Setting up basic SAML mapping

Basic SAML Mapping allows you to designate a default License Type when users sign in to Zoom via SSO. You can also map specific SAML attributes being passed by your Identity Provider such as email address, first name, last name, pronouns, phone number, and department in Zoom. This allows you to pass this information automatically from your identity provider. Email address will be mapped only to Zoom at first login, unless you begin mapping an Employee Unique ID. By default, first name and last name are also only mapped at first login, but you can choose if you want them to be updated at each SSO login. All other fields map each time a user logs in. 

You can also use advanced SAML mapping to assign users add-ons, roles, or to groups based on the attributes being passed. 

Prerequisites for setting up basic SAML mapping

How to set up basic SAML mapping

The SAML attributes and the corresponding values will need to be configured in your Identity Provider (IdP). Once you have configured them in your IdP, you can set up basic SAML mapping in Zoom.

  1. Sign in to the Zoom web portal.
  2. In the navigation panel, click Advanced then Single Sign-On.
  3. Click the SAML Response Mapping tab.
    You will see the following attributes in the SAML Basic Information Mapping section:

For all other fields, click Map to SAML Attribute and enter the SAML attribute as it is being passed by your identity provider:

After entering a value, you can edit it by clicking Edit or remove it by clicking Clear.