Zoho Survey | SAML Authentication

SAML Authentication

     Security Assertion Markup Language (SAML) is a mechanism that facilitates the exchange of authorized and authenticated data across applications. It is specifically designed to facilitate communication between an identity provider (IdP) like OneLogin, Microsoft Azure AD, Okta, or Auth0 and a service provider like Zoho Survey.
Administrators can configure SAML-based single sign-on (SSO) for end users, so they can access your shared survey reports without being prompted to enter separate login credentials.
      In SAML single sign-on authentication, an identity provider and a service provider—in this example, Okta and Zoho Survey—are involved. Once SAML is enabled, your identity provider (IdP) handles authentication and end-user management. When a user tries to access Zoho Survey's reports, they will be sent to your identity provider to complete the authentication process. After verifying the end user's identity, the identity provider creates an authentication assertion to show that the user has been verified. The end user is seamlessly signed in and sent back to your authenticated survey report upon getting the claim. Your end-user credentials are safe behind your company's firewall boundaries thanks to SAML, which acts as a single point of authentication with your trusted identity provider.
       If a company establishes a SAML-based SSO, the identity provider handles authentication for viewing the shared reports. Given the prevalence of working with diverse cloud-based apps and services in business processes, implementing SAML-based SSO simplifies user access to multiple applications using the same login credentials. This streamlines access to different systems, enhancing overall security.

Use Case:

As a Marketing manager at Zylker Corp, you are planning to share specific survey reports in Zoho Survey with individuals outside your organization. Since security and ease of access are of priority here, you are integrating one of the best identity providers, Okta with Zoho Survey as the service provider through SAML for individuals to access the shared reports in Zoho Survey. This integration establishes a Single Sign-On (SSO) mechanism, allowing effortless access to Zoho Survey's shared reports via Okta authentication, simplifying the login process for individuals outside your organization.

To enable SSO in your Zoho Survey application:

  1. Click Manage Portal in the user info widget.

  1. Click Configure in the SAML Authentication section.

  1. In the SAML Authentication - Add Configuration screen, enter the name of the configuration.

  1. Under Identity Provider Details, enter the Remote Login URL and Remote Logout URL, and Public Key of the Identity Provider.

  1. To upload the Public Key, click on Browse.

  1. Click Add.

To copy the SAML Response URL:

  1. Click Manage Portal in the user info widget.

  1. Click Configure in the SAML Authentication section.

  1. In the SAML Authentication - Add Configuration screen, click Copy next to the SAML Response URL.

To set up SSO for your Zoho Survey resources:

Okta  

Okta is an identity management platform that can be configured to provide Single Sign-On (SSO) functionality for your Zoho Survey resources. With this configuration, users can seamlessly access both Okta and Zoho Survey resources using a single set of login credentials.

 

To set up SSO for your Zoho Survey resources using Okta:

  1. Log in to your Okta resources with administrative privileges.

  1. Click the Applications tab.

  1. Click Add Application and then click Create New App.

  1. On the pop-up window, select the SAML 2.0 option and then click Create.

  1. In the General Settings page, provide a name for the application. For example, Zoho Survey.

  1. Click Next to continue.

  1. In the Configure SAML page, do the following:

    • Single sign on URL - Paste the value for SAML Response URL from the SAML screen in Zoho Survey.

    • Audience URI (SP Entity ID) Paste the value for Entity ID from the SAML screen in Zoho Survey.

    • Name ID format - Specify as EmailAddress.

  1. Click Next to continue.

  1. Click Finish. The Sign On section of your newly created application appears.

  1. Click View Setup Instructions on the Sign On tab. It opens a new window to the IdP settings.

  1. On the IdP Settings window, do the following:

    • Copy the Identity Provider Single Sign-On URL and paste it into the Remote Login URL field in Zoho Survey SAML page.

    • Copy the Identity Provider Issuer and paste it into the Remote Logout URL field in Zoho Survey SAML page.

    • Copy the Identity Provider Single Sign-On URL and paste it into the Reset Password URL field in Zoho Survey SAML page.

    • Copy the X.509 Certificate and save it to a .txt file or download the certificate. Then upload the file into the Public Key field in Zoho Survey SAML page.

  1. Click Save.

  1. Now you must select the users to whom you wish to give access to the SAML-enabled Survey. To do this:

    • Click the Applications tab and select your newly created application on Okta.

    • Click on the Assignments section of the application.

    • Click Assign and then select Assign to People.

    • In the pop-up window, type your username into the search box and then click  Assign next to your username.
      Repeat this step to add more users.

  1. Click Done to exit the assignment wizard.

OneLogin  

OneLogin is an identity management and Single Sign-On (SSO) solution that can be configured to provide seamless access to your Zoho Survey resources. By integrating OneLogin as the Identity Provider (IdP) with Zoho Survey resources as the Service Provider (SP) using SAML, users can securely log in to the resources with a single set of credentials.

  1. Log in to your OneLogin resources.

  1. Go to Apps Add Apps in the OneLogin administrator dashboard.

  1. Search for 'SAML Test Connector (IDP) SAML 2.0' and select the first result from the search results.

  1. When the Configuration tab appears, provide a name for the application. For example, Zoho Survey.

  1. Click Save.
    Now, additional tabs appear, and you land on the Info tab.

  1. Click the Configuration tab and enter the following details:

    • Recipient - Paste the value for Entity ID that you copied from the SAML screen in Zoho Survey.

    • ACS (Consumer) URL Validator - Paste the value of  SAML Response URL here as well.

    • ACS (Consumer) URL - Paste the value of  SAML Response URL here as well.

  1. Once done, click the SSO tab and do the following:

    • Copy the SAML 2.0 Endpoint (HTTP) URL and paste it into the Remote Login URL field in Zoho Survey SAML page.

    • Copy the  SLO Endpoint (HTTP) URL and paste it into the Remote Logout URL field in Zoho Survey SAML page.

    • In the X.509 Certificate field, click View Details and save the contents or download the certificate. Then upload the file into the Public Key field in Zoho Survey SAML page.

  1. Now you must select the users to whom you wish to give access to the SAML-enabled survey. To do this:
    Click the Users tab and then select the required user to add the app to individual user resources.

  1. Click Save.

Auth0  

Auth0 is an identity management platform that can be configured to provide Single Sign-On (SSO) functionality for your Zoho Survey resources. To configure Auth0 for SSO with Zoho Survey resources, you will need to follow the below-given steps. This involves setting up a connection between Auth0 and Zoho Survey resources, configuring the necessary SSO settings, and mapping user attributes between the two systems.

  1. Log in to your Auth0 resources.

  1. Go to Dashboard Applications.

  1. Click the + CREATE APPLICATION button on the right.

  1. In the Name field, enter a name for the application. For example, Zoho Survey.

  1. Select the type of Application you want to create.

  1. Click Save.

  1. Go back to Dashboard Applications.

  1. Find the application you just created in Step 4, and click the Gear icon corresponding to it.

  1. Scroll down and click on the Advanced Settings link.

  1. In the expanded window, click the Download Certificate button under the Certificates section.
    The downloaded certificate will be a .pem file.

  1. Now scroll backup and click on the Addons tab. Then enable the SAML2 WEB APP option. You will see a screen asking you to provide additional configuration information.

  1. On the Settings section of the screen, enter the following details:

    • Application Callback URL - Paste the value for SAML Response URL that you copied from the SAML screen in Zoho Survey.

    • Click Save.

  1. In the Addon SAML2 Web App popup, click the Usage tab and do the following:

    • Copy the Identity Provider Login URL and paste it into the Remote Login URL.

    • Upload the certificate you saved in Step 10 into the Public Key field in Zoho Survey SAML page.

  1. When done, click Save in Zoho Survey.

Microsoft Azure AD  

Microsoft Azure Active Directory (Azure AD) is a cloud-based identity and access management service provided by Microsoft. It can be configured to provide Single Sign-On (SSO) functionality for your Zoho Survey resources. 

 

To configure Azure AD for SSO with Zoho Survey resources, you will need to follow specific steps. This involves setting up an Enterprise Application in Azure AD, configuring the necessary SSO settings, and mapping user attributes between Azure AD and Zoho Survey resources.

  1. Sign in to your Azure AD portal with administrator resources.

  1. In the Azure portal, go to Manage Microsoft Entra ID and click View.

  1. On the left navigation pane, select Enterprise Applications and then All Applications.

  1. Click the New Application button.

  1. In the search box, type SAML SSO, select Confluence SAML SSO by Microsoft from the result panel then click Add to add the application to your portal.

  1. Navigate back to Enterprise Applications and then click Confluence SAML SSO by Microsoft app.

  1. Click Single sign-on and then choose SAML for Mode.

  1. On the Set up Single Sign-On with SAML page, click the Edit icon to open Basic SAML Configuration dialog.

  1. On the Basic SAML Configuration section, do the following:

    1. In the Identifier text box, enter the Entity ID from Zoho Survey
      Note: If the IdP doesn't support a duplicate Identifier, you can edit the Entity ID field in Zoho Survey to select the alternative and enter the same.

    1. In the Reply URL and Sign-on UR text box, paste the value for SAML Response URL that you copied from the SAML screen in Zoho Survey.

    1. Check the radio boxes for the entered values.

    1. Click Save at the top of the page.

  1. On the Set up Single Sign-On with SAML page, click the Edit button to open User Attributes & Claimsdialog.

  1. In the User Attributes section on the User Attributes & Claims dialog, do the following:

    1. Click the Edit icon to open the Manage user claims dialog.

    1. From the Source attribute list, select the attribute value user.mail.

    1. Click Save.

  1. Go to the SAML Signing Certificate menu and do the following:

    1. In the Signing Option drop-down list, choose Sign SAML response.
      This enables Azure AD to sign the SAML response with the X.509 certificate of the application.

    1. Click Save to apply the new SAML signing certificate settings.

    1. Download the certificate by clicking Certificate (PEM).

  1. Go to Set up Confluence SAML SSO by Microsoft menu and do the following:

    1. Copy the Login URL and paste it into the Remote Login URL field in Zoho Survey SAML page.

    1. Copy the Logout URL and paste it into the Remote Logout URL field in Zoho Survey SAML page.

    1. Upload the certificate you saved in Step 12 into the Public Key field in Zoho Survey SAML page.

  1. Click Save.

Access:

SAML feature is available exclusively in the Enterprise plan of Zoho Survey


    Zoho CRM Training Programs

    Learn how to use the best tools for sales force automation and better customer engagement from Zoho's implementation specialists.

    Zoho CRM Training
      Redefine the way you work
      with Zoho Workplace

        Zoho DataPrep Personalized Demo

        If you'd like a personalized walk-through of our data preparation tool, please request a demo and we'll be happy to show you how to get the best out of Zoho DataPrep.

        Zoho CRM Training

          Create, share, and deliver

          beautiful slides from anywhere.

          Get Started Now


            Zoho Sign now offers specialized one-on-one training for both administrators and developers.

            BOOK A SESSION








                                You are currently viewing the help pages of Qntrl’s earlier version. Click here to view our latest version—Qntrl 3.0's help articles.




                                    Manage your brands on social media

                                      Zoho Desk Resources

                                      • Desk Community Learning Series


                                      • Digest


                                      • Functions


                                      • Meetups


                                      • Kbase


                                      • Resources


                                      • Glossary


                                      • Desk Marketplace


                                      • MVP Corner


                                      • Word of the Day


                                        Zoho Marketing Automation

                                          Zoho Sheet Resources

                                           

                                              Zoho Forms Resources


                                                Secure your business
                                                communication with Zoho Mail


                                                Mail on the move with
                                                Zoho Mail mobile application

                                                  Stay on top of your schedule
                                                  at all times


                                                  Carry your calendar with you
                                                  Anytime, anywhere




                                                        Zoho Sign Resources

                                                          Sign, Paperless!

                                                          Sign and send business documents on the go!

                                                          Get Started Now




                                                                  Zoho TeamInbox Resources



                                                                          Zoho DataPrep Resources



                                                                            Zoho DataPrep Demo

                                                                            Get a personalized demo or POC

                                                                            REGISTER NOW


                                                                              Design. Discuss. Deliver.

                                                                              Create visually engaging stories with Zoho Show.

                                                                              Get Started Now







                                                                                            You are currently viewing the help articles of Sprints 1.0. If you are a user of 2.0, please refer here.

                                                                                            You are currently viewing the help articles of Sprints 2.0. If you are a user of 1.0, please refer here.



                                                                                                  • Related Articles

                                                                                                  • Domain Authentication

                                                                                                    Domain Keys Identified Mail (DKIM) is an email authentication method by which you can improve email deliverability. With this feature implemented, users can now authorize Zoho Survey to send emails on their behalf. This increases the chances of them ...
                                                                                                  • Sender Email Authentication

                                                                                                    A sender address is the 'From' address used to send email surveys to contacts or for sending email notifications via Trigger emails. The sender's address assists recipients in identifying your brand or business. How to use Sender Email Authentication ...
                                                                                                  • Trigger Functions

                                                                                                    Zoho Survey is integrated with Deluge, our online scripting language, which can help you add functions to automatically perform actions when responses are submitted. Use Deluge and APIs to create connections and push data to third-party services or ...
                                                                                                  • Share Report

                                                                                                    You can share your reports publicly, or with colleagues, survey respondents, and organizations. You can also secure shared reports with a password. To share a report: Click Share in the top-right corner of the page. Enter a name for your report in ...
                                                                                                  • Webhook

                                                                                                    Trigger a webhook whenever someone responds to your survey. You can send the data you received in the callback URL to various other services, and process this data to use however you want. To configure webhook: Click the Hub tab. Click the Triggers ...
                                                                                                    Wherever you are is as good as
                                                                                                    your workplace

                                                                                                      Resources

                                                                                                      Videos

                                                                                                      Watch comprehensive videos on features and other important topics that will help you master Zoho CRM.



                                                                                                      eBooks

                                                                                                      Download free eBooks and access a range of topics to get deeper insight on successfully using Zoho CRM.



                                                                                                      Webinars

                                                                                                      Sign up for our webinars and learn the Zoho CRM basics, from customization to sales force automation and more.



                                                                                                      CRM Tips

                                                                                                      Make the most of Zoho CRM with these useful tips.



                                                                                                        Zoho Show Resources