Directory Apps - Workiva | Marketplace Installation Guides - Zoho One

Workiva for Zoho Directory

Configure SAML in Zoho One/Directory

  1. If you're a Zoho One user:
    1. Sign in to Zoho One , then click Directory in the left menu.
    2. Go to Marketplace, then click Browse Applications.
    3. Use the search bar to find and install Workiva.
      workiva-app-in-zoho-one
  2. If you're a Zoho Directory user:
    1. Sign in to Zoho Directory , then click Admin Panel in the left menu.
    2. Go to Applications, then click Add Application.
    3. Use the search bar to find and add Workiva.
      workiva-app-zoho-directory
  3. Name your app and enter the Domain Name.
    4. Note: Your Domain Name is the first part of your Workiva URL. If your URL is "zylker.wdesk.com," your Domain Name will be "zylker."
  4. Click Add.
  5. Click on the Single Sign-On tab.
  6. Click Service Provider Details to check and verify the SP details. You can also edit them, if needed.
  7. Click Identity Provider Details, click Download IDP Metadata, then save the Workiva.xml file.
    workiva-sp-info

Configure SAML in Workiva

  1. Sign in to your Workiva account as an Org Security Admin.
  2. Click your name in the bottom-left corner, then click Organization Admin.
  3. Click Security, then go to the Single Sign-On menu.
  4. Under SAML Settings, check Enable SAML Single Sign-On, then click Save Changes.
  5. Under SAML User ID Settings, check SAML User ID is Wdesk Username, then click Save Changes.
  6. Go to IdP Settings, then upload the Workiva.xml file under Upload Provider Metadata.
  7. After enabling SSO, you can keep track of sign-in activity by reviewing the SSO activity log.

Test the SAML connection

  1. Return to the Zoho Directory Admin Panel.
  2. Go to Applications, then click Workiva.
  3. Click Assign Users, choose yourself from the list, then click Assign.
  4. Click on the  icon next to the app's name. If everything is working, you should be automatically signed in and taken to Workiva's homepage.
    workiva-sso-in-progress

Enforce SAML SSO

After successfully testing SSO, you can enforce it for all users. Once this is done, your users will no longer be able to sign in using their Workiva credentials. To restrict users to SSO:
  1. Sign in to your Workiva account as an Org Security Admin.
  2. Click your name in the bottom-left corner, then click Organization Admin.
  3. Click Security, then go to the Single Sign-On menu.
  4. Under SAML Settings, check Require SAML Single Sign-On for Users. This will enforce SSO for everyone except Organization Security Administrators.
  5. Under SAML Settings, check Require SAML Single Sign-On for Organization Security Administrators. This will enforce SSO for everyone in the organization.
  6. Click Save Changes.
  7. If you want to allow specific users to sign in with their credentials even after enforcing SSO, go to Bypass Users, then add the email addresses of the required users.