Configuring SAML SSO for PlanMyLeave

These steps will guide you through setting up the single sign-on functionality between ADSelfService Plus and PlanMyLeave.


  1. Log in to ADSelfService Plus as an administrator.

  2. Navigate to Configuration → Self-service → Password Sync/Single Sign-on.

  3. Locate and click on PlanMyLeave in the list of applications provided.

  4. Click Download SSO Certificate link in the top-right corner of the screen.

  5. In the SSO/SAML Details pop-up screen that appears, copy the Login URL click Download SSO Certificate and save it.

PlanMyLeave (Service Provider) configuration steps

  1. Login to PlanMyLeave portal with an administrator’s credentials.

  2. Navigate to System Setup → Security Management → Company SAML Settings.



  3. Click on the Edit icon in the topright corner of the screen.

  4. In the Login URL field, enter the Login URL copied in Step 5 of Prerequisite.

  5. Open the SSO certificate downloaded (rsacert.pem ) downloaded in Step 5 of Prerequisite and paste its content in the Certificate field.

  6. In the Is Enable field, select Yes.

  7. Click Save to complete the configuration

ADSelfService Plus (Identity Provider) configuration steps

  1. Now, switch to ADSelfService Plus’ PlanMyLeave configuration page.

  2. In the Domain Name field, enter the domain name of your email address. For example, if you use to log in to PlanMyLeave, then is the domain name.

  3. In the SP Identifier field, enter the sp identifier of your PlanMyLeave account.
    Example: If your PlanMyLeave domain URL is, your sp identifier is test.

  4. Enter a Description for the connection

  5. In the Available Policies field, select the policies for which you wish to enable single sign-on.

  6. Click Save and log out of ADSelfService Plus.Your users should now be able to sign in to PlanMyLeave through ADSelfService Plus.

    For PlanMyLeave, only SP initiated flow is supported.

Go to Top
Copyright © 2020, ZOHO Corp. All Rights Reserved.