People Apps

From May 2021, People® will be moving over to Access Identity; this will involve some steps that need to be performed on your side to ensure that your users have a smooth transition over and can continue using Single Sign-On (<i>SSO</i>).

As all People® users are now customers of the Access Group, you too get to benefit from the security policies that we refer to as Access Identity. This includes:

a more secure authentication and streamlined login process

allowing users to access multiple applications with one set of login credentials

enabling users to keep their employees and their data safe as part of our ISO27001 certification.

- a more secure authentication and streamlined login process
- allowing users to access multiple applications with one set of login credentials
- enabling users to keep their employees and their data safe as part of our ISO27001 certification.

Access Identity SSO is linked directly to a domain rather than to a user. This is great news as once a domain is set up for SSO, the SSO will cover all users with that email domain, for most customers this means no extra SSO setup when users are added.

<br>There are also the following benefits:

<a href="https://accessgroup.my.salesforce.com/sfc/p/58000000Z4gm/a/4I000001Qvci/q0yXB33pwFWglDvAlQQDbCdqNHka8FIPc9ktpPg8go4" target="_blank" rel="nofollow noopener noreferrer">Security Policies</a> – govern your whole domain and the users in the organisation through a security policy. Control users' session lengths, authentication for all users in the domain, such as password length, CAPTCHA and failed sign in attempts.

Social Sign-in – allowing users to use existing social media accounts such as Google, Microsoft or LinkedIn.

SSO –  single sign-on with OpenID Connect supported services through <a href="https://accessgroup.my.salesforce.com/sfc/p/58000000Z4gm/a/4I000001QvPK/6NPbF5KCc2iMi9R5BJgGeF55FzMUTHmf2CUC5MKbFRI" target="_blank" rel="nofollow noopener noreferrer">Federation</a>.

The option to enable SSO and <a href="http://help.peoplehr.com/en/articles/5158785-intro-to-access-identity-2fa" target="_blank">2FA</a> - this will allow the users to login via SSO and then 2FA.

- <a href="https://accessgroup.my.salesforce.com/sfc/p/58000000Z4gm/a/4I000001Qvci/q0yXB33pwFWglDvAlQQDbCdqNHka8FIPc9ktpPg8go4" target="_blank" rel="nofollow noopener noreferrer">Security Policies</a> – govern your whole domain and the users in the organisation through a security policy. Control users' session lengths, authentication for all users in the domain, such as password length, CAPTCHA and failed sign in attempts.
- Social Sign-in – allowing users to use existing social media accounts such as Google, Microsoft or LinkedIn.
- SSO –  single sign-on with OpenID Connect supported services through <a href="https://accessgroup.my.salesforce.com/sfc/p/58000000Z4gm/a/4I000001QvPK/6NPbF5KCc2iMi9R5BJgGeF55FzMUTHmf2CUC5MKbFRI" target="_blank" rel="nofollow noopener noreferrer">Federation</a>.
- The option to enable SSO and <a href="http://help.peoplehr.com/en/articles/5158785-intro-to-access-identity-2fa" target="_blank">2FA</a> - this will allow the users to login via SSO and then 2FA.

Useful links:<br><a href="http://help.peoplehr.com/en/articles/5165432-access-identity-sso" target="_blank">Set up Access Identity SSO for the first time.</a>

<a href="http://help.peoplehr.com/en/articles/5183562-sso-migration-steps" target="_blank">SSO enabled in People® moving to Access Identity.</a>

<a href="http://help.peoplehr.com/en/articles/5158785-intro-to-access-identity-2fa" target="_blank">2FA introduction article</a>

Any questions please contact: <a href="mailto:customerservices@peoplehr.com" target="_blank" rel="nofollow noopener noreferrer">customerservices@peoplehr.com</a>