Security Enhancements | Migrate to the Updated Policies

Hello everyone,

Zoho Directory's security policies have been updated and reorganized into three new policies with features that enhance the overall organization security. These policies provide a stronger and more secure sign-in methods and improve the user authentication experience.

Earlier, security policies comprised four dedicated components: Password Policy, Multi-Factor Authentication (MFA), Allowed IPs, and Advanced Settings. Based on these components, each group was assigned a policy that determined their sign-in process. Depending on their roles and responsibilities, the sign-in method varied and upon successful authentication, users were granted access to Zoho Directory.

With the latest update, the policies are divided into three parts: Conditional Access Policies, Routing Policies, and Security Policies.

1. Routing Policies acts as an initial check when a user signs in. 
   
2. Conditional Access Policies determines whether the user's access should be allowed or denied based on the predefined criteria.
   
3. Security Policies provide you with a dedicated Password Policy and Session Settings.
   

Additionally, Custom Authentication has been renamed and is now a part of Routing Policies.

New Policies:

Conditional Access Policies | Routing Policies | Security Policies

To understand how your existing policies are handled and mapped to the new policies during the migration process, click here.

Before migrating to the updated policies, quickly review how the policies are changed.

Existing Policies	Updated Policies
Password Policy	Security Policies Password Policy is a part of Security Policy. Learn more.
Multi-Factor Authentication (MFA)	Conditional Access Policies Multi-Factor Authentication (MFA) is a part of Conditional Access Policies. MFA acts as an Action (Allow with MFA) under this policy. Learn more.
Allowed IPs	Conditional Access Policies Allowed IPs is a part of Conditional Access Policies. It acts as a condition (IP address) under the policy. Learn more.
Advanced Settings 1. WEB SESSION MANAGEMENT 2. LOCK PERIOD SETTINGS	1. Routing Policies Session Lifetime and Idle Session Timeout are a part of Session Settings under Routing Policies. Learn more. 2. Security Policies Concurrent Sessions, and Lock Period Settings are a part of Advanced Settings under Security Policies. Learn more.
Custom Authentication	Routing Policies This section is renamed as Identity Providers and can be enabled via Routing Policy. Learn more.

How to Migrate?

Existing users with pre-configured policies will come across the Migration Page, which guides them through reviewing, resolving the conflicts and adopting the new policies. On this page, you will be required to complete the steps before migrating.

1. Demo: Watch a quick demo to understand what’s changed and updated.
   
2. Read the Changes: View a detailed document that outlines all the updates.
   
3. New Admin Role: Configure the new admin role to replace the existing Helpdesk Admin role as it will no longer have permission to manage security operations.
   Note: This section is displayed only if at least one user is assigned to the Helpdesk Admin role.
   
4. Custom Admin Role: Review the changes in the custom roles. 
   
   Note: This section is displayed only if a custom security role has been created and assigned to a user.
5. Sandbox Mode: Preview the updated policies in sandbox mode before migrating

After completing these steps, you can proceed with migrating to the updated security policies.

FAQs

1. What happens if I don't migrate? 
   You can continue using the existing security policies (old version) until you migrate to the updated policies.
   
2. What will happen to my existing policies? 
   Your existing security policy configurations will be migrated to the new policy framework. To understand how your existing policy setup is mapped to the updated policies, click here.
   
3. Who can perform this migration? 
   Only the Organization Owner or Organization Admin can perform the migration.
   

Regards,

The Zoho Directory Team.

• Topic Participants

• Reena Rai N

  

• Recent Topics

• Add an option to disable ZIA suggestions

  Currently, ZIA in Zoho Inventory automatically provides suggestions, such as sending order confirmation emails. However, there is no way to disable this feature. In our case, orders are automatically created by customers, and we’ve built a custom workflow

• Formula field with IF statement based on picklist field and string output to copy/paste in multi-line field via function

  Hello there, I am working on a formula field based on a 3-item picklist field (i.e. *empty value*, 'Progress payment', 'Letter of credit'). Depending on the picked item, the formula field shall give a specific multi-line string (say 'XXX' in case of 'Progress

• Unified Directory : How to Access ?

  I signed in to Zoho One this morning and was met with the pop up about the upgraded directory (yay!) I watched the video and pressed "Get Started" ... and it took me back to the standard interface. How do I actually access the new portal/directory ?

• Zoho CRMの流入元について

  Zoho CRMとZoho formsを連携し、 formsで作成したフォームをサイトに埋め込み運用中です。 UTMパラメータの取得をformsを行い、Zoho CRMの見込み客タブにカスタム項目で反映される状況になっています。 広告に関してはUTMパラメータで取得できているため問題ないのですが、オーガニック流入でフォーム送信の場合も計測したいです。メールやGoogle、Yahoo、directなどの流入元のチャネルが反映されるようにしたいのですが、どのように設定したら良いでしょうか。 また、

• Error While Sign in on Zoho Work Drive

  Dear Team, I hope this email finds you well. I have recently created a Zoho account and started using it. But while I am trying to log in to Zoho work drive it won't log me in its crashing every time I try it. I have tried it on android app, phone browser

• Choosing a portal option and the "Unified customer portal"?

  I am trialling Zoho to replace various existing systems, one of which is a customer portal. Our portal allows clients to add and edit bookings, complete forms, manage their subscriptions and edit some CRM info. I am trying to understand how I might best

• Translation support expanded for Modules, Subforms and Related Lists

  Hello Everyone!   The translation feature enables organizations to translate certain values in their CRM interface into different languages. Previously, the only values that could be translated were picklist values and field names. However, we have extended

• Unified task view

  Possible to enable the unified task view in Trident, that is currently available in Mail?

• Importing data into Assets

  So we have a module in Zoho CRM called customers equipments. It links to customers modules, accounts (if needed) and products. I made a sample export and created extra fields in zoho fsm assets module. The import fails. Could not find a matching parent

• Allow instruction field in Job Sheets

  Hello, I would like to know if it is possible to have an instruction field (multi line text) in a job sheet or if there is a workaround to be able to do it. Currently we are pretty limited in terms of fields in job sheets which makes it a bit of a struggle

• Streamlining Work Order Automation with Zoho Projects, Writer & WorkDrive

  Hello Community, Here is the first post in 'Integration & Automation' Series. Use Case :: Create, Merge, Sign & Store Documents in Zoho WorkDrive. Scenario :: You have a standard Work Order template created in Zoho Writer. When a task status is chosen

• The dimensions of multilingual power

  Hola, saludos de Zoho Desk. Bonjour, salutations de Zoho Desk. Hallo, Grüße von Zoho Desk. Ciao, saluti da Zoho Desk. Olá, saudações da Zoho Desk. வணக்கம், Zoho Desk இலிருந்து வாழ்த்துகள். 你好，来自 Zoho Desk 的问候。 مرحباً، تحيات من Zoho Desk. नमस्ते, Zoho

• Multi-line address lines

  How can I enter and migrate the following 123 state street Suite 2 Into a contact address. For Salesforce imports, a CR between the information works. The ZOHO migration tool just ignores it. Plus, I can't seem to even enter it on the standard entry screen.

• Accessing Zoho Forms

  Hi all, We're having trouble giving me access to our company's Zoho Forms account. I can log in to a Forms account that I can see was set up a year ago, but can't see any shared forms. I can log into Zoho CRM and see our company information there without

• Cost of good field

  Is there a way we can have cost of good sold as a field added to the back end of the invoicing procedure and available in reports?

• How to add image to items list in Invoice or Estimate?

  Hello! I have just started using Zoho Invoice to create estimates and, possibly to switch from our current CRM/ERP Vendor to Zoho. I have a small company that is installing CCTV systems and Alarm systems. My question is, can I add images of my "items" to item list in Zoho Invoice and Estimates and their description? I would like to show my clients the image of items in our estimates so they can decide if they like these items. And I tell you, often they choose more expensive products just because

• Issue with the Permission to Zoho Form

  I am getting an error by signing in to zoho form as it is stated that i don't have permission to access this is admin account

• CRM templates

  Hello everyone, In my company we use Zoho campaigns where we set up all newsletters and we use Zoho CRM for transactional emails. I have created some templates in Zoho campaigns but from my understanding i cannot use those in Zoho CRM, right?

• Pending Sales Order Reports

  Pending sale order report is available for any single customer, Individual report is available after 3-4 clicks but consolidated list is needed to know the status each item. please help me.

• Zoho Mail SMTP IP addresses

  We are using Zoho Mail and needs to whitelist IP for some redirections from your service to another e-mails. You can provide IP address list for Zohomail SMTP servers?

• Trying to Add Tasks to Other Users Is Utterly Baffling

  As the title says, the process of trying to create a task for someone in my team is so unintuitive and illogical that I have given up trying to do it. This is a feature that I pay for but it is so poorly devised and implemented that my team has given

• Zoho Campaigns - Why do contacts have owners?

  When searching for contacts in Zoho Campaigns I am sometimes caught out when I don't select the filter option "Inactive users". So it appears that I have some contacts missing, until I realise that I need to select that option. Campaigns Support have

• email forwarding not working

  Your email forwarding service does not work. I received the confirmation email and completed the confirmation, after that nothing and nothing since no matter what I have tried. Shame as everything else was smooth. I spose it's harder to run one of these web based internet mail services than you guys thought!!! can you fix the email forwarding asap PLEASE!

• Google Ads Conversions Not Being Tracked in Zoho CRM

  We have 3 different conversions created in our Google Ads Account. Only one of the 3 conversion types is tracking in Zoho CRM. Our forms are Elementor Forms that are mapped into Zoho CRM. It apprears to me that all leads are showing up in Zoho CRM, but

• Enable Locations for Expense

  Hi, please enable Locations (ex Branches) for Zoho Expense so that there is consistency between this app and Zoho Books. Thanks in advance.

• 无法发送消息;原因:5545.1.8电子邮件传出被阻止。

  求帮助，我的邮箱无法发送邮件，请尽快修复。 我们只是用来做正常的资料寄送，如果贵公司再无理封锁我们的邮箱，我们会改用其他公司的服务。 请尽快解封，ID: 815556404

• in the Zoho Creator i have File Upload field get the file on submission of the form Get the File and upload to Zoho Books

  in the Zoho Creator i have File Upload field get the file on submission of the form Get the File and upload to Zoho Books . how I get the file From zoho creator and upload to Zoho Books . using Api response = invokeUrl [ url: "https://www.zohoapis.com/creator/v2.1/data/hh/l130/report/All_Customer_Payments/"+input.ID

• Generate a link for Zoho Sign we can copy and use in a separate email

  Please consider adding functionality that would all a user to copy a reminder link so that we can include it in a personalized email instead of sending a Zoho reminder. Or, allow us to customize the reminder email. Use Case: We have clients we need to

• Rate Limiting in Zoho Flow (OpenAI API)

  Hi Everyone, We are facing some issues when using Zoho Flow as we have a deluge script running which is making external calls to OpenAI endpoint. Sometimes the response takes more than 30 seconds meaning the script will timeout. We want to implement a

• Placing a condition before converting the LEAD

  Hi,  I need some assistance with Lead conversion. I need to place certain conditions before allowing the user to convert the lead.  For example: up until the certain status's doesn't equal "green" don't allow to convert lead.  I tried creating this using

• it is possible to open a widget via deluge script function

  I have one function that is workflow action I call my fucntion I need to call the internal widget it is possible to open or it have to please tell me the solution

• Creator - Portal Custom Domain

  I will pay $100 in crypto to anyone who can actually get my Creator Custom Domain to function (actually tell me how you got yours to).  Domain verifies, Nothing. I've been fighting it a week, multiple chats to customer service. Clearly I'm doing something wrong.  Some datapoints Domain name itself unimportant, can be a string of numbers.  I need to know what registrars are working for you because GoDaddy does NOT.  Do I need hosting? I've tried both ways and nothing works.  I pushed through Cloudflare

• steps and options to change Domain DNS/Nameservers settings

  Please share the options or steps to change  Domain DNS/Nameservers settings 

• Employees in Leave Policy exceptions

  In the Leave Policies we should be able to add specific employees to the exception list So it will be like All Employees except A,B,C in the exception list, currently we can only add departments etc

• How get stock name from other column ?

  How get stock name from other column ? e.g. =STOCK(C12;"price") where C12 is the code of the stock

• Adding a developer for editing the client application with a single user license

  Hi, I want to know that I as a developer I developed one application and handed over to the customer who is using the application on a single user license. Now after6 months customer came back to me and needs some changes in the application. Can a customer

• Download an email template in html code

  Hello everyone, I have created an email template and I want to download it as html. How can i do that? I know you can do it via the campaigns-first create a campaign add the template and download it as html from there. But what if i don't want to create

• Attachment is not included in e-mails sent through Wordpress

  I have a Wordpress site with Zeptomail Wordpress plugin installed and configured. E-mails are sent ok through Zeptomail but without the included attachment (.pdf file) Zeptomail is used to send tickets to customers through Zeptomail. E-Mails are generated

• Upcoming Changes to the Timesheet Module

  The Timesheet module will undergo a significant change in the upcoming weeks. To start with, we will be renaming Timesheet module to Time Logs. This update will go live early next week. Significance of this change This change will facilitate our next

• Cant update image field after uploading image to ZFS

  Hello i recently made an application in zoho creator for customer service where customers could upload their complaints every field has been mapped from creator into crm and works fine except for the image upload field i have tried every method to make

• Next Page