Integrating Office 365 calendar with SSO in Zoom App
The advent of Single Sign-On (SSO) configuration has provided administrators with the ability to enable and authorize the integration of calendars and contacts for all users by collecting access tokens for Outlook that can be used to configure Single Sign-On. The integration of this module needs to be approved by the end user before Zoom is able to automatically populate the calendar and contact details in their Zoom desktop client. The Zoom meeting list and Zoom contact directory both show the calendar events from the calendar and the contact list from the contact directory.
Having configured Single Sign-On for the account, this integration must be federated with Azure Active Directory. For this to happen, the identity provider must also be federated with Azure Active Directory.
Ownership or administrative privileges of an account Roles and responsibilities for Office 365 administrators Whether you want a complete Office 365 environment or a hybrid environment With Zoom, SSO has been configured Azure Active Directory is federated with IDP and connected to it Learn how to do this with Okta Learn how to do this with Ping The integration of contacts and calendars with Office 365 has been configured Zoom’s web portal can be accessed by logging in. Click on Account Management then Account Settings from the navigation menu at the top of the page. To get started, click on theĀ Meeting tab. It is possible to enable or disable the option Ask users to integrate their Office 365 calendar when they sign in with their SSO credentials under Calendar and Contacts. The first time your users register with Zoom using SSO, if they select Show users in the first step of the registration using SSO, Zoom will redirect them to the Office 365 OAuth URL the first time they register using SSO. To do this, you should select Show users. Whenever an OAuth request is not accepted by the users, or if an error occurs, the users will only be able to manually integrate their calendars and contacts with the site. Choosing this option will redirect your users to OAuth and the Office 365 URL whenever they sign into Zoom using SSO and the calendar and contact integration hasn’t been set up yet and they don’t have the calendar or contact integration set up yet. The verification dialog box will appear if a change has been made and you will be able to select whether you want to enable or disable it by clicking either Enable or Disable. The setting required mode is set to mandatory by default for all members of the group by clicking the lock icon . You can then click Lock to confirm the setting to be active for all group members. A Zoom admin would need to grant permissions to the Zoom app in order for it to integrate users’ calendars and contacts from Azure with the Zoom app. In order to allow the integration to happen, you can grant permission to all applications, or you can grant permission only to the Zoom app. If you have a role that allows the granting of admin consent in the Azure portal, you need to log in with that role. The Azure Active Directory must be selected in order to be able to access Enterprise applications. Select Allow user consent for apps in the User consent for applications section of the screen. If you have a role that allows the granting of admin consent in the Azure portal, you need to log in with that role. After you have selected Azure Active Directory, you should select Enterprise applications. Choose Zoom from the list of apps available. It is important to select Permission from the Security menu, and then to click Grant permission to the admin. During the sign in process, users are receiving an error message stating they need admin approval since the integration between the calendar and contacts is not yet complete. Users can consent to apps in Azure accessing company data on their behalf on behalf of their Office 365 admin account, despite the fact that this has been disabled for the users in their account. There is a possibility that you will receive a notification during the sign in process that says It requires admin approval. Here is what you should do to resolve this: Zoom’s web portal can be accessed by logging in. Select Room Management from the navigation menu, followed by Calendar Integration from the drop-down menu. You will find the Add a Calendar Service option under the Calendar Integration section. Select the Office 365 calendar service in the window that appears when you select a calendar service. You can choose between securing your account through EWS or securing your account via OAuth 2.0. Please refer to the following documentation from Microsoft for more information on these options. We recommend that you click here for more information on how to set up Zoom Rooms with Office 365 as well as which Account Permission Types you can choose. In the Admin Authorization section, select the check box under I am the Office 365 admin and am consenting on behalf of the organization. After you have clicked Authorize, you will be prompted to confirm. There are instructions in the How to grant permissions to use the Zoom app in Microsoft Azure document that can be followed by an Office365 administrator that wishes to grant permissions in Azure. Administrators of accounts can require their users to provide admin consent before allowing their calendar integration to be enabled. The purpose of this is to allow an admin the ability to provide this consent to all users of a given account when authorizing: Zoom’s web portal can be accessed by logging in. You can access the Account Settings menu by clicking the Account Management link in the navigation panel. Go to the tab marked Meeting and click it. Click the Consent to Office 365 calendar integration toggle in the Calendar and Contacts section of your account so that the integration of the Office 365 calendar will be enabled on behalf of your entire account. When the user is authorized for the integration of Calendar and Contact, an Office365 admin must approve the integration on behalf of the user during the authorization process, before it can be enabled. Zoom’s web portal can be accessed by logging in. To access your profile, click the Profile link in the navigation menu. Click Configure Calendar and Contacts Service from the Other section of the Calendar and Contacts Integration section under Other. Then, click Next after selecting Office 365. Please check the box next to the statement I am the administrator and I am consenting on behalf of my organization at the bottom of the page, and then click the Authorize button at the bottom of the page. To give the user permission, you will need to enter your Office 365 admin credentials. The Office 365 OAuth URL should be used because the Microsoft Graph is required by Office 365 for OAuth authorization if you are using an Office 365 hybrid environment and the Exchange on-prem server was released earlier than Exchange 2016 Cumulative Update 3 (CU3) that was released in September 2016. Visit Microsoft’s support website to find out more about this topic. Integration of Office 365 calendars and contacts with the Outlook calendar, Ensure that the Authorize with EWS URL option is selected during the process. Then click Save, and you will be able to enter the EWS URL. Admins can’t change permissions on Office 365 integrations for calendars and contacts when they configure them. Integration of Office 365 calendars and contacts with the Outlook calendar, If you are selecting the Authorize with EWS URL option, you will need to make sure you avoid selecting it. The permissions can be changed by clicking the Save button. All images and contents credit goes to support.zoom.us Prerequisites for integrating Office 365 when signing in with SSO
How to enable Ask users to integrate Office 365 with SSO credentials
Account
How to grant permission to use the Zoom app in Microsoft Azure
How Office 365 admin grant permission to all apps
How Office 365 admin grant permission to the Zoom apps only
What to do if Office 365 admin did not grant permissions to use the Zoom app in Azure
Office 365 admin to add the calendar service to Zoom
Upon clicking the link, you will be redirected to the Microsoft sign-in page, where you can sign into your account and sign in with your Microsoft credentials.
Office 365 admin to grant permission in Microsoft Azure
Office 365 admin to approve the calendar integration for the user
As part of the admin authorization process below, this will present the option I am the Office 365 admin and I consent on behalf of the company during the admin authorization process.
Use an Office 365 hybrid environment
Permission control