Subscribers that use Microsoft sign-in to access Zendesk services must secure their accounts by taking the steps outlined below. If at any time you are locked out of your account, you will be required to use our SSO bypass feature to regain access.
Agents using Microsoft sign-in
Account administrators whose agents sign in with Microsoft must take one of the following actions to protect their accounts:
- Add your company's Microsoft tenant ID to your Microsoft sign-in settings for team members inside Zendesk Admin Center, OR
- Enable SAML-based SSO with your company's Azure Active Directory Single Sign-On ("SSO")
End users using Microsoft sign-in
Account administrators whose end users sign in with their Azure Active Directory accounts must enable SAML-based Azure SSO. This step is not necessary if you permit end users to authenticate using personal Microsoft accounts (such as through Xbox, Teams for Life, or Outlook), or if you have enabled other authentication options (such as Zendesk passwords, Google, Facebook, or Twitter authentication).