1. What is Zoho Directory?
Zoho Directory is an identity and access management (IAM) platform that enables organizations to securely manage user identities and their access to various applications, both within Zoho and third-party services. It provides tools to simplify user management and enhance security across applications and devices.
It allows you to manage all your organization's users across different applications. With this integration, you can perform various user management operations such as add or edit users, configure roles or permissions, designate users as requesters or technicians, assign users to groups, monitor login activity, change passwords, configure security policies, etc.
2. Difference between ESM Directory and Zoho Directory.
Organization Admin permission is required to access both Zoho Directory and ESM Directory.
ESM Directory is exclusive to ServiceDesk Plus Cloud (SDP Cloud) and helps manage multiple service desk instances within an organization. While ESM Portal customization is specific to SDP Cloud, configurations like domain verification, SAML authentication, user management, deletion, and password reset are applied at the organization level and shared across other cloud Zoho/ME Subscriptions. Hence, deleting a user from the ESM Directory will permanently revoke access to other Zoho services like Zoho Mail, CRM, and People, making it an irreversible action.
Zoho Directory is a comprehensive identity and access management (IAM) platform that enables organizations to manage user access across Zoho apps and third-party applications. It offers features such as Single Sign-On (SSO), Multi-Factor Authentication (MFA), user provisioning, and device management. Zoho Directory also supports external directory sync, security policy enforcement, and centralized user management with detailed insights.
Technicians with the Organization Admin role can be identified by the crown icon next to their username. To view this, navigate to the bento icon in the top left corner → ESM Directory → Users.
This role can be assigned to others by selecting a user profile in the ESM Directory → Users, then scrolling to the bottom and enabling the toggle icon.
Technicians with the Org Admin role have user management privileges, can enable logins for users, and have access to the ESM Directory and Zoho Directory.
3. Which edition of Zoho Directory will SDP Cloud users get when integrating with Zoho Directory?
The Free edition features of Zoho Directory will be available to SDP Cloud users by default. However, the free plan limit for user addition is not applicable for SDP Cloud users.
4. How many editions does Zoho Directory have and what’s the difference?
5. How much should SDP Cloud users pay to enable Zoho Directory?
Zoho Directory can be enabled without any additional charges. However, if the SDP Cloud user would like to access features not available in the Free edition, they will need to choose a paid plan accordingly.
6. Which admin role can view Zoho Directory?
Only the Organization Administrator can enable and view Zoho Directory. This privilege can be granted by an existing Org admin by navigating to ESM Directory → Users and scrolling down to find the toggle button.
7. How many AD user tenants can be synced with the free edition of Zoho Directory?
In Zoho Directory, Directory Stores is where AD synchronization can be enabled. With the Free edition, only two Directory Stores (tenants) can be added.
8. How many multi-SAML tenants can be added with Zoho Directory?
With the free edition, up to 3 SSO applications can be added.
9. Should we pay for both user sync and SAML configurations?
If you have an active SDP Cloud subscription, you should not have to pay additionally for user sync and SAML. However, if you require more AD tenants to be synchronized with Zoho Directory, it depends on the plan. Kindly reach out to the SDP Cloud support team if you have any specific use case regarding limits.
10. What are the prominent use cases that can be achieved via Zoho Directory?
Key features include:
Single Sign-On (SSO): Allows users to log in once and access all integrated applications without needing to remember multiple credentials.
Multi-Factor Authentication (MFA): Adds an extra layer of security by requiring users to verify their identity through multiple methods.
User Provisioning: Automates the process of creating, updating, and deactivating user accounts across various systems.
Device Management: Helps monitor and secure the devices used by employees to access organizational resources.
Directory Sync: Integrates with external directories (like Active Directory) to sync user data across platforms.
Security Policies: Enforces policies such as password complexity, login attempts, and access controls.
Centralized Management: Offers administrators insights into user activity and access management across the organization.
11. Why don’t I see a user deletion option in Zoho Directory?
Deleting is different from deactivation, as deleting a user is irreversible. Only Pending Users can be deleted. To permanently delete a user from your organization, contact servicedeskplus-cloud-support@manageengine.com.
Kindly refer to: Permanent deletion of a user from Zoho Dircetory will affect their other Zoho Subscrptions as well. So kindly check with support before moving further.
12. Is password-less sign-in available in Zoho Directory?
13. Is it possible to make a group of users exempt from SAML?
Yes, users from different applications can be grouped in Zoho Directory using conditional assignment. These groups can later be excluded by navigating to Zoho Directory → Security → Custom Authentication, selecting the Identity Provider, and excluding the group accordingly.
14. Is there any user sign-in limit in Zoho Directory?
By default, the Free plan allows only 10 users. However, this restriction is lifted for users with an active ManageEngine subscription. Since SDP Cloud is a user-centric platform, the user limit in the Free plan does not apply to SDP users with Zoho Directory integration.
15. What is Device Authentication? Is it available for Free edition users?
Zoho Directory offers single sign-on for all cloud applications, but users need to log in to their devices using different credentials. Device Authentication enables enrollment and management of all workspace devices (Mac, Windows, Linux) using a single set of credentials by syncing the Zoho One password with device login credentials.
In the Free edition, only up to 10 users can be added. However, this limit is increased for SDP Cloud users with an active subscription. Zoho Directory for SDP admins is primarily intended for user management. To utilize other advanced features, additional licenses may be required.