This document walks through the setup process for Salesforce SSO in Twilio Flex. You'll need access to your Salesforce instance and permissions to configure it, as well as access to the Twilio Console.
After you set up your Single-Sign On configuration, the Twilio Console SSO page will provide your Login Link.
You'll start by creating a certificate. You'll need to share this with Twilio later.
Make sure that the Identity Provider is enabled in Salesforce.
Let's point Salesforce to the Flex side of the integration.
https\://flex.twilio.com/agent-desktop
.
Set Entity Id to the appropriate value for your SSO configuration type:
urn:flex:JQxxxx
ACxxx
with your
Twilio Account SID
.
https://iam.twilio.com/v1/Accounts/ACxxxx/saml2/metadata
Set ACS URL to the appropriate value for your SSO configuration type:
https://login.flex.us1.twilio.com/login/callback?connection=JQxxxx
ACxxx
with your
Twilio Account SID
.
https://iam.twilio.com/v1/Accounts/ACxxxx/saml2
urn:oasis:names:tc:SAML:1.1:nameid-format:unspecified
.
https\://yourdomain.my.salesforce.com/
Add the two custom attributes:
Key | Value |
---|---|
full_name | $User.FirstName + " " + $User.LastName |
roles | "agent" (must be in quotes) |
This will grant all users agent permissions in Flex. If you need to add supervisor
or admin
permissions, edit the "roles" custom attributes in the App Manager and include the roles in a comma separated value format. e.g: "agent, supervisor, admin" will grant the users the agent
, supervisor
, and admin
role in Flex.
You can create a Salesforce user that will then be able to be used to login to Twilio Flex using SSO.
Fill in the required values:
Salesforce users that are assigned to specific Profiles must have profile access to your Twilio Flex app. In Create a Salesforce User, we created a user and assigned the Standard User profile. Profiles that do not have access will not be able to complete SSO with Flex.
Almost done! Now, you need to configure the Twilio side of the integration.
SalesforceSSO
.
https://<your-salesforce-subdomain>.salesforce.com/
.
https://<your-salesforce-subdomain>.salesforce.com/idp/endpoint/HttpRedirect
.
https://<your-salesforce-subdomain>.salesforce.com/idp/endpoint/HttpRedirect
.
To test your Salesforce integration with Twilio Flex, enter the auto-generated login link in your address bar. You can find it in the Flex Single Sign-On settings.
You will be redirected to Salesforce and will be required to login with your Salesforce credentials. Once you successfully authenticate using your Salesforce user, you should be redirected to Twilio Flex and have completed Single Sign-On with Salesforce!