Custom authentication with CyberArk
- Sign in to the CyberArk admin console.
- Click Web Apps under Apps in the left pane.
- Click Add Web Apps, then search for "Zoho".
- Click Add next to the option Zoho - SAML.
- Click Yes in the pop-up window that appears, then click Close. You will be redirected to the Settings page.
- Enter the domain name in the Zoho Domain field, then type "Zoho One" in the Name field.
Note: To enter the domain name, sign in to your
Zoho Mail account and go to the
Control Panel. Click
Domains, copy the value under
Domain Name, then paste it in the
Zoho Domain field.
- Click Save.
- Click Trust in the left menu, then check Manual Configuration under Service Provider Configuration.
- Enter the SP Entity ID / SP Issuer / Audience from the following table based on the Data Center (DC) your Zoho One account is present in.
Data Center | Corresponding Entity ID |
United States of America (US) | zoho.com |
Europe (EU) | zoho.eu |
India (IN) | zoho.in |
Australia (AU) | zoho.com.au |
China (CN) | zoho.com.cn |
- Enter the ACS URL in the Assertion Consumer Service (ACS) URL field.
- Select emailAddress under NameID Format.
- Check Manual Configuration under Identity Provider Configuration.
- Click Signing Certificate, then click Download.
- Click Save.
- Copy the Login URL and Logout URL, then use the information to set up SAML in Zoho One.
- Paste the Login URL in the Sign-in URL field.
- Paste the Logout URL in the Sign-out URL field.
- Browse for and upload the previously-downloaded certificate in the Verification Certificate field.
Deploy the app to users
- Sign in to the CyberArk admin console.
- Click Web Apps under Apps in the left pane.
- Click Zoho One, then click Permissions in the left menu.
- Click Add, then search for specific users or groups you want to enforce SSO for.
- Select the users, then click Add.
- Click Save.
Test the SAML connection
In the above section, make sure to add yourself so that you can test the connection.
- Go to Zoho One.
- Enter your email address, then click NEXT.
- Click Sign in another way.
- Click Sign in with SAML. You will be redirected to sign in through CyberArk.
Related Articles
Custom authentication with miniOrange
Configure SAML with miniOrange Sign in to the miniOrange admin console. Click Apps in the left menu, then click Add Application. Click Create App under SAML/WS-FED. Select Zoho from the apps displayed. You will land in the Basic Settings page. Type ...
Custom authentication with PingOne
Configure SAML with PingOne Go to PingOne. In the Select Account dropdown menu, select PingOne. Enter your email address, then click SIGN ON. Enter your password, then click Sign On. Click the dropdown menu in the left pane under Environments, then ...
Set up custom authentication for Zoho One
Custom authentication enables SAML-based single sign-on (SSO) from your preferred identity provider (such as Okta or OneLogin) to Zoho One. Once custom authentication is configured, your users can sign in without their Zoho One passwords. They will ...
Custom authentication with OneLogin
Custom authentication with OneLogin enables SAML-based single sign-on (SSO) from OneLogin to Zoho One. With SSO, you and your employees can sign in to OneLogin and access Zoho One directly, without having to sign in to Zoho One. To set up custom ...
Custom authentication with Google
Custom authentication with Google enables SAML-based single sign-on (SSO) from Google to Zoho One. With SSO, you and your employees can sign in to Google and access Zoho One directly, without having to sign in to Zoho One. To set up custom ...