Configuring SAML SSO for AHA!

These steps will guide you through setting up the single sign-on functionality between ADSelfService Plus and AHA!.


  1. Login to ADSelfService Plus as an administrator.

  2. Navigate to Configuration → Self-service → Password Sync/Single Sign-on.

  3. Locate and click on AHA! in the list of applications provided.

  4. Click on the Download SSO Certificate link in the top-right corner of the screen.

  5. In the pop-up that appears, copy the Login URL, Fingerprint and download the SSO certificate by clicking on the Download Meta file link.

AHA (Service Provider) configuration steps

  1. Login to AHA! with an administrator’s credentials.

  2. Navigate to Settings Icon → Account → Security and single sign-on.

  3. Choose  SAML 2.0. as the Identity provider. 

  4. Name your configuration.

  5. You can choose between Metadata URL (or)  Metadata file (or) Manual settings.

  6. Paste the copied URL, from Step 5 of Prerequisite, in the respective URL fields. 

  7. Select certificate fingerprint as SHA1.

  8. Click Enable to save the configuration.

ADSelfService Plus (Identity Provider) configuration steps

  1. Now, switch to ADSelfService Plus’ AHA! configuration page

  2. In the Domain Name field, enter the domain name of your email address. For example, if you use to log in to AHA!, then is the domain name.

  3. Enter the SP Identifier of your AHA portal in the SP Identifier field. For Eg, https://<sp_identifier> 

  4. Provide a Description in the respective field.

  5. In the Available Policies field, click on the drop-down box and select the policies for which you wish to enable single sign-on.

  6. Click Save and log out of ADSelfService Plus.

For AHA!, both IdP-initiated and SP-initiated flows are supported.

Go to Top
Copyright © 2020, ZOHO Corp. All Rights Reserved.