Zoom uses Just-In-Time (JIT) provisioning with Single Sign-On by default. This means that when a user tries to login, a Zoom account will be created for them based on your SAML mapping. However, if you do not want Zoom accounts to be automatically created when a user attempts to sign in, you can use pre-provisioning instead. Pre-provisioning will need to be enabled by Zoom support.
Pre-provisioning will require you to add new users via REST API or by uploading a CSV.
This article covers:
- Zoom account with SSO configured
- Account owner permissions
Contact Zoom support to have pre-provisioning enabled.
When pre-provisioning is enabled for your account, the ssoCreate API call will also be enabled for your account. Users created with this API call will only be able to login via SSO. No password will be created.
If the user is a Pro user, the API call will generate a Personal Vanity URL using the user name (no domain) of the provisioning email. If user name or PMI is invalid or occupied, it will generate a random number/random personal vanity URL.
- Create a spreadsheet with the following columns: email, first_name, last_name, department, user group
- Save the spreadsheet as a CSV (comma delimited) file.
- Login to User Management.
- Click Import.
- Designate Basic, Pro, or Corp as the license type. Select any features you would like to apply. This pertains to all users included in the CSV file.
- Check SSO User.
- Click Upload CSV file to find your .csv file
- Click on your .csv file, then choose Open.
- The users will be automatically approved and appear in your users list.