Cinq façons de sécuriser votre organisation sur Zoho One

Cinq façons de sécuriser votre organisation sur Zoho One



Bonjour à tous,
Le fait que vos données soient accessibles en ligne demande à ce que leur sécurité soit garantie. En effet, le mot de passe peut ne plus s'avérer aussi efficace qu'avant, notamment lorsqu'il s'avère être d'une faible intensité. Un article de CNN indique que "123456" est toujours le mot de passe le plus utilisé à ce jour !
Vous pouvez heureusement sécuriser votre entreprise déjà en demandant à vos employés d'utiliser des mots de passe robustes, mais également grâce à nos astuces ci-dessous.

1. La surveillance des incidents
Vous pouvez surveiller et identifier les erreurs et problèmes relatifs aux connexions. Le tableau de bord de Zoho One est en effet un outil pratique qui identifie les menaces auxquelles votre organisation est confrontée : le graphique "Détails des connexions" vous permet d’évaluer les tentatives de connexion de tous les utilisateurs, l’emplacement et l’heure de la tentative, et même l’appareil utilisé pour la connexion. Une fois que vous savez où sont vos problèmes, vous pouvez commencer à les résoudre.

2. La gestion des accès
Gérer l'accès des utilisateurs est le B.A-ba de la sécurité. En effet, avec le changement des pratiques de travail et du télétravail, la gestion des accès est plus importante que jamais dans le sens où vous voulez être sûr que seules les bonnes personnes aient accès aux bons modules et avec les droits nécessaires.
Un écueil commun pour la plupart de nos utilisateurs est d’activer toutes les applications dans leur bundle Zoho One immédiatement et d’en accorder l'accès total à tout le monde. Or, vos agents d’assistance n’ont sans doute pas besoin d’accéder à Zoho Books ou Zoho Campaigns. Accordez un peu de temps à la stratégie et configurez la gestion des accès de vos utilisateurs en conséquence.

Gestion continue des accès avec Zoho One - Suivre régulièrement l’accès de vos utilisateurs et effectuer des modifications manuellement pourrait s’avérer difficile à tenir à long terme. C’est pourquoi nous vous suggérons d’utiliser les affectations conditionnelles dans Zoho One. L’affectation conditionnelle peut affecter automatiquement des applications aux utilisateurs existants et futurs en fonction de conditions basées sur des règles. Vous pouvez configurer une condition pour attribuer des rôles d’application spécifiques à des utilisateurs spécifiques, renforçant ainsi la sécurité basée sur l’accès.

Points d'accès sécurisés et fiables- Sécuriser l’accès physique est tout aussi important que sécuriser l’accès numérique. Nous vous suggérons fortement d’utiliser la fonction "IP autorisée" de Zoho One pour empêcher l'accès à partir d'une autre adresse IP que celle rentrée.. Cette fonctionnalité permet à vos utilisateurs d’accéder à leurs comptes Zoho One uniquement à partir d’adresses IP que vous aurez spécifiquement définies et de limiter les risques en n'autorisant que ce mode de connexion.

3. La délégation de sécurité
Imaginons un propriétaire d’organisation Zoho One qui partage ses identifiants avec un gestionnaire des RH, ce qui permet à ce dernier d’ajouter de nouveaux employés à l’organisation. Même si les raisons derrière l’action sont innocentes, elles peuvent entraîner des problèmes plus conséquents à long terme. C'est un exemple anodin de ce qu'il ne faut pas faire si vous souhaitez garder la main sur vos données. Si vous vous trouvez dans une situation où vous avez besoin de personnes supplémentaires pour gérer votre organisation Zoho One, nous vous suggérons fortement d’utiliser Zoho One Admins et Appli Admins pour déléguer des responsabilités — et seulement les responsabilités ! — en toute sécurité.

4. Connexion unique
Quand on parle de connexion unique (SSO), les gens ont tendance à se concentrer sur la convenance et la facilité d’utilisation. Cependant, le plus grand avantage de SSO est la sécurité. Non seulement il élimine l’utilisation de plusieurs mots de passe et la horde de problèmes qu’ils apportent, il suit également la norme SAML 2.0, assurant que seuls vos utilisateurs peuvent accéder à vos applications.
Pour en savoir plus sur le SAML, consultez ce lien de la vidéo.

5. Authentification multi facteur (AMF) fondée sur les politiques
L’utilisation de l'AMF est le premier conseil donné aux organisations par presque tous les experts en sécurité. Il comporte en effet plusieurs avantages :

Sécurité plus robuste - Le fait d’avoir une deuxième forme d’identification réduit considérablement les risques d'avoir les données exposées après un mot de passe piraté. La deuxième authentification qui vous demande confirmation attestera qu'il s'agit bien de vous.

Amélioration de la productivité et la souplesse- Nombreuses organisations qui ont adopté le télétravail, reconnaissent la productivité qu'il a apportée. Les employés ont leur propre marge de manoeuvre pour accéder à leurs données en toute sécurité, et ce d'où qu'ils soient : depuis chez eux, depuis un de leurs appareils, l'accès aux données reste sécurisé grâce à cette double authentification qu'ils peuvent configurer selon leurs moyens (QR Code, code, empreinte...).

Baisse du coût du service d’assistance et de gestion de la sécurité - L’authentification multi facteur permet de réduire le temps de réinitialisation des mots de passe. Leur laisser la main pour définir leur mot de passe et leur propre AMF permet de ne pas recourir au service informatique et d'épargner à tous de perdre du temps. Surtout à distance !

Une organisation peut établir sa propre sécurité en réglant elle-même ses politiques dans Zoho One. Nous vous suggérons de créer plusieurs politiques de sécurité avec différents degrés de sécurité, et de les appliquer aux utilisateurs en fonction de leur facteur de risque. Demandez-vous quels employés traitent les données les plus sensibles de votre organisation. Par exemple, les administrateurs de systèmes ou les directeurs de la paie peuvent avoir besoin de politiques de sécurité plus strictes que les agents de vente et marketing.


N'hésitez pas à nous partager votre expérience en commentaire.

L'équipe Zoho France

    • Sticky Posts

    • Collaboration sans faille avec Zoho One

      Bonjour à tous, Dans cet article nous allons voir comment Zoho One permet une collaboration à différents niveaux .       La façon dont nous travaillons évolue. À mesure que les entreprises se mondialisent, la plupart des activités sont menées en équipe.

    • Recent Topics

    • Not able to Sign In in Zoho OneAuth in Windows 10

      I recently reset my Windows 10 system, after the reset when I downloaded the OAuth app and tried to Sign In It threw an error at me. Error: Token Fetch Error. Message: Object Reference not set to an instance of an object I have attached the screenshot

    • Mapping a custom preferred date field in the estimate with the native field in the workorder

      Hi Zoho, I created a field in the estimate : "Preferred Date 1", to give the ability to my support agent to add a preferred date while viewing the client's estimate. However, in the conversion mapping (Estimate to Workorder), I'm unable to map my custom

    • The sending IP (136.143.188.15) is listed on spamrl.com as a source of spam.

      Hi, it just two day when i am using zoho mail for my business domain, today i was sending email and found that message "The sending IP (136.143.188.15) is listed on https://spamrl.com as a source of spam" I hope to know how this will affect the delivery

    • Delegates - Access to approved reports

      We realized that delegates do not have access to reports after they are approved. Many users ask questions of their delegates about past expense reports and the delegates can't see this information. Please allow delegates see all expense report activity,

    • Split functionality - Admins need ability to do this

      Admins should be able to split an expense at any point of the process prior to approval. The split is very helpful for our account coding, but to have to go back to a user and ask them to split an invoice that they simply want paid is a bit of an in

    • Is there a way to request a password?

      We add customers info into the vaults and I wanted to see if we could do some sort of "file request" like how dropbox offers with files. It would be awesome if a customer could go to a link and input a "title, username, password, url" all securely and it then shows up in our team vault or something. Not sure if that is safe, but it's the best I can think of to be semi scalable and obviously better than sending emails. I am open to another idea, just thought this would be a great feature.  Thanks,

    • Single Task Report

      I'd like a report or a way to print to PDF the task detail page. I'd like at least the Task Information section but I'd also like to see the Activity Stream, Status Timeline and Comments. I'd like to export the record and save it as a PDF. I'd like the

    • Auto-response for closed tickets

      Hi, We sometimes have users that (presumably) search their email inbox for the last correspondence with us and just hit reply - even if it's a 6 month old ticket... - this then re-opens the 6 month old ticket because of the ticket number in the email's subject. Yes, it's easy to 'Split as new Ticket', but I'd like something automated to respond to the user saying "this ticket has already been resolved and closed, please submit a new ticket". What's the best way to achieve this? Thanks, Ed

    • How to Push Zoho Desk time logged to Zoho Projects?

      I am on the last leg of my journey of finally automating time tracking, payments, and invoicing for my minutes based contact center company - I just have one final step to solve - I need time logged in zoho desk to add time a project which is associated

    • Cannot access KB within Help Center

      Im working with my boss to customize our knowledge base, but for some reason I can see the KB tab, and see the KB categories, but I cannot access the articles within the KB. We have been troubleshooting for weeks, and we have all permissions set up, customers

    • Export to excel stored amounts as text instead of numbers or accounting

      Good Afternoon, We have a quarterly billing report that we generate from our Requests. It exports to excel. However if we need to add a formula (something as simple as a sum of the column), it doesn't read the dollar amounts because the export stores

    • why my account is private?

      when i post on zohodesk see only agent only

    • Getting ZOHO Invoice certified in Portugal?

      Hello, We are ZOHO partners in Portugal and here, all the invoice software has to be certified by the government and ZOHO Invoice still isn´t certified. Any plans? Btw, we can help on this process, since we have a client that knows how to get the software certified. Thank you.

    • 500 Internal Server Error

      I have been trying to create my first app in Creator, but have been getting the 500: Internal Server Error. When I used the Create New Application link, it gave me the error after naming the application. After logging out, and back in, the application that I created was in the list, but when I try to open it to start creating my app, it gives me the 500: Internal Server Error. Please help! Also, I tried making my named app public, but I even get the error when trying to do that.

    • Client Script | Update - Client Script Support For Portals

      Dear All! We are excited to announce the highly anticipated feature: Client Script support for Portals. We understand that many of you have been eagerly awaiting this enhancement, and we are pleased to inform you that this support is now live for all

    • Professional Plan not activated after payment

      I purchased the Professional Plan for 11 users (Subscription ID: RPEU2000980748325) on 12 September 2025, and the payment has been successfully processed. However, even after more than 24 hours, my CRM account still shows “Upgrade” and behaves like a

    • how to edit the converted lead records?

      so I can fetch the converted leads records using API (COQL), using this endpoint https://www.zohoapis.com/crm/v5/coql and using COQL filter Converted__s=true for some reasons I need to change the value from a field in a converted lead record. When I try

    • Auto Update Event Field Value on Create/Edit

      Hi there, I know this question has been posted multiple times and I've been trying many of the proposed similar scripts for a while now but nothing seems to work... what might I do wrong? The error I receive is this: Value given for the variable 'meetingId'

    • Pre-orders at Zoho Commerce

      We plan to have regular producs that are avaliable for purchase now and we plan to have products that will be avaliable in 2-4 weeks. How we can take the pre-orders for these products? We need to take the money for the product now, but the delivery will

    • Constant color of a legend value

      It would be nice if we can set a constant color/pattern to a value when creating a chart. We would often use the same value in different graph options and I always have to copy the color that we've set to a certain value from a previous graph to make

    • Zoho Pagesense really this slow??? 5s delay...

      I put the pagesense on my website (hosted by webflow and fast) and it caused a 5s delay to load. do other people face similar delays?

    • Payroll and BAS ( Australian tax report format )

      Hello , I am evaluating Zoho Books and I find the interface very intuitive and straight forward. My company is currently using Quickbooks Premier the Australian version. Before we can consider moving the service we would need to have the following addressed : 1.Payroll 2.BAS ( business activity statement ) for tax purposes 3.Some form of local backup and possible export of data to a widely accepted format. Regards Codrin Mitin

    • Problem with Email an invoice with multiple attachments using API

      I have an invoice with 3 attachments. When I send an email manually using the UI, everything works correctly. I receive an email with three attachments. The problem occurs when I try to initiate sending an email using the API. The email comes with only

    • Page Layouts for Standard Modules like CRM

      For standard modules like quotes, invoices, purchase orders, etc, it would be a great feature to be able to create custom page layouts with custom fields in Zoho Books similar to how you can in Zoho CRM. For example, and my current use case, I have a

    • Non-depreciating fixed asset

      Hi! There are non-depreciable fixed assets (e.g. land). It would be very useful to be able to create a new type of fixed asset (within the fixed assets module) with a ‘No depreciation’ depreciation method. There is always the option of recording land

    • Fixed asset management

      I want to know if there is any individual module for fixed assets management

    • One time sale item in billing automatically detects as service

      if i have some items which i don't want to add in my "item" list because its sold only for one time. but when i type item name in invoice, it (system) automatically takes it as a service and despite of HSN , it shows SAC code to be entered. if its selectable i.e. either item or service , it would be very helpful and a must have feature.

    • Project template after project creation

      How can I apply a project template AFTER the project has been created?

    • convert the project to templet

      i have some deployment ME product for different customer , i need to create a fixed template for use it rather then keeping creating this template every time

    • Seriously - Create multiple contacts for leads, (With Company as lead) Zoho CRM

      In Zoho CRM, considering a comapny as a lead, you need us to allow addition of more than one contact. Currently the Lead Section is missing "Add contact" feature which is available in "Accounts". When you know that a particular lead can have multiple

    • Related Module in Sharing Rules

      Zoho CRM team recently added the feature to filter records by Related Records It will be really beneficial if we can have this feature for Sharing Rules as well

    • Assignment Thresholds Resetting After Lead Conversion

      Hello everyone, We're facing an issue with Zoho CRM's lead assignment thresholds that makes them unsuitable for our workflow. I'm hoping to find a potential workaround or solution from the community. Here’s our current process: A new lead is created automatically

    • Zoho CRM Analytics - Allow To Reorder Dashboards

      I would like to suggest that you add the ability to reorder dashboards in the Analytics Module. I can see that this has been requested some time ago, the latest 9 years ago. I am not sure if this is a big or small endeavor, but such a small fix can go

    • Territory view for custom modules?

      I have recently activated territories however I can't seem to find how to use territories for custom modules? These modules have territories:  Contacts /  Accounts / Opportunities These modules don't have territories:   Buildings (custom module) and 

    • Zoho Books - How to Invoke a Custom Function in Schedulers

      We have multiple schedulers that send emails to customers in batches. Currently, we are maintaining the same code across several schedulers. Is it possible to use a custom function inside a scheduler script? If yes, how can we invoke the custom function

    • Approval Process Comments

      Is it possible to view the comments entered during the approval or rejection of a record in the approval process? If not, is there a way to require a field to be completed upon approval or rejection?

    • Login for test case

      Had a few questions regarding authentication test cases and couldn't find an answer in the the docs. 1. If an app like Zoho Creator requires authentication before providing access, do I need to create a login function and add it to each test case? 2.

    • Zoho / Outlook Calendar sync

      The current Marketplace -> Microsoft -> Meetings integration needs 2 changes. 1. The current language for the Two-Way sync option should be changed. It currently states, "Sync both your Zoho CRM Calendar and Office 365 Calendar meetings with each other."

    • Please make it easier to Pause syncing

      right now it takes 3 clicks to get there. sounds silly, but can you make it just 2 clicks to get it done instead? thats how dropbox does it, 2 clicks to pause instead of 3.

    • Customer members area

      Does FSM support a customer members area? If not what do you propose we use if we want the data used in FSM for customers to give them an area / login to see past orders, create new orders and general announcements.

    • Next Page