Skip to main content
Xoxoday supports single sign-on (SSO) login through SAP SuccessFactors and other enterprise identity providers using industry-standard SAML 2.0 and OAuth 2.0 protocols.
Xoxoday integrates natively with enterprise SSO infrastructure, allowing employees to access rewards, recognition, and engagement features using the same credentials they use for every other corporate tool. There is no need to manage a separate username or password for Xoxoday. SSO support is built on two widely adopted open standards: SAML 2.0 and OAuth 2.0. SAML is the preferred choice for organisations using enterprise identity providers such as SAP SuccessFactors, Okta, Azure Active Directory, or OneLogin. OAuth 2.0 covers modern application integrations where token-based authentication is required. Both protocols are supported out of the box, and IT teams can choose the method that aligns with their existing identity infrastructure. For organisations running SAP SuccessFactors as their HRMS, the integration is straightforward. Employees log in to SuccessFactors as they normally would, and Xoxoday is accessible directly from within that environment — no second login prompt, no separate tab, no additional credentials. The same session token authenticates access to Xoxoday’s full feature set, from peer recognition to rewards redemption. This approach extends equally to other widely used HRMS and directory platforms. Organisations running Workday, Darwinbox, or Microsoft Azure Active Directory can configure SSO with Xoxoday through the same SAML or OAuth mechanism, giving IT administrators a consistent, centrally managed access control model across all enterprise applications. From a security standpoint, SSO with Xoxoday reduces the attack surface associated with password sprawl. Employees are authenticated through your organisation’s existing identity provider, which means your current password policies, multi-factor authentication (MFA) requirements, and session timeout rules automatically apply to Xoxoday sessions as well. IT and security teams retain full control without additional configuration overhead on the Xoxoday side. For employees, the experience is seamless. They navigate to Xoxoday from within their existing HR portal or intranet and land directly in their dashboard — no friction, no forgotten-password support tickets, and no onboarding barrier that delays adoption of the recognition programme. Xoxoday’s SSO implementation is part of a broader commitment to enterprise-grade security, aligned with internationally recognised standards including ISO 27001 and SOC 2 Type II. Configuration options are available through Xoxoday’s admin console, and implementation guidance is provided through the help centre. Learn more: Xoxoday Help Centre — Technical requirement

Data Encryption and Security Standards

Understand how Xoxoday protects data in transit and at rest using AES-256 encryption and TLS, aligned with ISO 27001 and SOC 2 Type II requirements.

HRMS and Directory Integrations

Learn how Xoxoday connects with Workday, SAP SuccessFactors, Darwinbox, and Azure AD to synchronise employee data and automate provisioning.

Multi-Factor Authentication Support

Find out how Xoxoday enforces MFA policies inherited from your identity provider to add a second layer of access security.

Compliance Certifications

Review Xoxoday’s certifications including ISO 27001 and SOC 2 Type II, and what they mean for your organisation’s vendor risk assessment.