This article describes how you can activate Google Single Sign-On (Google SSO) for your company and how your employees can log into Personio from their existing work-related Google accounts.
▶︎ This option only works if you use Google Workspace in your company.
▶︎ If you enable Google single sign-on, this authentication method will apply to all of your employees, and logging in with the Personio credentials (email and password) will not be possible.
- Access is managed entirely within Google Workspace. When an employee leaves your company and is deactivated as a user in Google, their access to Personio is automatically revoked.
- Employees do not need to create an additional password for Personio.
Activate Google single sign-on
To activate Google SSO, follow these steps:
- Go to Settings > Integrations > Authentication
- Open the tab Google Auth.
- Click Edit and select the Yes checkbox.
- Click Submit.
▶︎ We recommend to active Google Single Sign-On only after your account setup has been completed, as your employees will be able to log into Personio as soon as SSO is activated. Access to their accounts is then exclusively controlled via Google.
▶︎ Even if SSO is enabled, you still need to send an invitation email to your employees. Otherwise, they will not receive notification emails from Personio.
Log in via Google
When Google SSO is active, the entire authentication process is managed via Google Workspace. We therefore suggest that you activate 2-factor authentication in your Google Workspace Admin.
When launching Personio, you will see confirmation that Google SSO is enabled. To log into Personio, simply click Login with Google.
Once Google has successfully authenticated a user, the system checks whether the selected Personio account contains an employee profile for the authenticated Google Workspace user. If the stored email addresses match, the employee is logged in to Personio.