This guide explains how to set up Single Sign-On (SSO) with LivePerson's Conversational Cloud for your agents using Security Assertion Markup Language (SAML). With SAML SSO, agents can log in to Conversational Cloud with their existing credentials from a central Identity Provider (IDP), eliminating the need for separate LivePerson logins.
Requirements:
- Check Compatibility: Ensure your Conversational Cloud account supports SAML SSO. This might require contacting LivePerson support.
- Gather Information: Collect the following details:
- IDP Login Information: URL, any specific configuration details for a Service Provider (SP) application.
- Conversational Cloud Admin Access: You'll need admin privileges to configure SAML SSO.
If your Conversational Cloud account isn't already on the Advanced Login System, you'll need to migrate it. Contact LivePerson support for assistance with this migration.
2. Configure Your IDP:
To enable SSO for your agents, we'll first need to configure your brands Identity Provider (IDP). This involves logging into your IDP's admin console and creating a new SP-Initiated application specifically for LivePerson's Conversational Cloud.
3. Configure a Conversational Cloud account to Authenticate its Agents using a SAML SP-Initiated Flow
Log in to your Conversational Cloud account with administrator privileges. Navigate to the section for managing SSO configurations (consult LivePerson's documentation for the specific location). Choose the option to set up a new SAML Identity Provider.
Log into Conversation Cloud, the home page appears.
Click Manage > Management Console. The Management Console page appears.
You can also use the search function to access the Account Access Control setting.
Click Admin & Secure. The Admin & Secure page appears.
Click Account Access Control. Select the Single Sign-ON (SSO) Settings tab.
Click + Add Connection. The Choose Connection Type modal appears.
Select SAML from the dropdown menu and click Next. The Create SAML Connection modal appears.
Provide the following information:
- Connection name: Enter a unique connection name this name will be used to represent this SAML connection.
- Sign in URL: Enter your IDP's SAML Sign In URL
- Upload Certificate: Upload your IDP’s SAML Signing Certificate (.pem or .cer files)
Refer to the configuring IDP section to learn where you need to be sourcing Sign in URL and IDP SAML certificate.
Once done, click Create connection.
Your connection appears in the Identity Providers gallery. Note, this is where you can manage it in the future to enable/disable, or update the certificate.
Accessing Conversational Cloud with SSO
Once configured, your users can access Conversational Cloud via two methods:
- Direct Login: Users can go to , enter their account number, and be automatically redirected to Conversational Cloud (or their IDP for login).
- Brand's IDP Portal: Users can access the brand's SSO portal, click the Conversational Cloud application, and be seamlessly redirected.
