Accessing Zoho via Okta using SAML

Accessing Zoho via Okta using SAML

You can configure SAML-based SSO with Okta as your identity provider (IdP) to let your users sign in to Zoho. The configuration steps differ according to your Zoho URL (your top-level domain, to be exact).
Example: If your Zoho URL is https://accounts.zylker.com, then your top-level domain is .com.

Follow the instructions which correspond to your URL to configure SAML with Azure:
  1. If your Zoho URL ends with .com
  2. If your Zoho URL ends with .com.cn, .in, .com.au, or .eu

If your Zoho URL ends with .com

  1. Sign in to your Okta Admin Console.
  2. Click Applications in the left menu, then click Applications.
  3. Click Browse App Catalog.
  4. Type "Zoho SAML" in the search bar and click on the app in the search result.
  5. Click Add.
  6. In the Application Name field, enter a name for the app.
  7. In the Domain field, enter a dummy value, then click Done. You can replace this dummy value with the actual value later.
  8. In the next page, go to the Sign On tab.
  9. Under Settings, click View Setup Instructions. A new page containing the IdP information will open.
  10. Download the x.509 Certificate (.cert file), then copy and save the Login URL and Logout URL.
  11. Sign in to your Zoho account at accounts.zoho.com.
  12. Configure SAML in your Zoho account using the downloaded certificate and copied URLs from Okta.
    1. Paste the Login URL in the Sign-in URL field.
    2. Paste the Logout URL in the Sign-out URL field.
    3. Upload the certificate in the X.509 Certificate field.
  13. After configuring SAML in your Zoho account, download the metadata file and open it using your browser or a text editor.
  14. From the metadata file, copy and save the last (numeric) part of your ACS URL.
  15. Return to Okta Admin Console and go to the General tab.
  16. Click Edit next to App Settings.
  17. In the Domain field, replace the dummy value from step 7 with the copied value (from ACS URL).
  18. Click Save.

If your Zoho URL ends with .com.cn, .in, .com.au, or .eu

  1. Sign in to your Okta Admin Console.
  2. Click Applications in the left menu, then click Applications.
  3. Click Create App Integration, select SAML 2.0, then click Next.
  4. Enter a name for the app in the App Name field, then click Next.
  5. In the Single sign on URL field and the Audience URI field, enter the following dummy values. You can replace these with the actual values later.
    Single sign on URL
    https://accounts.zylker.com/signin/samlsp/zoid
    Audience URI
    zylker.com

  6. In the Name ID Format field, select EmailAddress.
  7. Scroll down and click Next.
  8. Select I'm an Okta customer adding an internal app, then click Finish.
  9. In the next page, go to the Sign On tab.
  10. Under Settings, click View Setup Instructions. A new page containing the IdP information will open.
  11. Copy the Identity Provider Single Sign-On URL and download the X.509 Certificate.
  12. Sign in to your Zoho account at accounts.zoho.com.
  13. Configure SAML in your Zoho account using the downloaded certificate and copied URLs from Okta.
    1. Paste the Identity Provider Single Sign-On URL in the Sign-in URL field.
    2. Upload the certificate in the X.509 Certificate field.
  14. After configuring SAML in your Zoho account, download the metadata file and open it using your browser or a text editor.
  15. From the metadata file, copy and save the Entity ID and ACS URL.
  16. Return to Okta Admin Console and go to the General tab.
  17. Click Edit next to SAML Settings, then click Next.
  18. Replace the dummy values from step 5 with these copied values:
    1. Paste the ACS URL in the Single sign on URL field.
    2. Paste the Entity ID in the Audience URI field.
  19. Scroll down and click Next, then click Finish.


If you encounter any error while signing in using SAML, refer to our troubleshooting guide.




    Zoho DataPrep Personalized Demo

    If you'd like a personalized walk-through of our data preparation tool, please request a demo and we'll be happy to show you how to get the best out of Zoho DataPrep.

    Zoho CRM Training

      Create, share, and deliver

      beautiful slides from anywhere.

      Get Started Now





              Zoho CRM Training Programs

              Learn how to use the best tools for sales force automation and better customer engagement from Zoho's implementation specialists.

              Zoho CRM Training

                Zoho SalesIQ Resources



                    Zoho TeamInbox Resources




                              Zoho DataPrep Resources

                                Zoho DataPrep Demo

                                Get a personalized demo or POC

                                REGISTER NOW


                                  Design. Discuss. Deliver.

                                  Create visually engaging stories with Zoho Show.

                                  Get Started Now











                                                        • Related Articles

                                                        • Accessing Zoho via Auth0 using SAML

                                                          Follow these steps to configure SAML-based SSO with Auth0 as your identity provider (IdP): Sign in to your Auth0 administrator account. Click Applications in the left menu, then click Applications. Click Create Application. Enter a name for the app, ...
                                                        • Accessing Zoho via Google using SAML

                                                          You can use Google as an identity provider (IdP) to access Zoho applications. Google IdP is a user management platform for Google Apps and services. Sign in as an administrator to your Google Admin Console. Click Apps in the left menu, then click Web ...
                                                        • Accessing Zoho via Azure using SAML

                                                          Sign in to your Microsoft Azure portal as an admin. Under Azure services , click Azure Active Directory (or) find Active Directory using the search bar at the top. Click Enterprise applications under Manage in the left navigation menu. Click All ...
                                                        • Accessing Zoho via OneLogin using SAML

                                                          OneLogin uses IAM to secure user access to applications and devices and increases end-user productivity through SSO. You must obtain the login URL, logout URL, and the certificate from OneLogin. You can do this in two ways: Either use the SAML Test ...
                                                        • Troubleshoot SAML related errors

                                                          Error Message Reason Solution Your organization has configured SAML authentication, please sign in via SAML credentials You cannot sign in to your Zoho account via any linked account, if your organization has mandated you to sign in only through SAML ...

                                                        Resources

                                                        Videos

                                                        Watch comprehensive videos on features and other important topics that will help you master Zoho CRM.



                                                        eBooks

                                                        Download free eBooks and access a range of topics to get deeper insight on successfully using Zoho CRM.



                                                        Webinars

                                                        Sign up for our webinars and learn the Zoho CRM basics, from customization to sales force automation and more.



                                                        CRM Tips

                                                        Make the most of Zoho CRM with these useful tips.



                                                          Zoho Show Resources