Dashboard single sign-on using SAML 2.0

No login is required to complete Peakon surveys, however managers must login to access their engagement analytics dashboards.

With single sign-on, managers with dashboard access will be able to login with their existing company identity, and will not need to keep a separate set of login credentials for Peakon. This will also allow them to directly access Peakon from your company's central app portal. Peakon integrates seamlessly with any external system capable of acting as a SAML 2.0 identity provider.

About SAML

SAML (Security Assertion Markup Language) is a popular open standard for authentication and authorisation between two parties. These parties are commonly referred to as an identity provider, such as Microsoft Azure Active Directory, and a service provider application such as Peakon. The user sign-in flow can be initiated both from the service provider website as well as directly from an identity provider’s app portal page.

Configuration

If your existing central identity management system supports the SAML protocol it can be configured as the single sign-on for Peakon. Popular hosted services with SAML support include G Suite (Google Apps), Microsoft Azure Active Directory, Okta, OneLogin and more.

IT administrators can configure single sign-on by first clicking on Administration in the bottom left corner of the Peakon dashboard, choosing Integrations, and then selecting Single Sign-On from the list of integrations. Click the yellow Enable button and you’ll be taken to the page you see in the screenshot above.

On this page you can input your SSO login URL (and optionally SSO logout URL) and certificate. You can also retrieve the entity ID and reply URL (ACS) for Peakon. On OneLogin the entity ID is called "Recipient".

If your company has an existing G Suite (Google Apps) account, you can configure Single Sign-On by following G Suite guide.

If your company has an existing Microsoft ADFS system, you can configure Single Sign-On by following our ADFS guide.

If your company has an existing MS Azure AD account, you can configure Single Sign-On by following our Azure AD guide.

If your company uses OneLogin, you can configure Single Sign-On by following our OneLogin guide.

If your company uses Okta, you can configure Single Sign-On by following out Okta guide.

Article: Set up single sign-on with G Suite (Google Apps)
Article: Set up single sign-on with Microsoft ADFS
Article: Set up single sign-on with MS Azure AD
Article: Set up single sign-on with OneLogin
Article: Set up single sign-on with Okta

Did this answer your question?