Configuring SAML SSO for DeskPro


These steps will guide you through setting up the single sign-on functionality between ADSelfService Plus and DeskPro


  1. Log in to ADSelfService Plus as an administrator.

  2. Navigate to Configuration → Self-service → Password Sync/Single Sign-on.

  3. Search for DeskPro and select it.

  4. Click Download SSO Certificate link in the top-right corner of the screen.

  5. In the pop-up screen that appears, copy the values of Login URL, Logout URL and FingerPrint. We will need these values in later steps.

  6. In the SSO/SAML Details pop-up screen that appears, click Download Metadata file and save it.

DeskPro (Service Provider) configuration steps

  1. Now, log in to your DeskPro administrator account.

  2. Select ADMIN found in the topright corner of the page and select Admin Home.

  3. Select Admin → CRM → Auth & SSO in the left pane.

  4. Click Add and select SAML Authentication in the window that opens.

  5. Check Yes in Enabled? 

  6. Paste the Login URL you had copied in Step 5 of Prerequisite in SSO Single Logon field.

  7. Paste the Logout URL you had copied in Step 5 of Prerequisite in SSO Single Logoff field.

  8. Paste the Login URL used in Step 6 in the Metadata issuer XML meatadata URL field.

  9. Upload the SSO certificate  you had downloaded in Step 6 of Prerequisite by selecting Choose file option in x509 Certificate field.

  10. Paste the Fingerprint value you had copied in Step 5 of Prerequisite.

  11. Ensure that the checkbox in Sign Authentication Request  is unchecked.

  12. Ensure that the Name ID Format is email address.

  13. You can give your own Login Button Text.

  14. Click Install App / Save.

ADSelfService Plus (Identity Provider) configuration steps

  1. Now, switch to ADSelfService Plus’ DeskPro configuration page.

  2. In the Domain Name field, enter the domain name of your email address. For example, if you use to log in to DeskPro, then is the domain name.

  3. In the SP Identifier field enter your unique/organization name found in DeskPRO login URL. For example, if your login URL is, then the SP Identifier name is thinktoday. 

  4. Enter a Description for the connection.

  5. In the Available Policies field, select the policies for which you wish to enable single sign-on.

  6. Click Save.

      Your users should now be able to sign in to DeskPro through ADSelfService Plus.

    For DeskPro, both IdP-initiated and SP-initiated flows are supported.

Go to Top
Copyright © 2020, ZOHO Corp. All Rights Reserved.