Configure Zendesk SSO with Access for SaaS
This tutorial covers how to configure Zendesk SSO with Access for SaaS.
For this tutorial, you will need:
- A Zero Trust Account
- An integrated identity provider (IdP)
- Admin access to your Zendesk account
Time to complete:
Configure Zendesk and Cloudflare
Navigate to your Zendesk administrator dashboard, typically available at
Select Add an application, then choose SaaS.
Input the following values in the Zero Trust application configuration:
Zero Trust field Value Entity ID
Assertion Consumer Service URL contents of SAML SSO URL in Zendesk account Name ID Format
(Optional) Configure these Attribute Statements to include a user’s first and last name:
Cloudflare attribute name IdP attribute value
Copy the values from the Cloudflare IdP fields and add them to the following Zendesk fields:
Cloudflare IdP field Zendesk field SSO Endpoint SAML SSO URL Public Key (transformed to fingerprint) Certificate Fingerprint
Copy the public key value and paste it into X.509 cert.
Wrap the value with
Set Algorithm to SHA256 and select Calculate Fingerprint.
Copy the Formatted FingerPrint value.
https://<yourdomain>.zendesk.com/admin/security/staff_membersand enable External Authentication > Single Sign On.
Users should now be able to log in to Zendesk if their Email address exists in the Zendesk user list.