Skip to main content

Setup Google as Identity Provider

To login using your Google credentials you need to do setup in Google Workspace. You need to be admin of Google Workspace to perform this setup. This setup will let Google know it should enable access to Salted CX and will enable you to assign permissions to individual users.

The setup has the following parts:

  • Add Permissions User Attribute. This is done only once per account and adds an attribute that you can use to store permissions that are passed to Salted CX during sign on.
  • Create SAML Application. This makes Google Workspace aware your Salted CX account exists and that it should enable sign in to it using Google credentials.
  • Set Permissions per User. — These steps give individual users permissions to access selected Salted CX features and you need to give these permissions to every user who should have access to Salted CX.
note

Until you give individual users permissions they cannot access Salted CX. So you can do all the setup without concern that users would get unexpected access to any features or data.

Add Permissions Attribute

You need to add attribute that you can use for storing the permissions the user has within Salted CX. This is done only once per account. You need to to be super admin in your Google organization:

  1. Sign in to your Google Admin console

  2. Go to Menu, then Directory, then Users

  3. Press More Options

  4. Press Manage Custom Attributes

  5. Press Add Custom Attribute

  6. Into Category field fill value Salted CX

  7. Into Description field fill Permissions in Salted CX, or any other value that describes well for you the use of the attribute

  8. Into Name field fill permissions value.

    note

    The Name is not required to be permissions . We use it for simplicity of this tutorial. You can name the attribute any way you want. For example if you have multiple Salted CX accounts you can have multiple different different attributes with different sets of permissions. Then you can use the name to clearly show to what account the permissions apply. You setup later which permissions are used for the which Salted CX account.

  9. In Info type leave the option set to Text

  10. In Visibility leave the option set to Visible to user and admin

  11. In Number of values leave the option set to Single value

  12. Click Add

Now you an attribute that can contain user’s permissions for Salted CX. You will need this attribute to add Salted CX as an application to Google Workspace.

More information on custom attributes in Google

Create a SAML Application

You need to be logged as an admin in Google Workspace:

  1. In the left navigation press Apps, then Web and mobile apps

  2. Press Add app

  3. Press App custom SAML app

  4. Type in App name. You can name the app any way you want, for example Salted CX

  5. Press Continue

  6. Press Download Metadata and store the file at your computer

  7. Press Continue TODO

  8. Paste SSO URL from Salted CX to ACX URL

  9. Paste Audience URI to Entity ID

  10. Press Continue

  11. Choose First name in Google Directory attributes and type given_name to App attributes

  12. Choose Last name in Google Directory attributes and type family_name to App attributes

  13. Choose Primary email in Google Directory attributes and type email to App attributes

  14. Choose permissions (or other attribute that you have created) in Google Directory attributes and type cxsaltedpermissions to App attributes

  15. Press Finish

Enable Salted CX Application for All Users

  1. Press User access pane in the application

  2. Choose ON for everyone

  3. Press Save

note

Currently users cannot open Salted CX from within the Google Workspace app menu. Your users have to go to the Salted CX domain and will be redirected to Google for sign in. This is a current limitation of our single sign on implementation.

Set Permissions per User

You need Update user privilege in Google to set user permissions. This actions are necessary for every user you want to access Salted CX:

  1. Sign in to your Google Admin console
  2. Go to Menu, then Directory, then Users
  3. Find the user you want to set permissions for
  4. Click the user’s name
  5. Click User information
  6. Click the attribute named permissions or other name you have used during setup
  7. Set the value of the attribute to the permissions JSON object
  8. Click Save

More information on setting custom attributes in Google

Next Steps

You might consider making the Setting Permissions per User part of an on-boarding process for new people in your contact center organization. You can use Google API to automate the process.