Prerequisites
Roles required to perform this action :
Organization Owner
Organization Admin
Custom authentication with Microsoft Entra:
Custom authentication with Microsoft Entra enables SAML-based single sign-on (SSO) from Microsoft Entra to Zoho. With SSO, you and your employees can sign in to Microsoft Entra and access Zoho directly, without having to sign in to Zoho.
To set up custom authentication with Microsoft Entra:
-
Sign in to Microsoft Entra Portal as an admin.
-
Click Microsoft Entra ID.
-
Click
Enterprise applications
in the left navigation menu.
-
Click
New Application, then click
Create your own application.
-
Type "Zoho Directory" under
What's the name of your app?, choose
Integrate any other application you don't find in the gallery, then click
Create.
-
Go back to
Enterprise applications, then click
Zoho Directory.
-
Click
Single sign-on
under Manage
in the left menu, then choose
SAML.
-
Edit
Basic SAML Configuration, then do the following:
- Copy and enter the following details based on the Data Center (DC) your Zoho Directory account is present in:
Zoho Directory account DC
| Identifier (Entity ID)
| Relay state
|
US
| zoho.com
| |
EU
| zoho.eu
| |
IN
| zoho.in
| |
AU
| zoho.com.au
| |
CN
| zoho.com.cn
| |
JP | zoho.jp | |
CA
| zohocloud.ca
| |
SA
| zoho.sa | |
UK
| zoho.uk
| |
Reply URL (Assertion Consumer Service URL): Enter the ACS URL found in Zoho Directory's
Custom Authentication page
![ZOID and ACS URL.](https://desk.zoho.com/DocsDisplay?zgId=4241905&mode=inline&blockId=2ni533603a8711cd24fa0ae848c8e718d61b7)
-
Under
SAML Signing Certificate, download Certificate (Base64).
-
Under
Set up Zoho Directory, copy the
Login URL
and
Logout URL.
-
Use the details from Steps 9-10 to
set up SAML in Zoho Directory.
-
Enter
Login URL
under
Sign-in URL.
-
Enter
Logout URL
under
Sign-out URL.
-
Upload Certificate (Base64)
under
Verification Certificate.