Configuring SAML SSO for

These steps will guide you through setting up the single sign-on functionality between ADSelfService Plus and


  1. Login to ADSelfService Plus as an administrator.

  2. Navigate to Configuration → Self-service → Password Synchronizer..

  3. Locate and click on in the list of applications provided.

  4. Click on the Download SSO Certificate link in the top-right corner of the screen.

  5. In the pop-up that appears, copy the Login URL and download the SSO certificate by clicking on the Download SSO Certificate. (Service Provider) configuration steps

  1. Log in to using your administrator credentials.

  2. In the bottom-left corner, click the Account settings icon, and then click Admin.

  3. Click the SINGLE SIGN-ON tab.

  4. In the REMOTE LOGIN URL and ISSUER URL fields, paste the Login URL value you copied in Step 5 of Prerequisite. 

  5. In the REMOTE LOGOUT URL field, paste the Logout URL value you copied in Step 5 of Prerequisite.

  6. In the IDENTITY PROVIDER CERTIFICATE field, Copy and paste the content of the SSO certificate file you downloaded in Step 6 of Prerequisite.

  7. Toggle the Enable Single Sign-On? switch to ON.

  8. Copy the ASSERTION CONSUMER URL and ENTITY ID values. We will need these in later steps.


ADSelfService Plus (Identity Provider) configuration steps

  1. Now, switch to ADSelfService Plus’ configuration page.

  2. In the Domain Name field, enter the domain name of your email address. For example, if you use to log in to, then Honey is the domain name.

  3. Paste the ACS URL and Entity ID values you had copied in Step 8 of configuration. 

  4. Provide a Description in the respective field.

  5. In the Available Policies field, click on the drop-down box and select the policies for which you wish to enable single sign-on.

  6. Click Save and log out of ADSelfService Plus.

For, single sign-on is supported only for IDP initiated flow. 

Go to Top
Copyright © 2020, ZOHO Corp. All Rights Reserved.