Zoho Directory - ServiceDesk Plus Cloud (FAQ's)
1. What is Zoho Directory?
Zoho Directory is an identity and access management (IAM) platform that enables organizations to securely manage user identities and their access to various applications, both within Zoho and third-party services. It provides tools to simplify user management and enhance security across applications and devices.
It allows you to manage all your organization's users across different applications. With this integration, you can perform various user management operations such as add or edit users, configure roles or permissions, designate users as requesters or technicians, assign users to groups, monitor login activity, change passwords, configure security policies, etc.
2. Difference between ESM Directory and Zoho Directory.
Organization Admin permission is required to access both Zoho Directory and ESM Directory.
- ESM Directory is exclusive to ServiceDesk Plus Cloud (SDP Cloud) and helps manage multiple service desk instances within an organization. While ESM Portal customization is specific to SDP Cloud, configurations like domain verification, SAML authentication, user management, deletion, and password reset are applied at the organization level and shared across other cloud Zoho/ME Subscriptions. Hence, deleting a user from the ESM Directory will permanently revoke access to other Zoho services like Zoho Mail, CRM, and People, making it an irreversible action.
- Zoho Directory is a comprehensive identity and access management (IAM) platform that enables organizations to manage user access across Zoho apps and third-party applications. It offers features such as Single Sign-On (SSO), Multi-Factor Authentication (MFA), user provisioning, and device management. Zoho Directory also supports external directory sync, security policy enforcement, and centralized user management with detailed insights.
Technicians with the Organization Admin role can be identified by the crown icon next to their username. To view this, navigate to the bento icon in the top left corner → ESM Directory → Users.
This role can be assigned to others by selecting a user profile in the ESM Directory → Users, then scrolling to the bottom and enabling the toggle icon.
Technicians with the Org Admin role have user management privileges, can enable logins for users, and have access to the ESM Directory and Zoho Directory.
3. Which edition of Zoho Directory will SDP Cloud users get when integrating with Zoho Directory?
The Free edition features of Zoho Directory will be available to SDP Cloud users by default. However, the free plan limit for user addition is not applicable for SDP Cloud users.
4. How many editions does Zoho Directory have and what’s the difference?
Zoho Directory comes with three editions. If you're looking to explore more features in Zoho Directory, kindly refer to this link: https://www.zoho.com/directory/pricing.html
5. How much should SDP Cloud users pay to enable Zoho Directory?
Zoho Directory can be enabled without any additional charges. However, if the SDP Cloud user would like to access features not available in the Free edition, they will need to choose a paid plan accordingly.
6. Which admin role can view Zoho Directory?
Only the Organization Administrator can enable and view Zoho Directory. This privilege can be granted by an existing Org admin by navigating to ESM Directory → Users and scrolling down to find the toggle button.
7. How many AD user tenants can be synced with the free edition of Zoho Directory?
In Zoho Directory, Directory Stores is where AD synchronization can be enabled. With the Free edition, only two Directory Stores (tenants) can be added.
8. How many multi-SAML tenants can be added with Zoho Directory?
With the free edition, up to 3 SSO applications can be added.
9. Should we pay for both user sync and SAML configurations?
If you have an active SDP Cloud subscription, you should not have to pay additionally for user sync and SAML. However, if you require more AD tenants to be synchronized with Zoho Directory, it depends on the plan. Kindly reach out to the SDP Cloud support team if you have any specific use case regarding limits.
10. What are the prominent use cases that can be achieved via Zoho Directory?
Key features include:
- Single Sign-On (SSO): Allows users to log in once and access all integrated applications without needing to remember multiple credentials.
- Multi-Factor Authentication (MFA): Adds an extra layer of security by requiring users to verify their identity through multiple methods.
- User Provisioning: Automates the process of creating, updating, and deactivating user accounts across various systems.
- Device Management: Helps monitor and secure the devices used by employees to access organizational resources.
- Directory Sync: Integrates with external directories (like Active Directory) to sync user data across platforms.
- Security Policies: Enforces policies such as password complexity, login attempts, and access controls.
- Centralized Management: Offers administrators insights into user activity and access management across the organization.
To know more: https://help.zoho.com/portal/en/kb/directory
11. Why don’t I see a user deletion option in Zoho Directory?
Deleting is different from deactivation, as deleting a user is irreversible. Only Pending Users can be deleted. To permanently delete a user from your organization, contact servicedeskplus-cloud-support@manageengine.com.
Kindly refer to:
Kindly refer to:
Permanent deletion of a user from Zoho Dircetory will affect their other Zoho Subscrptions as well. So kindly check with support before moving further.
12. Is password-less sign-in available in Zoho Directory?
Yes, Zoho Directory supports password-less sign-in through Zoho OneAuth. This feature offers a secure and seamless way to sign in to your Zoho account without entering a password. It functions as a form of Multi-Factor Authentication (MFA), enhancing security while simplifying the login experience. Click here to know more, https://help.zoho.com/portal/en/kb/accounts/oneauth/v2/articles/passwordless-sign-in#How_to_sign_in
13. Is it possible to make a group of users exempt from SAML?
Yes, users from different applications can be grouped in Zoho Directory using conditional assignment. These groups can later be excluded by navigating to Zoho Directory → Security → Custom Authentication, selecting the Identity Provider, and excluding the group accordingly.
14. Is there any user sign-in limit in Zoho Directory?
By default, the Free plan allows only 10 users. However, this restriction is lifted for users with an active ManageEngine subscription. Since SDP Cloud is a user-centric platform, the user limit in the Free plan does not apply to SDP users with Zoho Directory integration.
15. What is Device Authentication? Is it available for Free edition users?
Zoho Directory offers single sign-on for all cloud applications, but users need to log in to their devices using different credentials. Device Authentication enables enrollment and management of all workspace devices (Mac, Windows, Linux) using a single set of credentials by syncing the Zoho One password with device login credentials.
In the Free edition, only up to 10 users can be added. However, this limit is increased for SDP Cloud users with an active subscription. Zoho Directory for SDP admins is primarily intended for user management. To utilize other advanced features, additional licenses may be required.
New to ADSelfService Plus?
Related Articles
ServiceDesk Plus Cloud License Related FAQ's
1. How can I change the payment method for our ServiceDesk Plus Cloud account from offline to online? To change the payment method from offline to online, click on the username in the top right corner and scroll down to locate the Manage option, as ...Zoho Survey FAQ's
What is the difference between SDP In-built Survey and Zoho Survey? ServiceDesk Plus Survey: Use ServiceDesk Plus Cloud’s built-in survey functionalities to create and send surveys to users. Zoho Survey: Integrate ServiceDesk Plus Cloud with Zoho ...Network Configuration: Domains to Allow for ServiceDesk Plus Cloud Access
Whitelisting specific IP addresses is not recommended, as they are dynamic and subject to frequent changes. If you whitelist by IP, you would need to update your network configuration each time the IPs change. To avoid this, we recommend whitelisting ...ServiceDesk Plus Cloud - Outlook Add-in for Exchange 2013 users
ServiceDesk Plus Cloud Add-On is available for Outlook (Cloud version) and Exchange 2016 and 2019 (On-premises version). It is a free add-in, supported in Office 365 web-access and in the installed client as well. You can get the add-in from ...Admin Related FAQ's
For detailed configuration steps, please refer to our Help Guide. 1. What is the architecture of ServiceDesk Plus Cloud and its framework? ServiceDesk Plus Cloud application is hosted in our proprietary SaaS framework in our own data centres . ...