How to enable passkey based authentication for Zoho Creator portals
Note:
- Support for passkeys in Zoho Creator’s default portal login is currently under development and will be available soon. Until then, you can enable passkey based authentication for your portals by integrating any SSO provider that supports passkeys using SAML.
- In this tutorial, Auth0 is used as identity provider for demonstration purposes only. Zoho Creator does not endorse or recommend any specific SSO vendor. You may use any SAML compatible provider that supports passkeys. While the configuration steps may vary, the overall integration flow remains the same.
Zoho Creator portals support passkey based authentication through SAML based Single Sign On (SSO). By connecting your portal to an external identity provider, such as Auth0, that supports passkeys, you can allow users to sign in using biometrics, device credentials, or security keys instead of passwords. SAML acts as the secure bridge between Zoho Creator and the identity provider.
Before you begin, ensure you have a clear understanding of SAML authentication and how it is configured, including concepts such as identity provider, service provider, ACS URL, and so on. This will help you configure the integration correctly and troubleshoot any issues during setup.
Prerequisites
- Set up a portal for your preferred application in your Zoho Creator account to enable SAML authentication. Follow the steps in the Setting up a portal guide to create the portal.
- Create an Auth0 account if you do not have an existing one.
Steps to follow
Step 1: Configure SAML authentication for portal with Auth0
- Navigate to the Portals under Deploy section in your creator account dashboard.
- Click on the preferred portal to configure the SAML authentication.
- Select the Authentication tab and select SAML. The SAML Authentication pane will slide from the right.
- Copy the ACS URL and Entity ID under the Service Provider Details.
- Open a new tab in your browser and log in to your Auth0 account. You will be redirected to the Auth0 dashboard.
- Navigate to Applications under Applications section in the left pane and click + Create Application.
- Enter a name for your application and choose application type as Regular Web Application and click Create. The detailed view of the application you've created will be displayed.
- Select the Addons tab in the top menu bar and click on the SAML2 Web App toggle. A configuration pop-up will appear.
- Click on the Settings tab in the pop-up and paste the ACS URL copied from your Creator portal (Refer step 4) in the Application Callback URL field.
- Replace the existing code with the below code in the Settings editor.
- {
- "audience": "{Portal Entity ID}",
- "recipient": "{ACS URL}",
- "nameIdentifierFormat": "urn:oasis:names:tc:SAML:1.1:nameid-format:emailaddress",
- "nameIdentifierProbes": [
- "http://schemas.xmlsoap.org/ws/2005/05/identity/claims/emailaddress",
- "http://schemas.xmlsoap.org/ws/2005/05/identity/claims/name"
- ],
- "logout": {
- "callback": "{Portal Logout URL}",
- "slo_enabled": true
- },
- "binding": "urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST"
- }
- Ensure you update the placeholders in the code with respect to your Zoho Creator portal.
- {Portal Entity ID} - Replace it with the Entity ID copied form your Creator portal (Refer step 4).
- {ACS URL} - Replace it with the ACS URL copied form your Creator portal (Refer step 4).
- {Portal Logout URL} - Construct the logout URL using your portal URL and Portal ID in the following format:
- https://<Portal_URL>/accounts/p/40-<Portal_ID>/logout/samlsp/<Portal_ID>
- The <Portal_ID> is the numeric part of the Entity ID. For example, if the Entity ID is 11118664031.zoho.com then the Portal ID is 11118664031.
- Example, {Portal Logout URL}: https://pos.zohocreatorportal.com/accounts/p/40-11118664031/logout/samlsp/11118664031
- Scroll down and click Enable to the activate the SAML authentication.
- Switch to Usage tab in the SAML pop-up and perform the following actions:
- Click Download Auth0 certificate hyperlink. The Auth0 certificate will be downloaded in a .pem file format.
- Click Download near the Identity Provider Metadata to download the metadata file.
- Copy the Identity Provider Login URL.
- Switch back to the browser tab where Zoho Creator is open and continue configuring the SAML authentication for your portal(Refer step 4). Paste the Identity Provider Login URL you copied earlier into the Login URL field.
- Enter the Logout URL by appending '/logout' to your Identity Provider Login URL. You can also find the logout URL in the downloaded metadata file (Refer step 12).
Example : https://dev-tqgtpgf3yz8u2ey7.us.auth0.com/samlp/OGqE9fxxxxxxxxxovsUlu9kB/logout - Click the Get key from file link, then click Browse and select the downloaded certificate (.pem) file (Refer step 12).
- Select RSA as the algorithm, since it is the default algorithm used by Auth0, and then click Configure.
After completing this configuration, all portal authentication requests will be routed through Auth0 via SAML using the user’s email, providing a centralized and secure login experience. To enable passkey based sign in for users, proceed to the next section.
Step2: Enabling passkey authentication with Auth0
- Switch to the browser tab where your Auth0 account is open.
- Navigate to Authentication Profile under Authentication from your dashboard and select Identifier First as your login flow. Click Save.
- Navigate to Database under Authentication and click on the Username-Password-Authentication database.
- Select the Authentication Methods tab and click Configure button in the Passkey card. Passkey configuration tab will slide from the right.
- Select the Enable Passkey checkbox and click Save.
See how it works
Related topics
Access your files securely from anywhere
Zoho CRM Training Programs
Learn how to use the best tools for sales force automation and better customer engagement from Zoho's implementation specialists.
Zoho DataPrep Personalized Demo
If you'd like a personalized walk-through of our data preparation tool, please request a demo and we'll be happy to show you how to get the best out of Zoho DataPrep.
- Zoho Workerly Home
- Forums
- Connect With Us:
- Zoho Recruit Home
- Forums
- Connect With Us:
Centralize Knowledge. Transform Learning.
All-in-one knowledge management and training platform for your employees and customers.
New to Zoho Writer?
Create. Review. Publish.
New to Zoho CRM Plus?
Deliver unforgettable customer experiences
New to Zoho CRM Plus?
Deliver unforgettable customer experiences
New to Zoho Marketing Plus?
Everything you need to run your marketing
New to Zoho Marketing Plus?
Everything you need to run your marketing
You are currently viewing the help pages of Qntrl’s earlier version. Click here to view our latest version—Qntrl 3.0's help articles.
New to Zoho Survey?
Zoho Sheet Resources
Zoho Forms Resources
New to Zoho Sign?
Zoho Sign Resources
Sign, Paperless!
New to Zoho TeamInbox?
Zoho TeamInbox Resources
New to Zoho ZeptoMail?
Design. Discuss. Deliver.
New to Zoho Workerly?
New to Zoho Recruit?
New to Zoho CRM?
New to Zoho Projects?
New to Zoho Sprints?
New to Zoho Assist?
New to Bigin?
Related Articles
Understanding portals
This help page is for users in Creator 6. If you are in the older version (Creator 5), click here. Know your Creator version. A Portal is a great way for an organization to allow its external users to log in to their dedicated internal system and ...Setting Up and Managing Your Zoho Creator Account
What does this page cover Learn how to register for Zoho Creator, sign in if you already have an account, and verify your email address. This guide will walk you through the process step-by-step to ensure a smooth setup and verification. 1. Register ...Understanding SAML authentication
This help page is for users in Creator 6. If you are in the older version (Creator 5), click here. Know your Creator version. Security Assertion Markup Language (SAML) is a framework which helps us to achieve Single Sign-On (SSO) in a secure and easy ...Configure SAML authentication in Portal
This help page is for users in Creator 6. If you are in the older version (Creator 5), click here. Know your Creator version. To configure SAML authentication: Click Portal under the Deploy section. A list of portals will be displayed. Click on the ...Custom authentication in Zoho Creator
This help page is for users in Creator 6. If you are in the older version (Creator 5), click here. Know your Creator version. In a nutshell Custom authentication allows you to authenticate a third-party identity provider to allow your users to use ...
New to Zoho LandingPage?
Zoho LandingPage Resources