This site requires JavaScript to be enabled
External Customer KB > General > Provision Users to Zoom
Provision Users to Zoom
Article: KB0011443 Published: 11/15/2021 Last modified: 11/15/2021

This article describes how to configure OneLogin to provision users to Zoom.

Note: before beginning this process, ensure that your Zoom admin portal has Just-in-Time Provisioning activated. 

Configure provisioning for Zoom

  1. Log in as a Super User or Account Owner and go to Applications > Applications > Zoom

  2. Go to the Parameters tab to confirm or update the mapping of Zoom attributes to OneLogin attributes. For licensed users, set userType to -No Default-, then create a Macro with the variable Licensed, ensuring you click Reapply All Mappings after you've done so.

    company apps

     Email  Maps to user email attribute 
     Email (SAML attribute)   Email attribute for SAML assertion 
     First Name  User's first name
     Last Name  User's last name
     Department  Maps to the user's department
     Organization  Maps to user's org
     Phone  Maps to user's phone
     Zoom Phone Extension Number   Maps to Zoom Ext
  3. On the Configuration tab, enter your vanity URL subdomain in the Subdomain field.

    company apps

  4. On the Configuration tab, Authenticate Zoom OAuth.  

    company apps

  5.  After you authenticate, click the Zoom link to complete this process. The link directs you to the Zoom UI and requires you to sign in and accept this change.

    company apps

  6. On the Provisioning tab, enable provisioning and set your admin approval policy. 

    • Select Enable provisioning.

    • Select the provisioning actions that require admin approval. Note: statuses for Zoom Room and Admin users cannot be altered via provisioning and attempting so will generate a 200 error.

      If you select any of the available actions, an admin must go to Users > Provisioning to manually approve the action every time it occurs.

    • Select how users that are deleted in OneLogin are handled in Zoom.

      Choose between Delete, Suspend, or Do Nothing.

    • Select how users that are suspended in OneLogin are handled in Zoom.

      Choose between Suspend or Do Nothing. If you choose Suspend, users are suspended in Zoom. If you select Do Nothing, accounts remain active in Zoom if the user is suspended in OneLogin.

      company apps


You can define a user's license level by adding an optional parameter. To do this, create a macro by adding a custom SAML attribute userType with one of the following values:

  • Basic
  • Licensed

Note: To define the license level, you must first enable JIT provisioning. In the near future, you can easily set this value in the Parameters section.

To create an optional parameter, complete the following.

  1. Click on the blue + sign under Optional Parameters

  2. In Field name, Name the parameter userType. Click Include in SAML assertion and Save

    company apps

  3. In the next dialog, choose Macro from the Value dropdown. In the space below, you can define the user value: Basic or Licensed. 

  4. Click Include in SAML assertion and Save

    company apps



Expand/Collapse Comments
Was this helpful?