Skip to main content

Check out Interactive Visual Stories to gain hands-on experience with the SSE product features. Click here.

Skyhigh Security

Integrate Zoom

Prerequisites

To integrate Skyhigh CASB with Zoom via API, make sure to meet the following prerequisites:

  • Admin Access to Zoom for authenticating services.
  • Admin Access to Zoom must have Full administrator privileges. 
  • Admin Access to Skyhigh CASB.
  • Skyhigh CASB supports only these Zoom plans: Enterprise, Business, or Pro licenses.
  • The required Zoom APIs are not available in Zoom Basic or Free licenses. For Zoom licensing options and prices, see Zoom Plan and Pricing.

Integrate Skyhigh CASB with Zoom

To integrate Skyhigh CASB with Zoom, you must first create a custom OAuth app with Zoom scopes configured, then create a Zoom instance and enable Zoom API access in Skyhigh CASB, validate Skyhigh CASB's webhook URL, and configure Zoom event types in the custom OAuth app.

IMPORTANT:

 

 

  • Before creating a Zoom instance and enabling API access for Zoom in Skyhigh CASB, make sure to complete the OAuth app authentication in the Zoom admin account. To create an OAuth app in Zoom, see Custom OAuth Application for Zoom.
  • As you complete the OAuth app authentication in Zoom, make a note of the Client IDClient Secret, and Secret Token. You will need this to complete Step 2.
  • You can enable API access for a new Zoom instance by using an existing custom OAuth app for Zoom that was created prior to October 23, 2022. To enable API access for Zoom via an existing custom OAuth app, you must generate the secret token and validate Skyhigh CASB's webhook URL in the custom OAuth app. For details, see Custom OAuth Application for Zoom.

 

 


 

 

 

 

Step 1: Create a Zoom Instance

To create a Zoom instance:

  1. Go to Settings > Service Management.
  2. Click Add Service Instance.
    clipboard_edfcbde8f70e04cb881c4eb86faa08452.png
  3. Select Zoom and enter a unique name for the instance.
    clipboard_eb3a4d870270235d201304f864a0405c0.png
  4. Click Done

Step 2: Enable API access for Zoom

To enable API access for Zoom:

  1. Select the service instance created, go to the Setup tab, and click Enable.
    clipboard_e3cdb0d8dee83ca044f975e49528e72bb.png
  2. Click Provide API Credentials.
    clipboard_e6066a64bfeef4ffd2d9f04a6bb554fd5.png
  3. On the Provide API Credentials page, configure the following:
  4. Click Submit.

NOTE: After providing the custom OAuth app configuration details in Skyhigh CASB, you must validate Skyhigh CASB's webhook URL, and configure the event types for your Zoom instance in the custom OAuth app. For details, see Custom OAuth Application for Zoom.

 

Once validated, Zoom events are received by Skyhigh CASB.

Supported Use Cases

Activity Monitoring, Threat Protection, and Anomalies

As a security admin, you can perform a forensic investigation on various activities done by users and automatically detect anomalies. Activities monitored are:

  • Login
  • Chat
    • Delete 
    • Send
    • Update
    • Reply
  • Channel
    • Create channel
    • Add members to the channel
  • Admin
    • Update user status

Response Actions

As a security admin, you can perform the following response actions:

  • DELETE
  • INCIDENT
  • SEND EMAIL NOTIFICATION TO
  • USER EMAIL NOTIFICATION

Secure Collaboration (Future Release planned)

  • As a security admin:
    • You can detect sensitive content posted in conversation with external users and remove the content.
    • You can monitor unauthorized external users joining the Zoom meetings and remove the users.

Use Cases Not Supported

The following use cases are currently not supported due to the unavailability of Zoom API:

  1.  API based DLP for messages and files during real-time meeting chat
  2.  API based scanning of file uploads in a meeting chat

Zoom Known Behaviors

When collaborating in Zoom, you might notice the following known behaviors:

  • File Path Rule for Multi Chats is not supported. 
    Events send by Zoom for multi-chat are same as events send in the channel. But unable to distinguish the events between the channel and multi-chat. So the File Path Rule cannot be applied for multi-chat messages.
  • External Collaborators revoke collaboration not supported.
    External Collaborators in multi-chat/chat if you want to revoke collaboration with them that is not supported as there are no relevant Zoom APIs for it.
  • Was this article helpful?