Empuls includes a four-tier Role-Based Access Control (RBAC) system — Super Admins, General Admins, Managers, and Users — giving HR teams precise, granular control over who can view, approve, and act on recognition and rewards.
User and Role Management in Empuls
Xoxoday Empuls treats access control as a first-class admin function, not an afterthought. The built-in RBAC system lets administrators define exactly what each person can do inside the platform, from nominating peers for awards to configuring organisation-wide reward budgets. Admins can add or remove users at any time and assign each person to one of four roles: Super Admin, General Admin, Manager, or User. These roles map naturally to how HR and People teams are structured, so you do not need to create custom permission sets from scratch.What Each Role Can Do
Super Admins hold the broadest authority. They can delegate access to other admins, configure authentication methods including Single Sign-On (SSO), set up approval workflows, and manage platform-wide settings such as reward budgets and recognition programmes. General Admins handle day-to-day operations — managing user groups, running reports, moderating the recognition feed, and configuring department-level programmes without touching global settings. Managers can nominate direct reports for awards, approve peer nominations routed to them, and view team-level engagement data. Their view is scoped to their team, keeping sensitive org-wide data protected. Users participate in recognition, redeem rewards, and engage with social features. They have no access to admin consoles or budget settings.Automated Provisioning via HRIS and IAM Integrations
One of the most operationally valuable capabilities is automated user provisioning. Empuls integrates with leading HRIS platforms including Workday, SAP SuccessFactors, and Darwinbox, so when an employee joins, changes teams, or leaves, their Empuls account and role are updated automatically — no manual CSV uploads required. For organisations using identity and access management (IAM) tools, Empuls supports SCIM-based provisioning and SSO protocols such as SAML 2.0 and OAuth 2.0. A practical example: a company using Darwinbox as its HRIS can sync employee records nightly, ensuring that new hires are provisioned as Users and departing employees are deactivated before their last working day.Keeping Collaboration Tools in Sync
Empuls also connects with communication platforms such as Slack and Microsoft Teams. Role-based notifications ensure that Managers receive award approval requests directly in their preferred workspace app, while Users get recognition alerts without ever needing to log into a separate portal. This tight integration between access control, HRIS provisioning, and collaboration tools means HR teams spend less time on user administration and more time on programmes that drive engagement. Empuls is built to the security standards required by enterprise buyers, including alignment with ISO 27001 and SOC 2 Type II frameworks, so role permissions and audit trails meet compliance expectations out of the box. Learn more: Empuls Help Centre — AdminSetting Up SSO and User Authentication
Configure SAML 2.0, OAuth 2.0, and SSO for secure, seamless employee login with your existing identity provider.
Managing User Groups in Empuls
Learn how to create and manage user groups to target recognition programmes, budgets, and communications to the right teams.
HRIS and IAM Integrations
Connect Empuls with Workday, SAP SuccessFactors, Darwinbox, and IAM tools for automated provisioning and role sync.
Admin Audit Logs and Compliance
Track every admin action with tamper-evident audit logs that support ISO 27001 and SOC 2 Type II compliance requirements.