SSO (Single Sign-On) ensures that only identified and authorized users can access and respond to surveys, providing control over access and data privacy.
SSO (Single Sign-On) is a feature that allows authentication for accessing your company's internal surveys via your organization's SSO solution. It enables the personalization of surveys by displaying questions specific to each employee using the information available through SSO.
Connection mode
SAML
Required Technical Documents
To configure SSO, you will need the following items:
- The FedId metadata file
- An example FedId authentication token
Required Attributes
No attributes are required by default. Some attributes may, however, be requested upon specific request, depending on your needs.
Choices to Make
Authentication Mode
You can choose:
- SSO only: users can only log in via SSO.
- Mixed mode: users can log in either via SSO or their standard Skeepers account.
User Creation
Skeepers offers several options for creating accounts:
- Manual: an administrator creates users from the Skeepers console.
- Automatic: users are automatically created upon their first SSO login.
- Mixed: combine both methods according to your needs.
User Rights Management
You can choose how user rights and roles are assigned:
- From Skeepers: roles are managed directly in the Skeepers console (check the available roles).
-
From your system: roles are transmitted during login and automatically associated with Skeepers roles.
This method is not recommended if users are created manually.
Updating User Information
Define which information should be updated at each SSO login so that data remains consistent with your authentication system.
Using SSO for Private Surveys
To make a survey private with SSO authentication:
- Go to the survey deployment settings.
- Set the "Visibility" field to "Private".
- A "Identity Federation" field will appear, containing by default the identity federation server(s) configured for your Skeepers account.