Zoho Account Setup for on-premise

Creator on-premise bundles with it Zoho's Identity and Access Management (IAM) capabilities that provide you with maximum opportunities to manage and control access privileges of your users.

While your on-premise build is initiated, by default a super admin user will be assigned with credentials (admin/admin). These credentials should be modified after your first login. The super admin handles user management, which includes adding users, creating user groups, creating permissions for the users with access levels, and more.

Access Zoho Accounts page

To access the Zoho Accounts page, enter the URL in the format as below.


You will be able to configure the following for your Zoho account to ensure a secure authentication process:

  • Sign-in Modes: You can configure sign-in to Zoho Accounts using SSO. Learn more
  • Manage your account: Manage your profile, enhance security, define your preferences, and configure privacy settings.
    • Profile: From here, you can edit your profile details, add a new email address, and change your primary email address. 
      Note: Mobile number-based additions or changes cannot be performed here.
    • Security: In addition to securing your Zoho account via passwords and multi-factor authentication, there are a slew of measures you can follow to ramp up your account security. To change your account password, refer to this page.
    • Settings - You can manage your preferred date format and privacy settings under the Preferences section (newsletter subscription is not supported).
      Note: Authorized websites and Linked Accounts are not supported in On-Premise accounts.
  • Multi-Factor Authentication: This enables you to create a robust authentication process.
    • Time-based OTP: TOTP Authenticators are mobile applications that use time-based one-time password (TOTP) to verify you during multi-factor authentication.
    • Yubikey: YubiKey is a physical security key used for authentication purposes. They help secure computers, networks, websites, and online profiles, without requiring software installation or a battery. Zoho uses U2F-based YubiKeys for multi-factor authentication.
    • Trusted browsers: You can trust a browser you are using to sign in to your Zoho Account. Once you trust a browser, we won't request your second factor verification when you sign in for the next 180 days.
    • Backup verification codes: Backup verification codes are a set of 12 digit codes that you can use if you lose your MFA device or have trouble signing in. Each code can be used only once and you need to generate a new set of codes once you have used them all.
    • Disable Multi-Factor Authentication

Generate Auth Token

URL Format

To generate the Auth Token, you need to send an authentication request to Zoho Accounts using the URL format below.

API Mode


Browser Mode


Note: You should be logged in to your account to generate the Authentication Token using the browser mode.


Parameters to be passed along with this URL are,

Parameter NameDescription
EMAIL_IDSpecify your email address
scopeSpecify the value as ZohoCreator/creatorapi
PASSWORDSpecify your Zoho Creator password

Sample Response

#Wed Feb 29 03:07:33 PST 2012

Note: The Authentication Token can be used in all your API calls. Please keep a note of the generated Authentication Token as it will not be displayed in the Creator API page.

Important Notes

  • The Authentication Token is user-specific and is a permanent token.
  • The Authentication Token of a user's account will become invalid if the user is deactivated.
  • It is recommended that you note down your Authentication Token.
  • Access and manage all the active secret auth tokens of your account by selecting Settings -> Active Authtokens in https://<host_name>:<port_number>/iam

Related Topics

Still can't find what you're looking for?

Write to us: support@zohocreator.com