How to Exclude Accounts from SSO | Community
Skip to main content
K
Newcomer
KendallH
Newcomer
April 19, 2023
Solved

How to Exclude Accounts from SSO

  • April 19, 2023
  • 4 replies
  • 71 views

I want to force SSO logins for all of our zoom accounts, except for certain accounts that require manual login.  How can I exclude these certain accounts from requiring SSO?

    Best answer by sachinzoom

    It says im an admin.  How can I open a ticket with zoom?

     


    Also, Hope your associated domains are approved. Thats a requirement for Single Sign on setup. 

    https://support.zoom.us/hc/en-us/articles/203395207-Getting-started-with-associated-domains

     

    If you have associated domains, And the role as I mentioned above, you should see the setting to exclude users from SSO sign on.

     

    If this response helps, please accept the answer as an accepted solution, so others can benefit as well.

    4 replies

    S
    Community Champion | Employee
    sachinzoom
    Community Champion | Employee
    April 19, 2023

    Hello @KendallH 

     

    This can be done via the setting 

    • Allow users to sign in with Single Sign-On (SSO): This will allow users to sign in with SSO through your company's vanity URL.
      • (Optional) After enabling this setting, you can also force users to use SSO if you have an associated domain on your account and they are signing in from that specified domain. Click Select Domains to set which domains must sign in with SSO and specify users who can bypass SSO sign-in to use a work email and password sign in. 
        Note: After forcing SSO sign-in for specific domains, work email sign-in methods cannot be created for users in that domain. If needing to create exceptions for certain users, create the work email login type before enforcing SSO sign-in. 

    KB: https://support.zoom.us/hc/en-us/articles/115005756143-Changing-account-security-settings#h_273b6e9f-a70b-4f3a-8b0e-d29f42fe01e8

     

    See screenshot: 

    Add users who may bypass SSO

     

    If this response helps, please accept the answer as an accepted solution, so others can benefit as well.

    K
    Newcomer
    KendallHAuthor
    Newcomer
    April 19, 2023

    I dont see that option?

     

      S
      Community Champion | Employee
      sachinzoom
      Community Champion | Employee
      April 20, 2023

      Hi @KendallH 

      Making sure you meet the pre - requisites below and also check if your role has Security privileges.This is a screenshot below from the admin role ( User management -> Roles -> Admin or Owner )

       

      If both are available, You may need to open a support ticket to troubleshoot further. 

       

      Prerequisites for changing account security settings

      • Pro, Business, Education, or Enterprise account
      • Account owner, admin, or user with a role that has security privileges
      M
      Newcomer
      Mordechai98
      Newcomer
      May 1, 2023
      @KendallH wrote:

      I want to force SSO logins for all of our zoom accounts, except for certain accounts that require manual login.  How can I exclude these certain accounts from requiring SSO? Heidi Klum at park

      You can enforce SSO logins for all your Zoom accounts, except for the specified accounts that you excluded. Users of those specific accounts can continue to log in manually without being redirected to the SSO authentication process.

      Remember to review and test the settings thoroughly to ensure that the desired accounts are excluded from SSO enforcement while others are still required to use SSO for logging into Zoom.

      D
      Newcomer
      dalejohnson
      Newcomer
      May 10, 2023

      I hate to jump into this thread, but can I ask a question cause I am looking for something similar.

      Can I force Azure SSO for all corporate employees that are in our Azure Tenant automatically and and if the use does not exist in the associated Azure groups will have the option to sign in manually?

      We are an adult education company and have a lot of 3rd party instructors that use our ZOOM licenses, but do not have corporate accounts, thus are not part of our AD/AzureAD.

      M
      Newcomer
      mdi
      Newcomer
      September 16, 2023

      I face the same situation here what i do.

      1 - activated sso on your tenant with your main domain like compagny.zoom.us.

      2 - activated sso for users who need sso ( with csv file enable the sso box while doing import users.

      3 - at this step all users sso can connect by sso.

      4 - in your main URL domain zoom like ( https://compagny.zoom.us you can customize this page to let no sso users to connect with email/password what i find and do

      5 - How to do this : go to web portal admin page> advanced > branding > change the landing page HTML > search the field find "Made With" link to Zoom by "Email/Password" and dont forget to change default url : zoom.us by zoom.us/#singin/login to let no sso users using default zoom tenant to connect with ther email and password and save your change before quiet.

      Terms & ConditionsAccessibility statement
      Copyright © Zoom Communications, Inc. All rights reserved.