Revision as of 12:02, May 28, 2019 by Djudge (talk | contribs)
Jump to: navigation, search

Enable Single Sign-On

Single Sign-On (SSO) identity authentication enables your users to securely access multiple Genesys applications with a single credential.

After entering their username in the application login screen, users are taken to your company's authentication provider where they will enter their username and password. After that, they will not have to log in again until your authentication expires which is typically every eight hours. For a list of PureEngage Cloud applications supporting SSO, see Single Sign-On.

You can enable Single Sign-On for your environments in the SAML section of Agent Setup under Single Sign-On. Security Assertion Markup Language (SAML) is an open standard for exchanging authentication and authorization data between parties, in particular, between an identity provider and a service provider.

In the SAML section, the regions in which your contact centers are located are listed in a table. For each region, this table includes your Base URL, which you can edit; the SAML status (ON, OFF, PENDING); and the Actions you can take with each region.

The Actions include:

  • Upload IDP-Metadata enables you to upload your metadata;
  • Download SP-Metadata enables you to download SP metadata for your use. This is available after your IDP metadata has been uploaded;
  • Clear IDP-Metadata enables you to clear previously uploaded metadata in order to upload new metadata;
  • Reload SAML setting forces a refresh of the metadata automatically, avoiding an approximate five-minute wait time.


1

To enable SSO for a region or regions in your environment, begin by uploading the associated IDP metadata files using the Upload IDP-Metadata action button for the intended regions.

Once the files are uploaded, identify the Access Groups you want to enable. Select one or more Access Groups from the groups in your tenant environment and provide the NameID of your IDP file in the SAML Name Identifier field.

If you are using an external identification provider, select Use External User ID.

Complete the configuration by turning on the Enable SAML toggle and clicking Save.

Once your configuration is saved and the status is ON, use the Download SP-Metadata button to download the .xml file. Upload the SP-metadata file to your IDP, following the instructions for your IDP implementation.

Comments or questions about this documentation? Contact us for support!