Configuring Single Sign-On for Zoho
Upon setting up single sign-on (SSO) for Zoho accounts in ADSelfService Plus, your users can use just their Active Directory or Windows credentials to access their Zoho cloud accounts. Users can access their Zoho accounts from ADSelfService Plus’ web console with just a click.
- Log in to ADSelfService Plus as an administrator.
- Navigate to Configuration → Self-Service → Password Sync/Single Sign On → Add Application, and select Zoho from the applications displayed.
Note: You can also find the Zoho application that you need from the search bar located in the left pane, or the navigation option in the right pane.
- Click IdP details in the top-right corner of the screen.
- In the pop-up that appears, copy the Login URL and Logout URL and download the SSO certificate by clicking Download Certificate.
Zoho configuration steps
- Log in to Zoho Accounts (https://accounts.zoho.com) with administrator credentials.
- From the left panel menu, navigate to Organization → SAML Authentication.
- Click Setup Now, or click Edit if any other SAML configuration is available.
- In the SAML Authentication pop-up's Sign-in URL field, enter the Login URL copied in Step 4 of Prerequisites.
- In the SAML Authentication pop-up's Sign out URL field, enter the Logout URL copied in Step 4 of Prerequisites.
- In the SAML Authentication pop-up's Change Password URL field, enter the ADSelfService Login URL (e.g., https://selfservice-domainportal).
- In the SAML Authentication pop-up's X.509 Certificate field, upload the certificate file downloaded in Step 4 of Prerequisites.
- Click Configure.
- Click Download Metadata and open the metadata file in a text editor. Locate the Assertion Consumer Service (ACS URL) parameter and copy it, as it will be used later.
ADSelfService Plus configuration steps
- Now switch to ADSelfService Plus’ Zoho configuration page.
- Enter the Application Name and Description.
- Enter the Domain Name of your Zoho account. For example, if you use email@example.com to log in to Zoho, then thinktodaytech.com is the domain name.
- In the Assign Policies field, select the policies for which SSO needs to be enabled.
Note: ADSelfService Plus allows you to create OU- and group-based policies for your AD domains. To create a policy, go to Configuration → Self-Service → Policy Configuration → Add New Policy.
- Select Enable Single Sign-On.
- Enter the SAML Redirect URL, which is your Zoho Portal URL. (If you don’t have a separate portal, fill in “https://accounts.zoho.com”.)
- Enter the ACS URL you saved in Step 9 of Zoho configuration steps.
- Click Add Application.
Your users can now sign in to Zoho through ADSelfService Plus.
Need further assistance? Fill this form, and we'll contact you rightaway.
Free Active Directory users from attending lengthy help desk calls by allowing them to self-service their password resets/ account unlock tasks. Hassle-free password change for Active Directory users with ADSelfService Plus ‘Change Password’ console.
Get seamless one-click access to 100+ cloud applications. With enterprise single sign-on, users can access all their cloud applications with their Active Directory credentials. Thanks to ADSelfService Plus!
Intimate Active Directory users of their impending password/account expiry by mailing them these password/account expiry notifications.
Synchronize Windows Active Directory user password/account changes across multiple systems, automatically, including Office 365, G Suite, IBM iSeries and more.
Ensure strong user passwords that resist various hacking threats with ADSelfService Plus by enforcing Active Directory users to adhere to compliant passwords via displaying password complexity requirements.
Portal that lets Active Directory users update their latest information and a quick search facility to scout for information about peers by using search keys, like contact number, of the personality being searched.