Configuring SAML SSO for Peakon

These steps will guide you through setting up the single sign-on functionality between ADSelfService Plus and peakon.

Prerequisite

  1. Login to ADSelfService Plus as an administrator.
  2. Navigate to Configuration > Self-Service > Password Sync/Single Sign On > Add Application, and select Peakon from the applications displayed.

    3. Note: You can also find Peakon application that you need from the search bar located in the left pane or the alphabet wise navigation option in the right pane.

  3. In the Peakon configuration page, click IdP details in the top-right corner of the screen.
    4. Screenshot
  4. In the pop-up that appears, copy the Login URL, Logout URL, and download the SSO certificate by clicking on Download X.509 Certificate.
    5. Screenshot

Peakon (Service Provider) configuration steps

  1. Login to Peakon with an administrator’s credentials.
  2. In the left pane, click Administration.
    3. Screenshot
  3. Navigate to Company > Integrations > Single Sign-On using SAML.
    4. Screenshot
  4. Locate the Entity ID or Reply URL (ACS) values. Make note of your Company ID that is a portion of those values (refer the screenshot below).
  5. Enter the Login URL and Logout URL values copied in step 4 of Prerequisite in the SSO Login URL and SSO Logout URL fields respectively.
  6. Click Choose file and upload the X.509 certificate file downloaded in step 4 of Prerequisite.
  7. Click Save.
    8. Screenshot

ADSelfService Plus (Identity Provider) configuration steps

  1. Now, switch to ADSelfService Plus’ Peakon configuration page.
  2. Enter the Application Name and Description.
  3. Enter the Domain name of your Peakon account. For example, if you use johndoe@thinktodaytech.com to log in to Peakon, then thinktodaytech.com is the domain name.
  4. In the Assign Policies field, select the policies for which SSO need to be enabled.

    5. Note: ADSelfService Plus allows you to create OU and group-based policies for your AD domains. To create a policy, go to Configuration > Self-Service > Policy Configuration > Add New Policy.

  5. Select the SAML tab and check Enable Single Sign-On.
  6. Enter the Company ID copied in step 4 of Peakon (Service Provider) configuration steps.
  7. In the Name ID Format field, choose the format for the user login attribute value specific to the application.

    8. Note: Use Unspecified as the default option if you are unsure about the format of the login attribute value used by the application.

  8. Click Add Application.
    9. Screenshot

Your users should now be able to sign in to Peakon through ADSelfService Plus.

Note: For Peakon, single sign-on is supported for SP and IDP initiated flow.

Go to Top

Copyright © 2024, ZOHO Corp. All Rights Reserved.