Dashboard single sign-on using SAML 2.0
No login is required to complete Peakon surveys, however managers must login to access their engagement analytics dashboards.
With single sign-on, managers with dashboard access will be able to login with their existing company identity, and will not need to keep a separate set of login credentials for Peakon. This will also allow them to directly access Peakon from your company's central app portal. Peakon integrates seamlessly with any external system capable of acting as a SAML 2.0 identity provider.
SAML (Security Assertion Markup Language) is a popular open standard for authentication and authorisation between two parties. These parties are commonly referred to as an identity provider, such as Microsoft Azure Active Directory, and a service provider application such as Peakon. The user sign-in flow can be initiated both from the service provider website as well as directly from an identity provider’s app portal page.
If your existing central identity management system supports the SAML protocol it can be configured as the single sign-on for Peakon. Popular hosted services with SAML support include G Suite (Google Apps), Microsoft Azure Active Directory, Okta, OneLogin and more.
IT administrators can configure single sign-on by first clicking the settings icon in the bottom left corner of the Peakon dashboard, choosing Integrations, and then selecting Single Sign-On from the list of integrations. Click the yellow Enable button and you’ll be taken to the page you see in the screenshot above.
On this page you can input your SSO login URL (and optionally SSO logout URL) and certificate. You can also retrieve the entity ID and reply URL (ACS) for Peakon. On OneLogin the entity ID is called "Recipient".
If your company has an existing G Suite (Google Apps) account, you can configure Single Sign-On by following G Suite guide.
If your company has an existing Microsoft ADFS system, you can configure Single Sign-On by following our ADFS guide.