Routing policy - overview

Routing policy - overview

Routing policies enable you to decide which of your users must use which authentication modes to sign in with.

Authentication modes

The following authentication modes can be assigned to your policies:
  1. Password: Users can sign in using their Zoho account password.
  2. Passwordless: Users can configure and sign in using the following factors and skip using a password.
    1. OneAuth: Users can configure and sign in with the OneAuth app. 
      Smart sign-in: Users can sign in by scanning a QR code using the OneAuth app. 
    2. SMS-based OTP: Users can sign in with an one-time password sent to the registered mobile number. 
    3. OTP Authenticator: Users can configure and sign in with OTPs generated by any authenticator app. 
    4. Passkey: Users can save and sign in with the passkeys stored on their device. 
  3. Social sign-in: Users can sign in using their preferred third-party online accounts. 
  4. Identity providers: Users can sign in using single sign-on configured with any IdP that supports SAML/JWT protocol. 

Session Settings

Session settings help protect your organization from unaccounted sessions or inactive sessions by enforcing automatic sign-outs.
  1. Session Lifetime: This setting automatically signs your users out of a session after the specified number of days.
  2. Idle Session Timeout: This setting automatically signs your users out of a session if there is no user activity for a specified period of time