Custom Classic OAuth Application for Zoom
NOTE: Zoom has introduced new Custom Granular OAuth application. To create a new custom OAuth application, see Create Custom Granular OAuth Applcation for Zoom. However, the Zoom update does not impact existing Zoom (Custom Classic OAuth application) users.
Skyhigh CASB allows connecting to Zoom APIs through a custom application.
Configure Custom Classic OAuth Application for Zoom
Follow the below steps to configure existing Custom Classic OAuth Application for Zoom:
- Go to Zoom Marketplace.
- Click Manage.
- On the Created Apps, select the required app.
- Under App Credentials, configure these:
- Client ID and Client Secret. Copy the Client ID and Client Secret to use in Step 2.
- Redirect URL for OAuth. Enter the URL in the following format: <https://Skyhigh_CASB_URL/shndash/extensions/OAuthCallbackController >.
- Skyhigh_CASB_URL. Here, change the Skyhigh_CASB_URL as per your tenant URL. For example, dashboard-us.ui.skyhigh.cloud, or dashboard-eu.ui.skyhigh.cloud.
- Let's say the production URL format is https://dashboard-us.ui.skyhigh.cloud and Skyhigh_CASB_URL is dashboard-us.ui.skyhigh.cloud then, the Redirect URL is https://dashboard-us.ui.skyhigh.clou...ash/extensions/OAuthCallbackController
- Skyhigh_CASB_URL. Here, change the Skyhigh_CASB_URL as per your tenant URL. For example, dashboard-us.ui.skyhigh.cloud, or dashboard-eu.ui.skyhigh.cloud.
- Under OAuth allow list, enter the same URL as Redirect URL for OAuth.
- Click Continue.
- Select the Information tab.
- Under Basic Information, provide these mandatory information about your app:
- App Name. Enter a name for your app.
- Short Description. Enter a short description about your app.
- Long Description. Enter a long description about your app.
- Company Name. Enter the name of your organization.
- Under Developer Contact Information, configure these:
- Name. Enter your name.
- Email Address. Enter your email address.
- Click Continue.
- Select the Feature tab.
- On the Add Feature page, under Token, copy the Secret Token to use in Step 2.
NOTE:
If the secret token is not available for selection, click Generate.
Configure Scopes for Zoom
You can use the Scopes tab to define the permissions based on which users can access Zoom resources, such as chat messages or user details.
To configure scopes for Zoom:
- Go to Scopes > Add Scopes.
- Select the following scopes and their associated permissions, then click Done.
After configuring the scopes for your Zoom instance, go to Step 1 and create a Zoom instance in Skyhigh CASB.
Validate Skyhigh CASB's Webhook URL
You must create an event subscription for Zoom and validate Skyhigh CASB's webhook URL for your Zoom instance so that Skyhigh CASB receives Zoom event notifications.
To validate Skyhigh CASB's webhook URL:
- On the Add Feature page, under General Features, click Add Event Subscription.
- Under Event Subscriptions, configure these:
- Subscription Name. Enter the subscription name.
- Event notification endpoint URL. Enter the URL in the following format, and click Validate. For details on Tenant ID and Instance ID, see Skyhigh CASB Tenant ID and Instance ID.
<webhook server domain name/zoom/16000/<tenantId>/<instanceId>- webhook server domain name. Contact Skyhigh Security Support for webhook server domain name based on your region.
- webhook server domain name. Contact Skyhigh Security Support for webhook server domain name based on your region.
Skyhigh CASB's webhook URL is validated to receive Zoom event notifications.
To find the Instance ID and Tenant ID from Skyhigh CASB dashboard, see Skyhigh CASB Instance ID and Tenant ID.
Configure Event types for Zoom
You can configure the event types for Zoom to specify the Zoom events based on which Skyhigh CASB receives Zoom event notifications.
To configure event types for Zoom:
- On the Add Feature page, under Add Events, click Add events.
- Select the following Event types and their associated events, then click Done.
IMPORTANT: If you select Event types other than the event types listed above, Zoom does not process those events and Skyhigh CASB throws 500 Internal Server Error. Zoom also blocks sending events if you receive too many 500 Internal Server Errors.
After integrating Skyhigh CASB with Zoom, you can define DLP policies and attach them to your Zoom instance. For details, see DLP Collaboration Use Cases for Zoom.