There are no login requirements for employees to answer surveys - with the exception of surveys being answered using Kiosk mode.

Log in requirements are only in place for those employees who have been granted access to log into Peakon to view survey data. This group of employees, typically managers, will need to log in using their company email address, at which point they will also be asked to create a password.  

Alternatively, as an administrator of your company's Peakon account, you can enable single sign on for this group of employees to streamline their login experience on Peakon.

Enable single sign-on in Peakon

As an administrator of your company's Peakon account, you can enable single sign-on by first selecting the "Administration" option in the left menu followed by "Integrations". Select the Single Sign-On option and click the yellow "Enable" button and you’ll be taken to the page you see in the screenshot below.

On this page you will later input your SSO login URL and certificate provided by ADFS. Here you will also find the Entity ID for Peakon, which you will use when configuring ADFS a bit later in this guide.

1. Add a new Relying Party Trust

In your ADFS configuration, add a new Relying Party Trust:

2. Enter the Entity ID from the Peakon SSO settings page as the metadata URL, and all settings should be configured automatically.

3. Note that the Relying Party Trust has been created, you need to add two new claim rules to it:

4. To add the first rule, click "Add Rule..." to add a "Send LDAP Attributes as Claims" rule:

5. To add the second rule, click "Add Rule..." to add a "Transform an Incoming Claim" rule:

6. You should now have two rules defined:

7. Returning to the integration page on Peakon and enter the SSO login URL of your ADFS instance which can be looked up in the ADFS configuration. If needed, you can also add the logout URL although this is not required.

8. Select the name ID which will either be "Name" or "Employee Number", depending on which attribute you would like to match against in Peakon when employees login.

9. Please upload the certificate (PEM format) used to sign the SAML requests. Once the certificate is uploaded the text field will be automatically populated with a unique identifier.

Test that single sign-on is working

Now that you have configured ADFS to integrate with Peakon, you are ready to test it:

  1. Go to app.peakon.com/login and enter your ADFS email address.
  2. After entering the email, Peakon will detect that this email supports single sign-on, and clicking the "Sign in" button will redirect you to internal ADFS sign in page, before redirecting you back to Peakon and logging you in.
  3. If you prefer to sign into Peakon using your existing password, you can skip the single sign-on step by clicking "Sign in using password" after entering your email.
  4. Optionally, go directly to (or bookmark) app.peakon.com/saml/{your email domain}, which will start the single sign-on flow directly without visiting the Peakon login page first. 

Article: Introduction to Using Single Sign-on

Did this answer your question?