The SDO service allows users secure, password-free access to Zoom.  Users are able to log into their Zoom account by authorizing the connection through an app on their phone.  This article provides the steps needed to enabled the SDO service for Zoom and set up the Single Sign-on feature that SDO will use to authenticate connects to Zoom.

Please note that Zoom requires a business account subscription with a minimum of 10 hosts for the Vanity URL and Single Sign-On features required for SDO Authentication.

Enabling SDO Authentication for Zoom

  1. In the Control Panel, click on My Services from the left-hand menu.

  2. Click on the Secret Double Octopus vendor band to expand it.
  3. Under the expanded vendor band, click on the Services tab.
  4. Click on the Edit button for Zoom.
  5. Select your domain from the Domain drop-down field.
  6. Click the Zoom button.

  7. Click on the Service Metadata tab.
  8. The Service Metadata page will show the Login, Logout, and Issuer URLs for your SDO authentication connection.  Record these URLs, as they will be used to set up Zoom for SDO access.

  9. Copy the contents of the X.509 Certificate text box.  This will be used to set up Zoom for SDO access.

Setting up the Zoom account for SDO Authentication

  1. Log into your Zoom Account.

  2. Click on the My Account link.

  3. Click on Account Management from the left-hand menu.

  4. Click Account Profile,

  5. Click the Apply link for your Vanity URL.

  6. Enter your desired Vanity URL subdomain.  Please note the Zoom formatting guidelines and restrictions for requesting a Vanity URL
  7. The Vanity URL request will need to be approved by Zoom.  Once it is approved, click on Advanced from the left-hand menu.

  8. Click on Single Sign-On.

  9. Click the Enable Single Sign-On button.

  10. Click the Configure SSO Manually button.

  11. In the Sign-in Page URL and Sign-out Page URL fields, enter the Login URL and Logout URL you recorded from Step 8 in the previous section.

  12. In the Identity provider certificate field, enter the X.509 Certificate text you recorded from Step 9 in the previous section.

  13. Leave the Service Provider Entity ID field set to your vanity URL (without the https://).

  14. In the Issuer (IDP Entity ID) field, enter the Issuer URL you recorded in Step 8 in the previous section.

  15. Leave the remaining options at their default settings.

  16. Click the Save Changes button.

  17. Click the SAML Response Mapping tab.

  18. Click the Map to SAML Attribute link for Email Address.

  19. Enter "nameId" and click the Save Changes button.

  20. Return to the Secret Double Octopus Configuration page in the Control Panel, and click the Configuration tab.

  21. In the ACS URL field, enter a url in the format "<your Zoom vanity url>/saml/SSO"

  22. In the SSO URL field, enter your vanity url.
  23. Click the Save button

The Zoom account is now set up for Single Sign-On through SDO.  To log into Zoom via SDO Authentication, simply navigate to your Zoom Vanity URL and select either Join, Host, or Sign In.

You will receive an SDO Login prompt.  Enter your email address and click Login.  The SDO Authenticator app will automatically prompt you to authorize the login.