Security Policies

1. Password Policy: This component dictates how strong the users' passwords must be and how often they have to be renewed.
2. MFA: This component dictates which multi-factor authentication modes the user can use to sign in.
3. Allowed IPs: This component dictates which IP address the user can use to sign in. Any sign-in requests from IPs that aren't allowed will be denied.
4. Session Management: This component dictates how many active sessions a user can have, and for how long.
   

1. Open the Zoho Directory Integration page (Settings > Marketplace > Zoho > Zoho Directory)
2. Go to Security tab, you can click on the Default Policy to edit the policy.
3. If you want to create a new policy, click + Add Security Policy.
   
   
   
   
4. When configuring a new security policy, a display name, the group for which this policy is to be applied can be configured, you can also choose to exclude specific users.
   
5. Finally click Add to save changes.
   

To learn about setting up MFA (Multi Factor Authentication), Click here.

Active Directory Sync

Zoho Directory Sync is a secure and straightforward directory, password synchronization tool which helps in syncing users and their passwords in Active Directory (AD) with Zoho accounts. 

Zoho Directory enables you to delegate user authentication and management to your Active Directory or LDAP server via Zoho Directory Sync (ZDSync) tool. This tool performs a one-way synchronization from your existing LDAP server to the Zoho Directory Admin Panel. This enables you to maintain all your user identities in a single place, without having to add, edit, or disable user accounts manually in the Admin Panel. As the synchronization always happens from AD to Zoho, the data in AD is never compromised. 

Active directory sync works with supported third-party services integrated through Zoho Directory. Learn about importing users from third party services in Zoho Directory.

Zoho Directory Sync Tool Functions:

1. Queries your LDAP Server.
   
2. Queries your Zoho Account.
3. Compares the data in the two lists.
4. Curates any changes during comparison.
5. Updates your Admin Panel with all necessary changes.
   

Click here to learn more about Active Directory Sync and to download Password Sync Agent (windows). 
For setup and configuration steps, Click here.

Sign-in Activity

Monitor active users, and view recent sign-in activities. Additionally, view user login history, usage, see reports, and more.

To access this feature:

1. In The Zoho Directory Integration page, (Settings > Integrations > Zoho > Zoho Directory). Select the Reports tab. Under Applications, click Sign-in activity.
   
   
   
   
2. Select Users from the side menu to view list of all your Active users.
   
3. Click on the user whose activity you wish to view and choose Account Activity (refer below image).
   
4. On clicking that you will see details such as the IP address from where the user accessed Cliq and the login time.
   
   
   

Frequently Asked Questions (FAQ)

1. Do I need a Zoho Directory account to use Zoho People?

No. You can run Zoho People independently, but Zoho Directory makes user and access management easier across Zoho apps.

Go to the Applications tab in your Zoho Directory account and search and add People from your Zoho Directory account. 

2. How do I sync users from Active Directory/LDAP into Zoho People?

Set up AD/LDAP sync in Zoho Directory. All synced users and groups automatically appear in Zoho People.

3. Can Zoho Directory handle single sign-on (SSO) for Zoho People and third-party apps?

Yes. You can configure SSO once in Zoho Directory and it applies to Zoho People/Plus supported external apps.

4. What happens to users in Zoho People if I disable or delete them in Zoho Directory?

The change reflects automatically—disabled or deleted users lose access to Zoho People and other linked apps.

5. How do security policies (MFA, password rules) set in Zoho Directory affect Zoho People logins?

All users logging in to Zoho People must follow the policies you configure in Zoho Directory.

6. Can I use Zoho Directory to manage multiple Zoho People portals under one organization?

Yes. You can manage several Zoho People portals from the same Zoho Directory organization.

7. Is there an additional cost for using Zoho Directory with Zoho People?

No. Zoho Directory’s core features are included with Zoho People; advanced features require paid Zoho Directory plans or add-ons. Learn more about Zoho Directory pricing. 

8. How do I integrate Zoho Directory with Microsoft 365/Google Workspace so users can sign in to Zoho People?

Enable the respective integration in Zoho Directory, map users, and they’ll be able to log in to Zoho People using their Microsoft 365 or Google credentials.

If your facing any issues with active directory sync or single-sign on, kindly reach contact support at support@zohodirectory.com.

Domain verification is mandatory to manage users added through domain-based email IDs in Zoho People and Zoho Directory.