Add Microsoft Azure to Zoho One | Admin Guide - Zoho One

Add Microsoft Entra ID to Zoho One

Prerequisites:

Roles required to perform this action :
  1. Organization Owner
  2. Organization Admin

In Zoho One:

The steps to add vary between two User Interface versions supported in Zoho One. Select the UI you use from the tabs below and proceed with the steps that follows.
Spaces UI
Unified UI
Spaces UI
  1. Sign in to Zoho One, then click  on the top right corner.
  2. Go to Directory Stores, then click Add Directory.
  3. Under Entra ID, click Add.
  4. Click Next
  5. Under API INTEGRATION, note down the endpoints listed. Later, you'll have to provide this information in Microsoft Entra ID app (instructions for performing this task have been included in this document).
  6. Click Next.
  7. Under ATTRIBUTE MAPPING, map the fields available in Zoho One to the fields available in Entra ID.
    If you'd like to have all users synced from Entra ID to have the same value for a field, map that field with a hard-coded value. For example, if you want the value for the field 'Work Location' as 'Main Building', then you can type Main Building as a value for the Hard-coded Value.
    To map a hard-coded value with a field:
    1. Click Edit next to a field.
    2. Enter the value you need in the Hard-coded Value field.
    3. Click Ok.
  8. Click Next.
  9. Under SETTINGS, next to Password Notification, choose how you want your users to receive their One Time Password.
    NotesPassword Notification setting is only applicable to users' whose email address has a verified domain name.
  10. Click Status Sync in the left corner.
  11. Choose how the change in user status on Entra ID should be reflected in Zoho One.
  12. Click Save and Next.
  13. Choose how you want to sync users from Entra ID based on the criteria applied in Zoho One. You can either choose to sync users for a few users matching the criteria or all users. You can also set multiple criteria based on your needs.
  14. To set criteria, select a criteria from the options, choose a relationship, and enter the criteria's value as needed. While adding more than one criteria, you can also choose to enter it manually. Click Edit, enter your condition (whether OR or AND), and click Save.
  15. Once done, click Save and Close.
Unified UI
  1. Sign in to Zoho One, then click Directory in the left-menu.
  2. Go to Directory Stores, then click Add Directory.
  3. Under Entra ID, click Add.
  4. Click Next
  5. Under API INTEGRATION, note down the endpoints listed. Later, you'll have to provide this information in Microsoft Entra ID app (instructions for performing this task have been included in this document).
  6. Click Next.
  7. Under ATTRIBUTE MAPPING, map the fields available in Zoho One to the fields available in Entra ID.
    If you'd like to have all users synced from Entra ID to have the same value for a field, map that field with a hard-coded value. For example, if you want the value for the field 'Work Location' as 'Main Building', then you can type Main Building as a value for the Hard-coded Value.
    To map a hard-coded value with a field:
    1. Click Edit next to a field.
    2. Enter the value you need in the Hard-coded Value field.
    3. Click Ok.
  8. Click Next.
  9. Under SETTINGS, next to Password Notification, choose how you want your users to receive their One Time Password.
    NotesPassword Notification setting is only applicable to users' whose email address has a verified domain name.
  10. Click Status Sync in the left corner.
  11. Choose how the change in user status on Entra ID should be reflected in Zoho One.
  12. Click Save and Next.
  13. Choose how you want to sync users from Entra ID based on the criteria applied in Zoho One. You can either choose to sync users for a few users matching the criteria or all users. You can also set multiple criteria based on your needs.
  14. To set criteria, select a criteria from the options, choose a relationship, and enter the criteria's value as needed. While adding more than one criteria, you can also choose to enter it manually. Click Edit, enter your condition (whether OR or AND), and click Save.
  15. Once done, click Save and Close.


In Microsoft Entra ID:

  1. Click the app that you want to manage in Zoho One.
    Notes
    Make sure you add Zoho One app from the gallery instead of creating custom application.
  2. Click Provisioning in the left-menu.
  3. Under Provisioning Mode, select Automatic.
  4. Under Admin Credentials, in Tenant URL field, paste the Sync endpoint copied from Zoho One.
  5. In the Authorization Endpoint field, paste the Authorization endpoint copied from Zoho One.
  6. In the Token Endpoint field, paste the Token endpoint copied from Zoho One.
    Notes
    The Authorization Endpoint and Token Endpoint URLs should be DC-specific. Hence, if you are trying to add a Zoho One account in one Data Centre (DC) to a Microsoft Entra ID account in another DC, you have to change the DC in the URL.
    For example, if your Zoho One account is in India, you have to change the .com value in the URLs to .in (like this https://accounts.zoho.com/oauth/v2/token to https://accounts.zoho.in/oauth/v2/token).
  7. Click Authorize. After successful authorization, click Test Connection.
  8. After successful connection, click Save if the details aren't automatically saved.
  9. After the provisioning setup:
  10. To sync the users' information immediately, select the users from the app and click Provision.
  11. To sync the users' information at 40 minute intervals, go to Provisioning on the left menu, and tap Start provisioning. The user information will be synced automatically until you stop the provisioning.