Single sign-on allows you to log in using your company credentials. Zoom single sign-on (SSO) is based on SAML 2.0. Zoom has developed integrations for Okta, Azure Active Directory, and Active Directory On-Prem (refer to the Managing the AD Sync Tool and Configuring Zoom SSO with ADFS articles) . Zoom SSO also works with Identity Providers (IdP) such as Centrify, Microsoft Active Directory, Gluu, OneLogin, PingOne, Shibboleth, and many others. Zoom can map attributes to provision a user to a different group with feature controls.
Zoom acts as the Service Provider (SP), and offers automatic user provisioning. You do not need to register as a user in Zoom. Once Zoom receives a SAML response from the Identity Provider (IdP), Zoom checks if this user exists. If the user does not exist, Zoom creates a user account automatically with the received name ID.
This article covers:
Note: If you don't already have an approved vanity URL, apply for your vanity URL (such as https://yourcompany.zoom.us) on your Account Profile page. You will need to wait for this to be approved before you can configure the SSO on the Zoom side.
Once setup is complete, users can sign in with SSO.
Admins can enable or disable a setting to automatically manage the SSO certificate. Zoom will automatically change the certificate when a new one is available. Admins can also roll back to a previous certificate. This setting is enabled by default.
For updates on new SSO certificates, see our release notes for Web.