Genesys Cloud - Main

Hi All,

We need to restrict the user's to use Genesys Cloud via web or Desktop app only from our organization system/ desktops.

For other cloud based application we are using X.509 Certificate which would be saved on user desktop and which will be exchanged as a part of SSO along with the meta data details like SSO certificate and entity ID.


So is there a way we can install the certificate on Genesys and send it as part of SSO login. This simply means we need to pass on 2 certificates during Single Sign-on 1. SSO certificate 2. Device Authentication certificate.

Is there any best way to achieve this. Appreciate any recommendation's.
#Security

------------------------------
Ameya Phadtare
Cognizant Technology Solutions India
------------------------------

A new feature came out a couple of weeks ago to allow for multiple certs on an SSO - more for when you are moving between services or servers, but it might work for this as well.  April 21, 2021 - Genesys Cloud Resource Center (mypurecloud.com)

------------------------------
Robert Wakefield-Carl
Avtex Solutions, LLC
Contact Center Innovation Architect
robertwc@avtex.com
https://www.Avtex.com
https://RobertWC.Blogspot.com
------------------------------

Original Message:
Sent: 05-20-2021 12:02
From: Ameya Phadtare
Subject: Genesys security restriction

Hi All,

We need to restrict the user's to use Genesys Cloud via web or Desktop app only from our organization system/ desktops.

For other cloud based application we are using X.509 Certificate which would be saved on user desktop and which will be exchanged as a part of SSO along with the meta data details like SSO certificate and entity ID.


So is there a way we can install the certificate on Genesys and send it as part of SSO login. This simply means we need to pass on 2 certificates during Single Sign-on 1. SSO certificate 2. Device Authentication certificate.

Is there any best way to achieve this. Appreciate any recommendation's.
#Security

------------------------------
Ameya Phadtare
Cognizant Technology Solutions India
------------------------------

Hi,
You can use Allow IP Addresses under Organisation Settings to control where people can access your Org from.


------------------------------
Craig Stevenson
Genesys - Employees
------------------------------

Original Message:
Sent: 05-20-2021 12:02
From: Ameya Phadtare
Subject: Genesys security restriction

Hi All,

We need to restrict the user's to use Genesys Cloud via web or Desktop app only from our organization system/ desktops.

For other cloud based application we are using X.509 Certificate which would be saved on user desktop and which will be exchanged as a part of SSO along with the meta data details like SSO certificate and entity ID.


So is there a way we can install the certificate on Genesys and send it as part of SSO login. This simply means we need to pass on 2 certificates during Single Sign-on 1. SSO certificate 2. Device Authentication certificate.

Is there any best way to achieve this. Appreciate any recommendation's.
#Security

------------------------------
Ameya Phadtare
Cognizant Technology Solutions India
------------------------------

Hi Craig,

Thanks for the suggestion.

We thought of going this route , but now when agents are working remotely from home. This solution wont work as the user are having dynamic IP's.
Thus wanted to go with a solution of Certificate validation which would be installed only on organization assets.



------------------------------
Ameya Phadtare
Cognizant Technology Solutions India
------------------------------

Original Message:
Sent: 05-24-2021 07:15
From: Craig Stevenson
Subject: Genesys security restriction

Hi,
You can use Allow IP Addresses under Organisation Settings to control where people can access your Org from.


------------------------------
Craig Stevenson
Genesys - Employees

Original Message:
Sent: 05-20-2021 12:02
From: Ameya Phadtare
Subject: Genesys security restriction

Hi All,

We need to restrict the user's to use Genesys Cloud via web or Desktop app only from our organization system/ desktops.

For other cloud based application we are using X.509 Certificate which would be saved on user desktop and which will be exchanged as a part of SSO along with the meta data details like SSO certificate and entity ID.


So is there a way we can install the certificate on Genesys and send it as part of SSO login. This simply means we need to pass on 2 certificates during Single Sign-on 1. SSO certificate 2. Device Authentication certificate.

Is there any best way to achieve this. Appreciate any recommendation's.
#Security

------------------------------
Ameya Phadtare
Cognizant Technology Solutions India
------------------------------