SSO IntegrationsApplicationsSetup Guides

Zoho (SAML)

In this guide, we will cover how to set up Descope as an Identity Provider (IdP) for SAML Single Sign-on (SSO) with Zoho Help Center (the Service Provider).

To do this, all you will need is:

  • A Descope account (you can sign up for a “Free Forever” account)
  • Access to a Zoho Help Center account

Once you have the above, simply follow along with this guide to learn how to add Descope Flows to your application.

Configuring Zoho Help Center

Refer to the Zoho article on Setting up SAML Single Sign-on for Help Center to understand how to set up Zoho SAML SSO from the Zoho Help Center side. It covers enabling and disabling SAML SSO for Zoho Help Center from the Descope side.

Configuring Descope as the IdP

Setting up your Hosted Auth Page

Your flows are automatically hosted with our Descope Auth Hosting Application. To learn more about our hosted app, you can read about it in our Docs page here.

Configuring an SSO Application

  1. Log into your Descope account
  2. Navigate to Dashboard -> Applications
  3. Click “+Application”
  4. Input a name (e.g., “Zoho Help Center”) and choose SAML
  5. Click “Create”

In the Zoho SAML Help Center Configuration, do the following:

  • Copy the SSO URL from Descope into the Remote Login URL field
  • Copy the Logout URL from Descope to the Remote Logout URL field
  • Download the “public certificate” from Descope by clicking “Descope Certificate” and then “public certificate.” Upload this in Zoho as the Public Key
  • Click “Save” in Zoho Help Center

Zoho Help Center

In the Descope SAML Application you just created, do the following:

  1. Under the “Service Provider” section in Descope, select the “Enter the Connection Details Manually” option.
  2. Copy the Help Center SAML Response URL from Zoho into the ACS URL field
  3. Copy the Entity ID from Zoho into the Entity ID field
  4. Leave the certificate input box empty
  5. Add your ACS URL to the Allowed ACS Callback URLs (e.g., https://*.zohoportal.com/*)
  6. Set the SAML Assertion Subject Type to Email
  7. Set the SAML Assertion NameID Format to Email
  8. Copy the Default Relay State from Zoho to the Default Relay State in Descope
  9. Click “Save” in Descope

Zoho Descope Config

That’s it! Your end users will now be redirected to the Descope’s sign-in page when signing in to the Help Center.

Was this helpful?

Previous

Retool (OIDC)

Next

Tenants / Custom Providers

On this page

Zoho (SAML)Configuring Zoho Help CenterConfiguring Descope as the IdPSetting up your Hosted Auth PageConfiguring an SSO ApplicationIn the Zoho SAML Help Center Configuration, do the following:In the Descope SAML Application you just created, do the following: