Genesys Cloud - Main

Hi team! I need some help with Authorized organizations and roles.

My customer wants to give access to his organization through "Authorized Organizations" and "Cloned users/Groups". The thing here is that he doesn't want to give complete divisions access but only roles with selected ones.

I'm investigating this and for example in the "users" tab we don't have Divisions selection:

And is really strange the "groups" tab. It has a format that I am not understanding because you have to configure the group in the organization who is going to access yours:

So I went to my org and created a group and I added it to the customer´s one:

But I cannot choose the division neither in the groups tab.

Can someone help me about the divisions in Authorized Orgs? 

Thanks! 

Abril 

#System/PlatformAdministration

------------------------------
Abril Churin
Support Engineer II
------------------------------

Hi Abril,

I believe when you create a pair under Authorized Organizations, there is no option to specify divisions directly.

Instead, you can create a group in the User Groups section and assign the required roles and divisions to that group. Once the group is configured with the appropriate permissions, you can create the Authorized Organization pair using that group and then verify that users only receive access to the divisions and roles assigned to the group.

I would recommend testing with a sample user to confirm that the access is limited to the specified divisions before rolling it out more broadly.

Hope this helps!

------------------------------
Muhammed Shibil
Senior Software Engineer
Feebak : The Voice of Customer
------------------------------

Hi! First of all, thanks for answer!

I have a comment about the suggest. 

I tried this option but doesn't solve the issue. Why? Because you create a group in your ORG and assign roles and Divisions to it, that's correct but your own Divisions are not the same of the customer one's. 

For example you have the next divisions: Home, PROD, QAS and you create your group on the basis of those ones. But the customer has the nex ones: Home, CAU, QAS_PROD. They are not the same between orgs, there will be no relation to apply this on the customer org.

I hope my explanation was easy to understand.

Greetings! Abril 

------------------------------
Abril Churin
Support Engineer II
------------------------------

Original Message:
Sent: 06-04-2026 14:11
From: Muhammed Shibil
Subject: Authorized ORG - Divisions

Hi Abril,

I believe when you create a pair under Authorized Organizations, there is no option to specify divisions directly.

Instead, you can create a group in the User Groups section and assign the required roles and divisions to that group. Once the group is configured with the appropriate permissions, you can create the Authorized Organization pair using that group and then verify that users only receive access to the divisions and roles assigned to the group.

I would recommend testing with a sample user to confirm that the access is limited to the specified divisions before rolling it out more broadly.

Hope this helps!

------------------------------
Muhammed Shibil
Senior Software Engineer
Feebak : The Voice of Customer
------------------------------

Hi @Abril Churin,

Based on the current Resource Center documentation, this behavior is expected.

For Authorized Organizations, when you authorize external users or groups and assign roles to them, Genesys Cloud grants access according to the assigned roles across the divisions available to that role. In the Authorized Organizations screen, you are not assigning the role the same way you do for a regular local user, where you can select specific divisions.

That is why you do not see a division selector in the Users or Groups tab.

For groups, the group must exist in the organization that is requesting/accessing the customer org. The customer org then authorizes that group and assigns the roles. All members of that external group receive the same access granted through that authorization.

If the customer needs more granular division control, the better option is to use cloned users. Once the authorized user is cloned, the trusting organization can manage that cloned user like a regular user in the org, including role/division assignment. Just keep in mind that cloned users have limits and are mainly intended for testing/troubleshooting scenarios.

Docs:
https://help.mypurecloud.com/articles/roles-permissions-for-authorized-users/
https://help.mypurecloud.com/articles/clone-a-user-in-another-organization/
https://help.mypurecloud.com/announcements/division-specific-role-assignments/

------------------------------
Arthur Pereira Reinoldes
------------------------------