Skip to main content

Cornell University

Put Cornell Authentication Before a Survey

This article applies to: Qualtrics (Survey Tool)

If you ask members of the Cornell community to sign in with their NetID and password to take a survey, make sure to provide a way they can confirm it's a legitimate request.  You can do this by proactively posting emailed survey invitations to Verified Cornell Communications, inviting response through established Cornell newsletters or official e-lists, or posting supporting information or a link to the survey on your college, unit, or other Cornell website. 

It's possible to require that survey invitees authenticate with CUWebLogin before they can take the survey. Qualtrics refers to this as setting up an SSO (Single Sign On) authenticator. 

Follow Qualtrics' instructions at SSO Authenticator, under Shibboleth

The illustration doesn't show it, but the authentication box must be before the survey in the survey flow.

Once the authentication is set up, it's possible to obtain details like the person's name, NetID email address, or Cornell entitlement (role) and add them to your survey's embedded data.  Follow the instructions under To Capture Identifying Information (Optional) in Qualtrics' documentation.

The friendly names referred to in Step 5 may be found under What attributes does the Cornell Identity Provider release? at Shibboleth FAQ.  See the column Attribute Friendly Name in SAML Assertion

If the survey invitees might expect their responses to be anonymous, make sure to let them know if you are going to associate their responses with their name or other identifier.  


To share feedback about this page or request support, log in with your NetID

At Cornell we value your privacy. To view
our university's privacy practices, including
information use and third parties, visit University Privacy.