Add an IdP
- Sign in to Zoho One, then click Directory in the left navigation menu.
- Go to Security, then click the Custom Authentication tab.
- If you are adding your first IdP, click Add Identity Provider. Otherwise, click Add IdP.
- Enter the name of your IdP in the Display Name field.
- Click All Members if you want all your employees to sign in through SSO via this IdP. Otherwise, choose one or more groups of users to enforce SSO.
Note: The All Members option will only be available when you add the "Default" IdP. If you select Specific Groups, then you can name the IdP at your convenience. Once you add an IdP that is applied to all the members in your organization, that becomes the "Default" IdP and all other IdPs can be applied only to specific groups of users. - If you want to exclude a groups of users from being enforced with this IdP, select Exclude groups from using this IdP, then choose the groups.Note: Suppose a user named Ben is part of an applicable group, Managers. He is also a part of an excluded group, Technicians. In such a case, even though Ben is a part of Managers, he will be excluded from the IdP since Technicians is excluded.
- Set the IdP Priority using the dropdown menu, in case multiple IdPs have been added. Note: Suppose the IdP priority is in this order: Okta, OneLogin, Azure, Default. If you select OneLogin from the dropdown menu, then the newly-added IdP will come second in the priority list. The list will then be in this order: Okta, IdP, OneLogin, Azure, Default. Similarly, in the IdP dropdown menu, when you select a particular IdP, the newly-added IdP will be prioritized just above the chosen IdP.
- If you select SAML:
- Enter the following details obtained from your IdP:
- Sign-in URL: The URL the user will be redirected to when they try to sign in to Zoho.
- Sign-out URL: The URL the user will be redirected to after signing out of Zoho.
- Change Password URL: The URL the user will be redirected to if they try to change their Zoho account's password.
- Verification Certificate: The certificate with which Zoho can check the digital signature on the IdP's authentication response.
- Click Add.
- If you select JWT:
- Enter the following details obtained from your IdP:
- Sign-in URL: The URL the user will be redirected to when they try to sign in to Zoho.
- Sign-out URL: The URL the user will be redirected to after signing out of Zoho.
- Select a signing algorithm.
- HS256: The HS256 signing algorithm makes use of a secret key shared between the IdP and Zoho One to generate a hashing function, which serves as the signature.
- RS256: The RS256, on the other hand, makes use of a public/private key pair. The IdP has a private key which generates a signature, and the user validates the signature using the public key.
- If you've selected HS256, generate a Public Key. If you've selected RS256, browse and add the Verification Certificate that you downloaded from the IdP.
- Enter the Sign-in parameters and Sign-out parameters if needed.
- Click Add.
Zoho CRM Training Programs
Learn how to use the best tools for sales force automation and better customer engagement from Zoho's implementation specialists.
Zoho DataPrep Personalized Demo
If you'd like a personalized walk-through of our data preparation tool, please request a demo and we'll be happy to show you how to get the best out of Zoho DataPrep.
- Zoho Workerly Home
- Forums
- Connect With Us:
- Zoho Recruit Home
- Forums
- Connect With Us:
New to Zoho CRM Plus?
Deliver unforgettable customer experiences
New to Zoho CRM Plus?
Deliver unforgettable customer experiences
New to Zoho Marketing Plus?
Everything you need to run your marketing
New to Zoho Marketing Plus?
Everything you need to run your marketing
You are currently viewing the help pages of Qntrl’s earlier version. Click here to view our latest version—Qntrl 3.0's help articles.
New to Zoho Survey?
Zoho Sheet Resources
Zoho Forms Resources
New to Zoho Sign?
Zoho Sign Resources
Sign, Paperless!
New to Zoho TeamInbox?
Zoho TeamInbox Resources
New to Zoho ZeptoMail?
Zoho DataPrep Resources
Design. Discuss. Deliver.
New to Zoho Workerly?
New to Zoho Recruit?
New to Zoho CRM?
New to Zoho Projects?
New to Zoho Sprints?
New to Zoho Assist?
New to Bigin?
Related Articles
Edit IdP details
Sign in to Zoho One, then click Directory in the left navigation menu. Go to Security, then click the Custom Authentication tab. Click the IdP whose details you want to edit. Note: The "Default" IdP can neither be renamed, nor can it be applied to ...Deactivate/Activate an IdP
After you add an IdP, you can either activate or deactivate it. If you activate an IdP, it will be applied to certain users based on the priority. They will then have to sign in with SSO via this IdP. If you deactivate an IdP, then users who were ...Delete an IdP
If an IdP is deleted, users who were using that IdP to sign in will be redirected to sign in via a different IdP based on priority. However, if they are excluded from the other IdPs, they will have to sign in using their Zoho One credentials. The ...Custom authentication with miniOrange
Configure SAML with miniOrange Sign in to the miniOrange admin console. Click Apps in the left menu, then click Add Application. In the Choose Application Type page, click SAML/WS-FED. In the displayed list of apps, search and select Zoho. You will ...Set up custom authentication for Zoho One
Custom authentication enables both SAML and JWT single sign-on (SSO) from your preferred identity providers (such as Okta or OneLogin) to Zoho One. You can set up custom authentication for a specific user group or all users in the organization. ...
New to Zoho LandingPage?
Zoho LandingPage Resources