Zoom Provisioner

Creating a single sign-on connection

To allow PingFederate to handle authentication for Zoom, create a service provider (SP) connection.

About this task

You can follow these steps to create a new SP connection, or you can modify your provisioning connection.

Steps

  1. In the PingFederate administrator console, create a new SP connection:

    1. For PingFederate 10.1 or later: go to Applications → Integration → SP Connections. Click Create Connection.

    2. For PingFederate 10.0 or earlier: go to Identity Provider → SP Connections. Click Create Connection.

  2. Configure the basic connection details with the Zoom quick connection template.

    1. On the Connection Template tab, select Use a template for this connection.

    2. From the Connection Template list, select Zoom Provisioner.

    3. On the Metadata File row, select the zoom-saml-metadata.xml file that you modified in Getting a vanity URL for Zoom. Click Next.

    4. On the Connection Type tab select Browser SSO Profiles. Click Next.

    5. On the Connection Options tab, select only Browser SSO. Click Next.

    6. If you see the Metadata URL tab, clear the Enable automatic reloading check box. Click Next.

    7. On the General Info tab, in the Connection Name field, enter a name for your connection. Click Next.

  3. On the Browser SSO tab, configure browser SSO.

    For a complete guide, see Configure IdP Browser SSO in the PingFederate documentation.

    1. On Browser SSO → SAML Profiles, select all four check boxes.

    2. On Browser SSO → Protocol Settings → SLO Service URLs, from the Binding list, select the method you chose for Binding in Configuring single sign-on in Zoom. In the Endpoint URL and Response URL fields, enter /saml/SingleLogout. Click Add.

    3. On Browser SSO → Protocol Settings → Allowable SAML Bindings, select the method that you chose for Binding in Configuring single sign-on in Zoom.

  4. On the Credentials tab, configure the connection credentials. From the Signing Algorithm list, select RSA SHA256. Click Next.

    For a complete guide, see Configure credentials in the PingFederate documentation.

  5. On the Activation and Summary tab, above the Summary section, turn on the connection. Click Save.