Cinq façons de sécuriser votre organisation sur Zoho One

Bonjour à tous,

Le fait que vos données soient accessibles en ligne demande à ce que leur sécurité soit garantie. En effet, le mot de passe peut ne plus s'avérer aussi efficace qu'avant, notamment lorsqu'il s'avère être d'une faible intensité. Un article de CNN indique que "123456" est toujours le mot de passe le plus utilisé à ce jour !

Vous pouvez heureusement sécuriser votre entreprise déjà en demandant à vos employés d'utiliser des mots de passe robustes, mais également grâce à nos astuces ci-dessous.

1. La surveillance des incidents

Vous pouvez surveiller et identifier les erreurs et problèmes relatifs aux connexions. Le tableau de bord de Zoho One est en effet un outil pratique qui identifie les menaces auxquelles votre organisation est confrontée : le graphique "Détails des connexions" vous permet d’évaluer les tentatives de connexion de tous les utilisateurs, l’emplacement et l’heure de la tentative, et même l’appareil utilisé pour la connexion. Une fois que vous savez où sont vos problèmes, vous pouvez commencer à les résoudre.

2. La gestion des accès

Gérer l'accès des utilisateurs est le B.A-ba de la sécurité. En effet, avec le changement des pratiques de travail et du télétravail, la gestion des accès est plus importante que jamais dans le sens où vous voulez être sûr que seules les bonnes personnes aient accès aux bons modules et avec les droits nécessaires.

Un écueil commun pour la plupart de nos utilisateurs est d’activer toutes les applications dans leur bundle Zoho One immédiatement et d’en accorder l'accès total à tout le monde. Or, vos agents d’assistance n’ont sans doute pas besoin d’accéder à Zoho Books ou Zoho Campaigns. Accordez un peu de temps à la stratégie et configurez la gestion des accès de vos utilisateurs en conséquence.

Gestion continue des accès avec Zoho One - Suivre régulièrement l’accès de vos utilisateurs et effectuer des modifications manuellement pourrait s’avérer difficile à tenir à long terme. C’est pourquoi nous vous suggérons d’utiliser les affectations conditionnelles dans Zoho One. L’affectation conditionnelle peut affecter automatiquement des applications aux utilisateurs existants et futurs en fonction de conditions basées sur des règles. Vous pouvez configurer une condition pour attribuer des rôles d’application spécifiques à des utilisateurs spécifiques, renforçant ainsi la sécurité basée sur l’accès.

Points d'accès sécurisés et fiables- Sécuriser l’accès physique est tout aussi important que sécuriser l’accès numérique. Nous vous suggérons fortement d’utiliser la fonction "IP autorisée" de Zoho One pour empêcher l'accès à partir d'une autre adresse IP que celle rentrée.. Cette fonctionnalité permet à vos utilisateurs d’accéder à leurs comptes Zoho One uniquement à partir d’adresses IP que vous aurez spécifiquement définies et de limiter les risques en n'autorisant que ce mode de connexion.

3. La délégation de sécurité

Imaginons un propriétaire d’organisation Zoho One qui partage ses identifiants avec un gestionnaire des RH, ce qui permet à ce dernier d’ajouter de nouveaux employés à l’organisation. Même si les raisons derrière l’action sont innocentes, elles peuvent entraîner des problèmes plus conséquents à long terme. C'est un exemple anodin de ce qu'il ne faut pas faire si vous souhaitez garder la main sur vos données. Si vous vous trouvez dans une situation où vous avez besoin de personnes supplémentaires pour gérer votre organisation Zoho One, nous vous suggérons fortement d’utiliser Zoho One Admins et Appli Admins pour déléguer des responsabilités — et seulement les responsabilités ! — en toute sécurité.

4. Connexion unique

Quand on parle de connexion unique (SSO), les gens ont tendance à se concentrer sur la convenance et la facilité d’utilisation. Cependant, le plus grand avantage de SSO est la sécurité. Non seulement il élimine l’utilisation de plusieurs mots de passe et la horde de problèmes qu’ils apportent, il suit également la norme SAML 2.0, assurant que seuls vos utilisateurs peuvent accéder à vos applications.

Pour en savoir plus sur le SAML, consultez ce lien de la vidéo.

5. Authentification multi facteur (AMF) fondée sur les politiques

L’utilisation de l'AMF est le premier conseil donné aux organisations par presque tous les experts en sécurité. Il comporte en effet plusieurs avantages :

Sécurité plus robuste - Le fait d’avoir une deuxième forme d’identification réduit considérablement les risques d'avoir les données exposées après un mot de passe piraté. La deuxième authentification qui vous demande confirmation attestera qu'il s'agit bien de vous.

Amélioration de la productivité et la souplesse- Nombreuses organisations qui ont adopté le télétravail, reconnaissent la productivité qu'il a apportée. Les employés ont leur propre marge de manoeuvre pour accéder à leurs données en toute sécurité, et ce d'où qu'ils soient : depuis chez eux, depuis un de leurs appareils, l'accès aux données reste sécurisé grâce à cette double authentification qu'ils peuvent configurer selon leurs moyens (QR Code, code, empreinte...).

Baisse du coût du service d’assistance et de gestion de la sécurité - L’authentification multi facteur permet de réduire le temps de réinitialisation des mots de passe. Leur laisser la main pour définir leur mot de passe et leur propre AMF permet de ne pas recourir au service informatique et d'épargner à tous de perdre du temps. Surtout à distance !

Une organisation peut établir sa propre sécurité en réglant elle-même ses politiques dans Zoho One. Nous vous suggérons de créer plusieurs politiques de sécurité avec différents degrés de sécurité, et de les appliquer aux utilisateurs en fonction de leur facteur de risque. Demandez-vous quels employés traitent les données les plus sensibles de votre organisation. Par exemple, les administrateurs de systèmes ou les directeurs de la paie peuvent avoir besoin de politiques de sécurité plus strictes que les agents de vente et marketing.

N'hésitez pas à nous partager votre expérience en commentaire.

L'équipe Zoho France

• Topic Participants

• Kinjal Lodaya

  

• Sticky Posts

• Collaboration sans faille avec Zoho One

  Bonjour à tous, Dans cet article nous allons voir comment Zoho One permet une collaboration à différents niveaux .       La façon dont nous travaillons évolue. À mesure que les entreprises se mondialisent, la plupart des activités sont menées en équipe.

• Recent Topics

• Website show Blank white screen

  Customer called me to tell me my website is currently down upon review it shows a white screen however I can access everything via editor. JITCADCAM.com

• How manufacturing analytics can transform your enterprise with Zoho Projects Plus

  Did you know that every single car is made up of 30,000 to 40,000 individual parts? All of these are manufactured meticulously in various facilities before being assembled into one. The global manufacturing industry spans a wide range from delivering

• Projects custom colors replaced by default orange

  Since yesterday, projects uploaded to Zoho, to which I had assigned a custom color, have lost the customization and reverted to the default color (orange). Has anyone else had the same problem? If so, how did you resolve it?

• Customize your SalesIQ live chat with Custom CSS and blend it with your website design

  Hi everyone. Hope you all are having a great day! SalesIQ offers various inbuilt customization choices for your chat widget and window like changes in colour, theme, font etc. Although these choices are many, sometimes they may not match with the design

• From Email Address When Replaying to Missed Chats

  One of the most common things we do is follow up on every missed chat.  Missed chats are like money in the bank, people just waiting for your response and to start a relationship with our companies. However, SalesIQ only lets you respond from 1 email address from your entire account?! We have happily paid for 4 subscriptions, but our users cannot reply from their own email address?  How are we supposed to build customer relationships? The fix to this issue is so simple, just load in the logged in

• how to treat a same person as customer and vendor in zoho

  hi team, in my company, few persons acting as creditors as well as debtors (which means sometimes we pay them... some times we paid by them). in that case i would like to maintain a same ledger for that person.in zoho books it is treating creditor and

• Narrative 6 - The impact of rebranding

  Behind the scenes of a successful ticketing system - BTS Series Narrative 6 - The impact of rebranding Every organization has invested in branding to set itself apart, and that should be reflected in the help desk. Zoho Desk enables organizations to apply

• custom color palette for picklist in Sheet

  Migrating over from Google Sheets and missing the ability to customize the individual item colors of my picklist/dropdown menus. Is this something that is possible? A search showed me creating a custom color palette in Analytics is possible but I am not

• What's New - July 2025 | Zoho Backstage

  Start smart, end strong. From knowing who’s coming to celebrating who showed up, July’s updates help you run events that feel organized from the first invite to the final thank you. Planning an event used to be like writing a choose-your-own-adventure

• Image Upload Field API get encrypted ID and sequence number

  Hello is there a way to extract the encrypted id and sequence number from image upload fields through the Zoho CRM API? I created a custom script with javascript within Zoho CRM, but I want to extract the encrypted id and sequence number for all my images

• Attention: Changes to 10DLC TCR pricing and new authentication requirements

  Hi everyone, Starting August 1, 2025, The Campaign Registry (TCR) is introducing new pricing changes and a mandatory brand verification process called Authentication+ 2.0, which will affect how you register and manage your 10DLC messaging services. These

• Better Time Tracking

  We need better time tracking customization for IT MSPs. We also need reporting that is built in, rather than having to try and fumble with creating custom reports. We also need to be able to mark whether a ticket has been billed or not, I don't think

• Scheduled Tickets Need Updated

  There is a very clunky manual way to create reoccurring scheduled tickets. This should be created to be easy for the administrator to create. We create several (10 to 12) reoccurring tickets per account for biweekly and monthly auditing purposes.. The

• Team Feeds Improvements

  Team Feeds needs to show a feed of every action within the department. Currently it seems that the feed will only show a ticket that I've personally commented on or interacted with/followed. A feed should be that, a feed. As a manager I would like to

• Better Security, Better User Experience | Help Center Update | June'25

  As part of our commitment to enhancing user experience and security, we are happy to announce updates to our authentication mechanism. This update introduces several key enhancements designed to improve the password recovery process and streamline the

• Upload Logo to Account Page

  It would be nice to set a logo for an Account

• View Agent Collision on Ticket List Page

  It would be nice from the ticket listing page (views) to see what agents are working on what tickets rather than having to click into each ticket throughout the day to see what agents are working on what tickets. This functionality would also be desired

• Restrict user from viewing the detail standard view

  Is there any way to restrict a user(it can be user-field-based) from viewing the detail standard view? Basically, I have created a canvas detailed view so that on some conditions I can hide some data from the users but the standard view client script

• Upload Picture to Contact

  It would be nice to upload a profile picture to a contact.

• Ticket Status Colors

  Can i change the colors of Ticket Status in the admin panel? Or even change the background of the entire cell of a Critical ticket? This way its easy for my agents to see a urgent ticket when it comes in. Right now everything is black text. Here Right

• Allowing Pictures for Client Contacts

  Do you have any plans to allow us to add pictures of our client contacts? There is a silhouette of a person there now, but no way that I can see where I can actually add a picture of the individual.

• Paid Support Plans with Automated Billing

  We (like many others, I'm sure) are designing or have paid support plans. Our design involves a given number of support hours in each plan. Here are my questions: 1) Are there any plans to add time-based plans in the Zoho Desk Support Plans feature? The

• Agent name Alias

  I am seeing that Full name of my staffs are written on every ticket response which is not good for some reasons. It is possible to user like this: Manny P. (First Name with Last Name's First Letter) or  Manny (First Name) This is want we want to show

• Unable to add attachments to tickets through Desk API

  I able to use the Desk API to generate tickets. However when I try to use the tickets/{ticketId}/attachments endpoint, I always get an Unauthorized error. My app has Desk.Tickets.ALL included in its scope so this should not be an issue

• What's wrong with this COQL?

  What's wrong with this COQL? Code returns "invalid operator found". SELECT id, Name, Stage, Account, Created_Time, Tag FROM Production_Orders WHERE (Account = '4356038000072566002' AND Stage NOT LIKE '%customer%') ORDER BY Created_Time DESC LIMIT 200

• [Feature Request] Add support for internationalized top-level domains mail hosting

  This is an important request to add support for internationalized domains mail hosting to https://www.zoho.com/mail/ In this case, that is only limited to domain name/mail address however currently it's already possible for us send mails etc using below

• Add Enable/Disable to Field Rules and other Rules

  Hi, Sometimes I have rules setup for fields, and until I want to enable them for use, I can set the fields to Hidden but rules still show them, today you have to delete rules and then recreate them again, would be nice to have a toggle for Enabled/Disabled

• Syncing stuck for days

  Hello when I made an account a few days ago and synced all my notes to it, it is still syncing. My app is only 400mb so I do not know why it is taking so long. Please help

• Workflow runs on every edit despite not ticking the field repeat this workflow whenever a parent is edited.....

  Hi, It is my understanding that this workflow should only trigger once. Why is this triggering on every edit of the field? Based on another support query - directly from Zoho, If i tick the box 'repeat this workflow whenever a parent is edited' it should

• How do you add or update tags on Zoho CRM records via n8n? (Workarounds or best practices?)

  Hi all, I’m running into some limitations with the Zoho CRM node in n8n and was wondering how others have handled this: From what I see, the standard Zoho CRM node in n8n doesn’t allow you to add or update tags when creating or updating contacts/leads.

• API PARAMETER FOR TICKET CLOSED TIME

  Hi, Is there a parameter for filtering tickets by closed time in zoho api, i can see closed time in the API response i get, but can't get tickets by that field while calling. Regards, Anvin Alias

• Reply to email addresses wrong.

  I have setup my Zoho mail account using my main domain and I also have an Alias setup from a different domain. In Settings - Mail - Compose I have selected to the option "For replies, send using The same email address to which the email was sent to".

• Audio/video quality issues with Zoho Meeting – Any roadmap for improvement?

  Hi Zoho Team, We’ve been using Zoho Meeting for both internal and external meetings, and unfortunately, the experience has been consistently poor. The video and audio quality are so unreliable that it often renders meetings ineffective—especially with

• Meeting integration with Otter.ai

  Would love for an integration with an AI transcription service like Otter.ai to be integrated with Zoho Meeting. Thanks

• How to close/delete a free creator account?

  I have a free zoho creator account associated with my email address that is not being used.  I want to become a user of another paid zoho creator account but I can not associate with the paid account with the same email.  I assume if I can close or delete the free account I will be able to use the paid account. I have emailed support but no response. Suggestions?

• Zoho books and zapier causes Invalid data provided

  I have been using zoho books with zapier for over 2 years now, everything was working fine. On September 13th my zaps stopped working. Now on step create sales invoice in zoho books i get an error: Failed to create a create_invoice_v2 in Zoho Books The

• CRM report

  Is it possible to pull a contacts report that also includes the company industry, as well as the company name? I’m having trouble combining company and contact fields – any help is appreciated. Thank you, Sam

• Early Payment Discount customize Text

  Hi, I’m currently using Zoho Books and am trying to customize the standard “Early Payment Discount” message that appears in the PDF invoice template. I’ve reviewed the documentation here: https://www.zoho.com/books/help/invoice/early-payment-discount.html

• Enhancements to Client script?

  Hi Zoho CRM, I've been extensively using Client Scripts to enhance our Deal form experience, particularly for real time validations and auto updating fields based on specific logic. However, I've encountered a challenge regarding permission boundaries.

• Add views to new CRM UI navigation + Unlimited Webtabs

  Zoho CRM is so close now to being the ultimate business application with the new UI, as soon as this one feature is added. This is probably where Zoho is headed but if it's not I want to BEG for this to be incorporated. What we need is to be able to put

• Next Page