Known Behaviors of Zoom with Skyhigh CASB

After integrating Zoom with Skyhigh CASB, the following behaviors are observed when collaborating in Zoom:

• Zoom sends identical events for multi-chat and channel messages, making it impossible to distinguish between them. As a result, the File Path Rule cannot be applied to multi-chat messages.
• Once a meeting is ended, manual and bulk remediation for real-time meeting messages is not supported.
• Collaboration use cases for real-time meeting messages are not supported.
• Sometimes, we do not receive usernames or emails of external users in Zoom events. Consequently, we might miss displaying usernames or emails in the incident details.
• When a single file is shared through the Zoom web app, the incidents are not processed because Skyhigh does not receive events from Zoom. However, if the same action is performed using the Zoom desktop application, the incidents are processed successfully.
• When a message includes multiple components, such as text and files, Skyhigh treats it as a single message. If any component violates policy, the policy enforcement applies to the entire message. The incident report identifies only the component that triggered the violation, not the entire message.
• You can only download Zoom in-meeting files from the incident page within two hours of the incident's generation. After this period, Zoom restricts in-meeting file downloads.
• Currently, Data Loss Prevention (DLP) and Activity Monitoring (AM) are not supported for Zoom Webinars.
• If Continuous Meeting Chat is enabled and a policy violation occurs (for a file or text), two separate incidents are triggered. One incident generates from In-Meeting Chats, and one from Continuous Meeting Chats.