Use the Single Sign-on page and add Genesys Cloud to the services that organization members can access with their single sign-on (SSO) credentials.

Field Action
Certificate Add the certificate for the app created in the identity provider account.
Issuer URI  Add the URI of the identity provider.
Target URL  Add the endpoint URI (redirect, not POST). During app creation, the identity provider provides this data.
Single Logout URI Add the identity provider’s single log-out URI. The URI logs you out of the SSO provider at the same time you log out of Genesys Cloud. During app creation, the identity provider provides this data.
Single Logout Binding Select the single log-out binding method by which the SAML single log-out message is transmitted to the identity provider. If the identity provider does not specify the binding method to use, select HTTP redirect, which is the default.
Audience (Entity ID) 

For Okta, the Audience (EntityID) is the Audience URI (SP Entity ID). It is the application-defined unique identifier that is the intended audience of the SAML assertion. The Audience (EntityID) is most often the SP Entity ID of your application. Make sure that this value is the same in Genesys Cloud and Okta.

For OneLogin, make sure that the Audience (EntityID) value is the same in Genesys Cloud and OneLogin. During app creation, the identity provider provides this data. Make sure that this value is the same in Genesys Cloud and OneLogin. 

Relying Party Identifier For some SSO provider configurations, add the unique identifier for the relying party trust. You provide this value during app creation.