Setting Up Single Sign-On (SSO)

  • Updated

This article is written for: Zello Work Zello Friends & Family.

Single sign-on (SSO) allows users to authenticate accounts for multiple websites using a single log-in. Enterprise clients can utilize SSO for their Zello Work network to ensure a secure, standardized, and easier sign-in process. 

SSO is currently supported on iOS, Android, Dispatch Hub, and the Zello Work Console. 

Please note that prior to sending the below information to a Zello team member, you should integrate Zello with you IdP via your IdP's management console. Reach out to our team if assistance is needed with this process. 

Zello’s SSO is supported for the following identity providers: 

  • Okta

  • Azure 

  • Oracle*

  • IBM*

  • PingFederate*

*Please contact Zello support at paidsupport@zello.comfor configuration instructions. 

Requirements 

SSO requires the following: 

  • Version 5.28 of the Zello app
  • A browser that supports custom tabs, such as (but not limited to) Chrome, Firefox, or Microsoft Edge. Please note that the browser's end-user license agreement should be accepted, as well. 
  • Identical IdP and Zello usernames (see below)

Identical IdP and Zello Usernames 

A user's IdP username and Zello Work username must match for proper authentication. When an admin creates a new user in the Zello Work management console, that user’s username must match that which is assigned in the IdP.  

To find your Zello Work network's usernames, log in to your management console and select the Users tab. Individual usernames will appear in the first column. 
sso users.png

Please note that Zello usernames cannot be changed after account creation. If you're attempting to enable SSO for an existing Zello Work user whose Zello username differs from that used in the IdP, you may need to create a new Zello Work account for the user. This action can be easily executed using Zello's cloning feature, but please do not hesitate to reach out to paidsupport@zello.com for more tailored support. 

Azure

Step 1: Integrate Zello as an Azure Enterprise Application

    1. Open your Azure portal and select Enterprise applications
    2. Click +New application
    3. Search for Zello. Then, select Sign up for Zello.

Step 2: Share your Azure Tenant ID with a member of the Zello team.

From the Overview section of your Azure Active Directory, find your Tenant ID. Copy the ID and share it with a member of the Zello team. If not currently working with a Zello team member, reach out to paidsupport@zello.com for assistance.

Step 3: Confirm users' Azure User Principal Name matches their Zello Work username

An individual's Azure user principal name and Zello Work username must match for successful SSO authentication. See the Identical IdP and Zello Usernames section of this article for more information on finding users' Zello usernames. 

Okta

Step 1: Integrate Zello and Okta

    1. From your Okta portal, go to Applications > Browse App Catalog.
    2. Find Zello. Then, select Add Integration
    3. Enter an application label under the General settings section—we recommend "Zello"—and select Done.

Step 2: Share your Client ID, Client Secret, and Okta URL Zello

    1. From the Applications page, open your Zello integration.  Select Sign On.
    2. Scroll down to Settings Sign on methods and locate both your Client ID + Client Secret. Copy and securely store each. You’ll send these to Zello at a later step.
    3. From the same page, copy the Okta URL from your browser tab. If the URL has an -admin suffix, remove -admin. For example, if the URL is https://subdomain-admin.okta.com, use https://subdomain.okta.com instead.
    4. Send your Okta URL, Client ID, and Client Secret to a member of the Zello team. If you’re not directly working with a team member at this time, please send the information to paidsupport@zello.com.

Step 3: Confirm users' Okta username matches their Zello Work username

An individual's Okta username must match for successful SSO authentication. See the Identical IdP and Zello Usernames section of this article for more information on finding users' Zello usernames.
 

Signing in to Zello with SSO 

Step 1: Accept your browser's end-user license agreement (EULA) 

    1. Prior to your initial log in with SSO, open your device's preferred browser. Please note you must use a browser that supports custom tabs. 
    2. If prompted, accept your browser's EULA. Failure to do so may prevent SSO from working. 

Step 2: Log in to Zello

    1. Open your Zello app. 
    2. From the Zello Work Log in screen, tap Continue with SSO. Enter your network name. This will prompt a redirection to your SSO provider's sign in page. 
      Screenshot 2024-06-19 at 10.29.50 AM.png