Zoom - SAML Relying Party Configuration - RSA Ready Implementation Guide
2 years ago

This article describes how to integrate RSA with Zoom using SAML Relying Party.

Configure RSA Cloud Authentication Service

Perform these steps to configure RSA Cloud Authentication Service as Relying Party to Zoom.
Procedure
  1. Sign in to the RSA Cloud Administration Console.
  2. Navigate to the Authentication Clients menu, and from the dropdown, select Relying Parties.image.png
  3. In the Relying Party Catalog, select Add a Relying Party and click Add for Service Provider SAML.image.png
  4. On the Basic Information page, enter a name for the application in the Name field and click Next Step.image.png
  5. In the Authentication tab, select SecurID manages all authentication.
  6. Select the Primary Authentication Method and Access Policy for Additional Authentication as required and click Next Step.image.png
  7. Provide the Service Provider details in the following format: 
    1. Assertion Consumer Service (ACS) URL: <Vanity_URL>/saml/SSO.
    2. Service Provider Entity ID: <Vanity_URL>.zoom.us
image.png
Refer Zoom configuration section to obtain the <Vanity_URL>
  1. In the SAML Response Protection section, select IdP signs assertion within response, and download the certificate by clicking Download Certificate.image.png
  2. Under the User Identity section, select Show Advanced Configuration, then configure Identifier Type and Property as follows: 
    1. Identifier Type: Auto Detect 
    2. Property: Auto Detect
image.png
  1. Click Save and Finish.
  2. On the My Relying Parties page, click Edit dropdown and select Metadata option to download the metadata.image.png
  3. Click Publish Changes to save your settings. After publishing, your application will be enabled for SSO.image.pngimage.png

Configure Zoom

Perform these steps to configure Zoom.
Procedure
  1. Log in to Zoom with admin credentials - https://zoom.us/account
  2. In the left navigation panel, click Advanced > Single Sign-On.image.png
  3. Click Enable Single Sign-On.image.png
  4. In the Configure SSO Manually section, provide the following details:
    1. Vanity URL: Enter a valid domain. It takes some time to get approved. Copy the domain and construct the ACS URL and EntityID, which is used to configure in the RSA platform.
    2. Sign-in page URL: The value of SingleSignOnService, obtained from the metadata file downloaded from the RSA platform.
    3. Sign-out page URL: The value of SingleLogoutService, obtained from the metadata file downloaded from the RSA platform.
    4. Identity Provider Certificate: Copy and paste the certificate downloaded from the RSA platform. Remove the "Bigin Certificate" and "End Certificate" portions before saving.image.png
    5. Issuer (IDP Entity ID): The value of entityID, obtained from the metadata file downloaded from the RSA platform.
    6. Binding: Select HTTP-POST.
    7. Signature Hash Algorithm: Select SHA-256.
    8. Security: Select the options as per your requirements.
    9. Provision User: Choose At Sign-In (Default) from the dropdown.
  5. Click Save Changes.image.png
The configuration is complete.
Return to Zoom - RSA Ready Implementation Guide

Related Articles

Trending Articles

Don't see what you're looking for?