After you subscribe to ZIdentity, Zscaler Support creates a tenant for your organization and sends an email to complete the registration process and set up the authentication type. After completing the registration, you can start using the ZIdentity service.

During the registration process, you can cancel the process at any time, come back later, and choose to either continue the process from where you left it or restart the process from the beginning.

To complete your registration:

1. Open the email that you received from Zscaler Support and click the registration link. The registration link is valid for 72 hours.

   You are redirected to the sign-up page.

   See image.

   

   Close

2. (Optional) If the link becomes invalid after 72 hours, click the expired link. A new registration link is sent to your email address that remains valid for 24 hours.

   See image.

   

   Close

   You can regenerate the registration link up to three times. After three attempts, contact Zscaler Support and request a new link.

3. On the sign-up page:

   • Organization Name: Enter your organization's name.
   • First Name: Enter your first name.
   • Last Name: Enter your last name.

   See image.

   

   Close

4. Click Next.

   The Email Address Verification window appears.

5. Enter your email address and click Verify.

   A one-time password (OTP) is sent to your email address. If you choose multi-factor authentication (MFA) for your account, the email address that you verify in this field is used for email-based authentication.

   See image.

   

   Close

6. Enter the OTP sent to your email address and click Next.

   If you don't receive an OTP, click Resend, which is enabled after 60 seconds, to receive another OTP.

   See image.

   

   Close

7. Enter a domain name for your organization and click Next.

   This name is used to create a unique domain for your organization. After completing the setup, you can access the ZIdentity Landing Page by using the URL <initial domain name>.zslogin.net (e.g., if zidentitydep is the domain name, then the login URL becomes zidentitydep.zslogin.net).

   See image.

   

   Close

   The End User Subscription Agreement (EUSA) appears.

8. Read the EUSA and click Accept.

9. On the Create a Password page, you can choose to configure a password, MFA, or a security key or biometric to log in to your ZIdentity account:

   • Password or MFA

     To configure the login credentials:

     1. On the Create a Password page:
        • New Password: Enter a password.

        • Confirm New Password: Retype the password to confirm.

          See image.

          

          Close

     2. Click Next.

     3. On the Multifactor Authentication page, select one of the following authentication types, then click Set Up:

        • Security Key or Biometric

          To configure a security key or biometric:

          A list of all Fast Identity Online 2 (FIDO2) supported methods available for your device is displayed. FIDO2 is a set of protocols developed by the FIDO Alliance to provide the most secure passwordless authentication methods. The services, such as Windows Hello, YubiKey, etc., register and certify their security devices with FIDO2 for their customers.

          1. Select one of the methods from the list to set up a security key or biometric authentication.
          2. Follow the instructions displayed on your screen to complete the set up.

          Close
        • Google Authenticator

          To set up Google Authenticator:

          1. Follow the steps shown on the screen and then click Next.
          2. In the Google Authenticator Verification Code field, enter the verification code that you see in the Google Authenticator and click Verify before the time-sensitive verification expires.

          Close
        • Phone OTP

          To set up Phone OTP:

          1. Country: Select the country of your phone number.
          2. Phone Number: Enter the phone number on which you want to receive the OTP and click Send OTP via SMS.

          3. Enter SMS OTP: Enter the OTP received on your phone and click Verify. The OTP is only valid for two minutes, after which you can click Back, then click Send OTP via SMS to receive another OTP.

             You can also choose to go back and modify your number before you verify. Currently, SMS OTP is only supported for phone numbers in USA and India.

          Close
        • Email OTP

          After clicking Set Up, your secondary authenticator is configured as Email OTP. You don't have to verify your email address because it was verified at the beginning of the registration.

          Close

        All users are required to set up MFA for improved security.

        See image.

        

        Close

     4. Your account is created after successful MFA enrollment. On the Success page, note your login ID and click Continue.

        See image.

        

        Close

        The ZIdentity Landing page appears.

        See image.

        

        Close

     Close
   • Security Key or Biometric Authentication

     To configure FIDO2:

     1. Click Skip and Register a Security Key or Biometric and then click Set Up.

        A list of all FIDO2 supported methods available for your device is displayed. FIDO2 is a set of protocols developed by the FIDO Alliance to provide the most secure passwordless authentication methods. The services, such as Windows Hello, YubiKey, etc., register and certify their security devices with FIDO2 for their customers.

     2. Select one of the methods from the list to set up a security key or biometric authentication.

     3. Follow the instructions displayed on your screen to complete the configuration.

        See image.

        

        Close

     4. Your account is created after successful configuration. On the Success page, note your login ID and click Continue.

        See image.

        

        Close

        The ZIdentity Landing page appears.

        See image.

        

        Close

     Close