FAQs: Single sign-on

Yes. To use multiple instances of the same IdP within the same Genesys Cloud org, you need to use a different Relying Issuer URI for each single sign-on integration. Having a unique Relying Issuer URI for each instance of the integration allows the IdP to distinguish which integration initiated the request.

For more information, see Add multiple single sign-on providers to Genesys Cloud.

Genesys Cloud supports third-party identity providers for single sign-on integrations. For more information about configuring the user attributes for your identity provider, see Configure single sign-on identity provider without email address. 

Yes, it is possible to log in with either the user ID and password or SSO, unless you configure Genesys Cloud to authenticate with SSO only. For more information, see Configure Genesys Cloud to authenticate with SSO only.

This type of issue usually indicates a certificate problem. Ensure that the signing certificate published by the single sign-on provider is correctly registered with Genesys Cloud.

If your users are automatically getting logged back in, you need to configure the Single Logout feature.

Yes, the Single Sign-on feature enables Genesys Cloud customers to integrate with most identity providers that support SAML 2.0.

Yes. To use a single identity provider with multiple orgs, repeat the steps you followed when configuring your first single sign-on integration. As you do, make sure that there is a unique Relying Issuer URI for each one. This allows the identity provider to distinguish which organization initiated the request.

For more information, see Add multiple single sign-on providers to Genesys Cloud.