Zoom for Zoho Directory - Marketplace Integration Guides

Zoom for Zoho Directory

Prerequisites

  1. A Business, Enterprise, or Education account in Zoom.
  2. An approved Zoom Vanity URL.

Configure SAML in Zoho One/Directory

  1. If you're a Zoho One user:
    1. Sign in to Zoho One , then click Directory in the left menu.
    2. Go to Marketplace, then click Browse Applications.
    3. Use the search bar to find and install Zoom.

  2. If you're a Zoho Directory user:
    1. Sign in to Zoho Directory , then click Admin Panel in the left menu.
    2. Go to Applications, then click Add Application.
    3. Use the search bar to find and add Zoom.

  3. Name your app and enter the Vanity URL Subdomain.
    4. Note: To find the subdomain of your Vanity URL, sign in to Zoom as an admin, scroll down to the ADMIN section in the left menu, click Account Management, then click Account Profile, then scroll down to Vanity URL. The subdomain is the part of the URL that comes immediately before ".zoom.us". For example, if your Vanity URL is https://zylker.zoom.us, then your Vanity URL Subdomain is "zylker".
  4. If you want to test the SAML configuration before allowing users to access Zoom, uncheck Display app to users. You can later make the app visible to all users.
  5. Click Add.
  6. Click on the Single Sign-On tab.
  7. Click Service Provider Details to check and verify the SP details. You can also edit them, if needed.
  8. Click Identity Provider Details, then copy the Sign-in URL, the Sign-out URL, the X.509 Certificate, and the Issuer.

Configure SAML in Zoom

  1. Sign in to Zoom as an admin.
  2. Scroll down to ADMIN in the left menu, click Advanced, then click Single Sign-On.
  3. Click Enable Single Sign-On.
  4. Enter the details copied in Step 7 of the previous section.
    1. Enter the Sign-in URL under Sign-in Page URL.
    2. Enter the Sign-out URL under Sign-out Page URL.
    3. Enter the X.509 Certificate under Identity Provider Certificate.
    4. Enter the Issuer under Issuer (IDP Entity ID).
  5. Ensure that the Service Provider (SP) Entity ID does not begin with "https://".
  6. Ensure that HTTP-POST is chosen under Binding, SHA-1 is chosen under Signature Hash Algorithm, and At Sign-In (Default) is chosen under Provision User.
  7. Click Save Changes.

Just-in-time provisioning

Just-in-time (JIT) provisioning creates a Zoom account for users during their first SSO attempt, so you don't have to do it manually for each user. Zoom automatically enables JIT for all users when SSO is enabled.

Besides JIT, Zoho Directory also provides SCIM Provisioning for Zoom. Learn how to enable it.

Test the SAML connection

  1. Return to the Zoho Directory Admin Panel.
  2. Go to Applications, then click Zoom.
  3. Click Assign Users, choose yourself from the list, then click Assign.
  4. Click on the   icon next to the app's name. If everything is working, you should be automatically signed in and taken to Zoom's homepage.

Enforce SAML SSO

After successfully testing SSO, you can enforce it for all users. Once this is done, your users will no longer be able to sign in using their Zoom credentials. To restrict users to SSO:
  1. Sign in to Zoom as an admin.
  2. Scroll down to ADMIN in the left menu, click Advanced, then click Security.
  3. Scroll down to Sign-In Methods, then disable all options except Allow users to sign in with Single Sign-On (SSO).

Make app visible to all users

After successfully testing the SSO, you can make Zoom available for all users to access from their My Apps pages.
To make Zoom visible to all users:
  1. Sign in to the Zoho Directory Admin Panel.
  2. Go to Applications, then click Zoom.
  3. Click Unhide.
  4. You can now access Zoom from Zoho Directory's My Apps page.