FAQs: Governance in Zoho Creator -Supported by Zoho Directory
This page covers essential aspects of Zoho Creator, such as governance, Active Directory sync, multi-factor authentication, custom authentication, security policy, and domain verification, ensuring a secure and efficient business workflow.
What is the Governance module in Zoho Creator? What is the primary purpose of the governance?
The Governance module in Zoho Creator helps managing various critical aspects of an organization. This includes creating security policies, configuring custom authentication, syncing with Active Directory, and adding verified domains.
The primary purpose of the governance module in Zoho Creator is to manage and enhance an organization's security, user authentication, and user management.
It includes features such as
- Security policies
- Custom authentication
- Active Directory synchronization
- Domain management to ensure robust security and streamlined user access.
How does the Governance module contribute to enhancing an organization's security?
The Governance module enhances an organization's security by allowing administrators to establish and enforce security policies. These policies can dictate password strength, multi-factor authentication, IP address restrictions, and session management rules. Additionally, custom authentication and Active Directory sync provide secure authentication mechanisms, while domain management helps in brand identity and user onboarding.
How is security policy management handled in Zoho Creator?
Security policy management in Zoho Creator is facilitated through Zoho Directory. When you click Configure, you will be redirected to Zoho Directory for security policy management and a new account in Zoho Directory will be created automatically in paid plans.
What are the components of laying down a security policy?
There are four components that contribute to laying down a security policy:
- Password policy: Dictates how strong the users' passwords must be and how often they have to be renewed.
- MFA: Dictates which multi-factor authentication modes the user can use to sign in.
- Allowed IPs: Dictates which IP addresses the user can use to sign in. Requests to log in from IP addresses that are not authorized will be rejected.
- Session management: Dictates how many active sessions a user can have, and for how long.
How can I configure a custom authentication method in Zoho Creator, and what does it enable?
Custom authentication can be configured in Zoho Creator by enabling SAML, which allows users to authenticate using their identity provider (IdP) or domain. For example, if SAML is enabled for a specific domain, users from that domain can log in without their Zoho account passwords.
What is Active Directory Sync, and how does it simplify user management in Zoho Creator?
Active Directory Sync is a tool designed to securely synchronize user identities and passwords from an organization's Active Directory (AD) with Zoho accounts. This one-way synchronization process enhances user management by automatically importing user data from AD into Zoho Directory.
What are the benefits of having a well-defined password policy as part of your security policy?
A well-defined password policy enhances security by ensuring that user passwords meet specific criteria. Benefits include stronger protection against unauthorized access, reduced risk of password-related breaches, and improved overall account security.
How does multi-factor authentication (MFA) enhance user security, and what modes of MFA are supported?
Multi-factor authentication (MFA) enhances user security by requiring users to provide two or more forms of verification before gaining access. Supported modes of MFA may include SMS codes, email verification, or app-based authenticators, depending on the organization's settings.
How does it help when specifyin allowed IP addresses in your security policy?
Specifying allowed IP addresses restricts user access to specific locations or networks. It adds an extra layer of security by preventing sign-ins from unauthorized or suspicious IP addresses, reducing the risk of unauthorized access.
What role does session management play in maintaining user security, and how can it be configured?
Session management controls the number of active user sessions and their duration. It helps prevent unauthorized access by limiting the number of concurrent logins and setting session expiration times. Administrators can configure these settings to align with their organization's security needs.
What is custom authentication in Zoho Creator, and under what circumstances might an organization choose to enable it?
Custom authentication in Zoho Creator enables Single Sign-On (SSO) using SAML, allowing users to authenticate through their identity provider (IdP) or domain. Organizations might enable it to streamline login processes, enhance security, and allow users to sign in without using Zoho account passwords.
How does custom authentication using SAML improve user authentication for specific domains?
Custom authentication using SSO improves user authentication by allowing users from specific domains to log in via their trusted identity providers. This eliminates the need for users to remember multiple passwords and enhances security through SSO.
What steps are involved in configuring custom authentication for an organization's identity provider (IdP)?
How does associating domains with Zoho Directory benefit an organization?
Associating domains with Zoho Directory helps establish the organization's brand and simplifies employee onboarding. It allows for custom email addresses, easy enrollment of users with domain-based addresses, group aliases for communication, and automated employee enrollment through Active Directory sync.
How can I add a security policy in Zoho Creator?
To add a security policy, navigate to the Governance section, select Security Policies, and then click the Configure Security Policy button. You can either edit the default policy or add a new one with specific configurations.
What steps are involved in configuring custom authentication in Zoho Creator?
To configure custom authentication, access the Governance section, select Custom Authentication, then click the Configure Custom Authentication button. You'll need to provide details from your identity provider (IdP), such as sign-in and sign-out URLs, verification certificates, and more.
How can I set up Active Directory Sync in Zoho Creator?
To set up Active Directory Sync, navigate to the Governance section, select Active Directory, then click the Configure Active Directory button.
Follow the steps to download and install the synchronization tool, choose OUs and objects to sync, map LDAP fields, and configure sync settings.
What's the process for adding and verifying a domain in Zoho Creator?
To add and verify a domain, go to the Governance section, select Domains, then click the Configure Domain button. Enter your domain's name and choose one of the available verification methods (TXT, CNAME, or HTML) to verify your domain with Zoho Directory. Learn more about the process for adding and verifying a domain.
Can I apply security policies to a group of users at once?
Yes, To add a group of users at once, follow the steps below:
- Sign in to Zoho Directory, then click Admin Panel in the left menu.
- Go to Groups, then click the group that you need to add users to.
- Click Add Members, then select the users to be added.
- Assign their role in the group. learn more.
- Click Add.
Can I apply exceptions for specific users in a group for which a security policy has been applied?
Yes, To Disable MFA for users, follow the steps that follow:
- Sign in to Zoho Directory , then click Admin Panel in the left menu.
- Click Disable MFA under
, then select the users who need MFA disabled.
- Verify yourself with your password, then click Disable.
What kind of password restrictions can I set?
You can set password limitations including Minimum length for a Password, Mixed Password, Minimum special characters, Minimum numeric digits, Maximum password age, and Refusal of Previously Used Passwords. Learn more.
What types of MFA is supported?
In Zoho Directory's MFA tab, the following MFA modes can be enforced for enhanced protection of user identities:
- Zoho OneAuth - Our own authenticator that offers multiple sign-in modes and passwordless sign-in.
- Other authenticator apps such as Google Authenticator and Authy, which generates OTPs for sign-in.
- Hardware security key such as YubiKey.
- SMS-based OTPs.
What are the authentication modes available in MFA?
These are the authentication modes available in MFA:
- Face ID/Touch ID: Users will have to verify themselves using their fingerprint or face through Zoho OneAuth. (Face ID can only be used if the user has an iPhone or iPad device that supports it.)
- Push Notification: Users will have to accept a push notification sent to their mobile device through Zoho OneAuth.
- Time-based OTP: Users will have to enter a time-based one-time password generated in Zoho OneAuth.
- QR Code: Users will have to scan a QR code displayed at sign-in, through Zoho OneAuth.
- Google Authenticator (or similar authentication apps): Users will have to configure an authenticator app, and enter a time-based one-time password generated in it.
- Yubikey: Users will have to connect their YubiKey hardware authenticator to the device they're trying to sign in from, and verify themselves.
- SMS: Users will have to enter a one-time password sent to their registered mobile number through SMS.
What is IP Whitelisting?
Whitelisting IP addresses prevents unauthorized access and strengthens your organization's security.
Is it possible to access Creator only through a specific network?
Yes, Zoho Creator can be accessed through the internet, but it also offers IP Whitelisting functionality if you need to restrict access to specific IP addresses or networks for added security. This allows you to control access to your Zoho Creator applications and data based on trusted IP addresses.
Do you support IP whitelisting?
Yes, To configure allowed IPs:
- Sign in to Zoho Directory , then click Admin Panel in the left menu.
- Go to Security, click Security Policies, then click on the policy you want to configure.
- Go to Allowed IPs, then click Add IP address.
- Enter the required IP or IP range.
- Click Add.
Do you support concurrent users?
Yes, we support concurrent users in Zoho Creator. The number of users allowed depends on the plan you have chosen. Both developers and administrators have edit permissions and can function as concurrent users as well. Our architecture ensures scalability through both vertical and horizontal scaling, ensuring reliable performance as your usage grows.
What is the maximum number of concurrent users that are supported by the proposed solution setup?
The maximum number of concurrent users depends on the ability to scale horizontally depends on the infrastructure you have, enabling you to adjust according to your specific requirements.
What are the limitations to the number of concurrent users uploading and downloading data?
There are no limitations to the number of concurrent users uploading and downloading data. The number of users depends on the plan you have subscribed to.
Do you support SAML/SSO?
Yes, we support SAML for authentication. Implementing SAML simplifies the process of logging into applications. We support third-party IDPs such as OneLogin, ADFS, and miniOrange.
Do you support integration with AD?
Yes, we support integration with active directory. This feature powered by Zoho Directory, helps maintain all your user identities in a single place, without having to add, edit, or disable user accounts manually.
For more information, visit our Governance user document.
Related Help Docs
- Understand Governance
- Add Security Policy
- Configure Custom Authentication
- Sync Active Directory
- Add and Verify Domain
Related FAQ Pages
Access your files securely from anywhere
Zoho CRM Training Programs
Learn how to use the best tools for sales force automation and better customer engagement from Zoho's implementation specialists.
Zoho DataPrep Personalized Demo
If you'd like a personalized walk-through of our data preparation tool, please request a demo and we'll be happy to show you how to get the best out of Zoho DataPrep.
- Zoho Workerly Home
- Forums
- Connect With Us:
- Zoho Recruit Home
- Forums
- Connect With Us:
New to Zoho CRM Plus?
Deliver unforgettable customer experiences
New to Zoho CRM Plus?
Deliver unforgettable customer experiences
New to Zoho Marketing Plus?
Everything you need to run your marketing
New to Zoho Marketing Plus?
Everything you need to run your marketing
You are currently viewing the help pages of Qntrl’s earlier version. Click here to view our latest version—Qntrl 3.0's help articles.
New to Zoho Survey?
Zoho Sheet Resources
Zoho Forms Resources
New to Zoho Sign?
Zoho Sign Resources
Sign, Paperless!
New to Zoho TeamInbox?
Zoho TeamInbox Resources
New to Zoho ZeptoMail?
Zoho DataPrep Resources
Design. Discuss. Deliver.
New to Zoho Workerly?
New to Zoho Recruit?
New to Zoho CRM?
New to Zoho Projects?
New to Zoho Sprints?
New to Zoho Assist?
New to Bigin?
Related Articles
Governance in Zoho Creator (Supported by Zoho Directory)
This help page is for users in Creator 6. If you are in the older version (Creator 5), click here. Know your Creator version. 1. What Does This Page Cover? Learn how you can improve user management and run your organization efficiently using the Zoho ...FAQs: Zoho Creator - Starter Guide
This page covers essential insights into Zoho Creator, a low-code platform offering support for multiple languages, shared responsibility models, and the unique Deluge coding language, providing comprehensive assistance for your business needs. What ...FAQs: Setup Process
This page covers essential steps for Zoho Creator users, including registration, sign-in processes, confirming your Zoho account, email address verification, and options to request a demo or contact our dedicated support team. How do I register for ...FAQs: Solutions
This page covers about solution, its types, how to associate all three to Zoho Creator and the basics of solutions in Creator. What is a solution on a low code platform? A solution on a low-code platform denotes the software created with the ...FAQs: Creating an Application
This page offers insights on creating applications from scratch, the steps involved in creating an app, exploring different components of an application and deluge, importing data and the limitations involved. How to create an application? Locate and ...
New to Zoho LandingPage?
Zoho LandingPage Resources