One SSO provider for two different organisations on the same AWS region

View Only

Back to discussions

Expand all | Collapse all

One SSO provider for two different organisations on the same AWS region

1. One SSO provider for two different organisations on the same AWS region

Like
Jeroen van der Sandt

Advocate
Posted 2 days ago

Reply Reply Privately
Hi,

we have two organisations, one for production and one sandbox for development. The production organisation has SSO through Microsoft ADFS, we would like to have the second organisation using SSO as well. I hear this is not possible as the Identifier URL needs to be unique which is not the case. The only difference seems to be the org name.

Does someone know if this is possible?

Thank you.

Jeroen

#API/Integrations
#Security

------------------------------
Jeroen van der Sandt
------------------------------
2. RE: One SSO provider for two different organisations on the same AWS region

Like
Stephan Taljaard

Partner
Posted 2 days ago

Reply Reply Privately
Hi Jeroen

I am no expert on AD side but you should be able to do this by creating a separate Relying Party Trust in ADFS for the sandbox organization. You will then use the meta data from your Genesys cloud sandbox environment.
There might be a challenge if you want to use the same email addresses on both Orgs, but should still be possible.

Have you tried testing it on your side, are you getting any errors?

Regards

Stephan

------------------------------
Stephan Taljaard
NA
------------------------------

Original Message
3. RE: One SSO provider for two different organisations on the same AWS region

Like
Jeroen van der Sandt

Advocate
Posted 2 days ago

Reply Reply Privately
Hi Stephan,

I cannot set up SSO myself in AD as this is done by another team, they told me that it was not possible do to the fact the URI needs to be unique. I'll check in with them with your suggestion.

Thanks!

Jeroen

------------------------------
Jeroen van der Sandt
------------------------------

Original Message
4. RE: One SSO provider for two different organisations on the same AWS region

Like
Stephan Taljaard

Partner
Posted 2 days ago

Reply Reply Privately
Hi Jeroen

Sure, no problem. If you don't mind, please share the feedback here once they reply. Interested to know if it will be possible.

If I may ask, the reason for having SSO in the sandbox environment, is it mainly for security reasons, or do you want it to mirror the Production environment for testing purposes? If its just for security, you can also look at just enabling "Require Multi-Factor Authentication" on the org settings.

Will leave it open here if anyone else perhaps in the community has done this before, or perhaps has some other ideas.

Regards

Stephan

------------------------------
Stephan Taljaard
NA
------------------------------

Original Message

Genesys Cloud - Main

One SSO provider for two different organisations on the same AWS region

Jeroen van der Sandt2 days ago

Stephan Taljaard2 days ago

Jeroen van der Sandt2 days ago

Stephan Taljaard2 days ago

1. One SSO provider for two different organisations on the same AWS region

2. RE: One SSO provider for two different organisations on the same AWS region

3. RE: One SSO provider for two different organisations on the same AWS region

4. RE: One SSO provider for two different organisations on the same AWS region

Related Content

Incremental updates messages / duplication of data to data warehouse

Enable communication level After Call Work

Webmessaging occupancy

Load testing an Open messaging implementation

GDPR