useful for launching real products, but the limitations are specific and worth understanding before you start building.
The Free Plan in One Sentence
You can build a fully functional consumer application with email/password login, 2 social providers (e.g., Google + GitHub), basic MFA, and passwordless email authentication for up to 7,500 monthly active users. Permanently free. No credit card. No trial period.
What the Free Plan Includes
Everything you get without paying anything.
Monthly Active Users
Up to 7,500 MAU. Any user who authenticates at least once in a 30-day period counts. Inactive accounts do not count toward the limit.
Email/password authentication
Full email and password sign-up and login. Password policies (minimum length, complexity requirements) are configurable. Password reset flows included.
2 social identity providers
Choose 2 social login providers from Google, Facebook, Apple, GitHub, LinkedIn, Microsoft, Twitter, and others. You must create your own OAuth apps with each provider.
Basic MFA (TOTP)
Multi-factor authentication using authenticator apps (Google Authenticator, Authy, 1Password). Time-based One-Time Password standard. Sufficient for most security requirements.
Auth0 Actions
Custom Node.js code that runs during authentication flows. Post-login, pre-registration, post-registration, and other triggers. Extremely powerful for custom logic.
Universal Login
Auth0-hosted login page with basic customization (logo, colors, text). Handles all authentication flows (login, signup, password reset, MFA). Responsive by default.
1,000 M2M tokens/month
Machine-to-machine tokens for service-to-service authentication. Useful for backend APIs, cron jobs, and microservice communication.
User Management dashboard
View, search, create, update, and delete users through the Auth0 dashboard. Basic user metadata storage. Activity logs with 2-day retention.
Passwordless (email)
Magic link and email OTP passwordless authentication. Users receive a link or code via email to log in without a password.
Management API
Full access to Auth0's Management API for programmatic user management, application configuration, and tenant administration.
What the Free Plan Does Not Include
Every limitation and which paid plan removes it.
Custom domains
EssentialsLogin pages use your-app.auth0.com. Users see Auth0 branding in the URL during login. Available from Essentials ($35/mo).
More than 2 social providers
EssentialsLimited to 2 social identity providers. If you need Google, GitHub, AND Apple login, you need at least Essentials (5 providers) or Professional (unlimited).
Organizations (multi-tenant B2B)
ProfessionalThe Organizations feature for managing B2B customers with separate user pools, invitation flows, and per-organization settings is not available. Requires Professional ($240/mo).
Enterprise connections (SAML, OIDC)
ProfessionalCannot connect to customer identity providers via SAML or OIDC. If an enterprise customer demands SSO via their Okta or Azure AD, you must upgrade to Professional.
Advanced MFA (WebAuthn, push, SMS)
ProfessionalOnly TOTP-based MFA is available. Hardware security keys (WebAuthn/FIDO2), push notifications, and SMS-based MFA codes require the Professional plan.
Advanced attack protection
ProfessionalBreached password detection, bot detection, and suspicious IP throttling are not available on the free plan. Basic brute-force protection is included.
Custom database connections
EssentialsCannot connect to an existing user database for gradual migration. Users must be imported via the Management API or start fresh.
Extended log retention
ProfessionalActivity logs are retained for 2 days only. Essentials provides 2 days, Professional provides 10 days, Enterprise provides 30+ days.
Standard or priority support
EssentialsFree plan users have access to community forums and documentation only. No email support, no SLA, no guaranteed response time.
Role-based access control (extended)
ProfessionalFree plan allows up to 50 roles. Essentials allows 50 roles. Professional allows 1,000 roles with more granular permissions.
What You Can Realistically Build on Free
Consumer SaaS (B2C)
A consumer web or mobile app with Google and email/password login, basic MFA, and up to 7,500 monthly users. Think: productivity tools, content platforms, social apps. The lack of custom domains is the main limitation for polished consumer products.
Developer Tools
Developer-focused applications where GitHub login is expected and 7,500 MAU provides plenty of room. Auth0 Actions let you run custom post-login logic (syncing user data, provisioning resources). Developers do not care about auth0.com in the login URL.
Internal Tools
Company internal dashboards, admin panels, and tools where the number of users is small and enterprise features are unnecessary. 7,500 MAU is more than enough for most internal use cases. The free tier effectively replaces a basic employee login system.
MVP / Prototype
Early-stage products where you need authentication that works but are not yet sure about your go-to-market. The free plan lets you validate your product with real users without committing to a recurring auth cost. Upgrade when you have traction.
When You Will Need to Upgrade
The specific scenarios that push you from free to paid.
Custom domain requirement
Essentials ($35/mo)Your marketing or product team wants login pages on login.yourapp.com instead of yourapp.auth0.com. This is the most common reason consumer apps upgrade to Essentials ($35/mo). Enterprise customers may also require custom domains for security policies.
Third social login provider
Essentials ($35/mo)You want Google, GitHub, and Apple login but the free plan limits you to 2 social providers. Essentials allows 5 and Professional allows unlimited. This is a common upgrade trigger for consumer apps targeting multiple user demographics.
First enterprise customer demands SAML SSO
Professional ($240/mo)An enterprise customer's IT department requires SAML SSO for all SaaS vendors. Enterprise connections (SAML, OIDC) are only available on Professional. This is the most common reason B2B startups jump directly from Free to Professional.
Need Organizations for B2B multi-tenant
Professional ($240/mo)You are building a B2B SaaS and need to manage multiple customer organizations with separate user pools, team invitations, and per-organization settings. Organizations is a Professional-only feature.
Exceeding 7,500 MAU
Essentials ($35/mo)Your application has grown beyond 7,500 monthly active users. Auth0 will notify you and require an upgrade. Essentials starts at $35/mo for 500 MAU with ~$0.07 per additional MAU. At 7,500 MAU on Essentials, you would pay approximately $525/mo.
Advanced security requirements
Professional ($240/mo)Your security team or compliance requirements demand breached password detection, bot protection, or suspicious IP throttling. These advanced attack protection features require the Professional plan.
Free Tier Comparison
How Auth0's free plan stacks up against competitors.
| Feature | Auth0 Free | Clerk Free | Firebase Auth |
|---|---|---|---|
| Free MAU limit | 7,500 | 10,000 | 50,000 |
| Social providers | 2 | Unlimited | All major providers |
| Custom domains | No | No (Pro plan) | N/A (your domain) |
| MFA | TOTP only | TOTP, SMS, backup codes | Phone, TOTP |
| Pre-built UI | Universal Login (hosted) | React components | FirebaseUI |
| Custom logic | Actions (Node.js) | Webhooks | Cloud Functions |
| SAML/OIDC SSO | No (Professional) | No (Enterprise) | No (Identity Platform) |
| Organizations | No (Professional) | No (Pro) | No |
| M2M tokens | 1,000/month | No | N/A |
| API/SDK quality | Excellent (30+ SDKs) | Excellent (React-focused) | Good (Google ecosystem) |
Firebase Auth offers the most generous free tier (50,000 MAU) but fewer enterprise features. Clerk offers unlimited social providers on free but fewer MAU than Firebase. Auth0 has the fewest free MAU but the most powerful Actions pipeline and broadest SDK support.