Permissions Required for Zoom
Permissions Required for Zoom
When you grant access to the Zoom app instance, Netskope seeks consent for the following permissions from the Zoom account:
| Permissions required by Netskope | Description | Purpose | Trade-off if not allowed |
|---|---|---|---|
| chat_channel:read | View all users’ chat channels. This scope allows the app to view details of all channels. | Allows Netskope to access the channel settings and metadata to detect security and threat risk. | The chat related fetching and evaluation process will fail. |
| chat_message:read | View all users’ chat messages. This scope allows the app to view details of all chat messages. | Allows Netskope to access the message detail and metadata to detect security and threat risk. | The chat related fetching and evaluation process will fail. |
| chat_message:write | View and manage all users’ chat messages. This scope allows the app to access all chat messages. | Allows Netskope to access the message detail and metadata to remediate security and threat risk. | The chat related fetching and evaluation process will fail. |
| group:read | View groups. This scope allows the app to view details of all group messages. | Allows Netskope to access the group metadata to detect security and threat risk. | The group related fetching and evaluation process will fail. |
| group:write | View and manage groups. This scope allows the app to access all groups. | Allows Netskope to access the group metadata to remediate security and threat risk. | The group related fetching and evaluation process will fail. |
| meeting:read | View all user meetings. This scope allows the app to view details of all group meetings. | Allows Netskope to access the meeting setting and metadata to detect security and threat risk. | The meeting related fetching and evaluation process will fail. |
| meeting:write | View and manage all user meetings. | Remediate (delete) in-meeting chat messages containing sensitive content. | Remediate (delete) in-meeting chat messages containing sensitive content will fail. |
| phone:master | View and manage all sub accounts’ Zoom phone information. | Monitor audit logs related to phone events. | Audit logs related to phone events will fail. |
| phone:read | View all users’ phone information. | Monitor audit logs related to phone events. | Audit logs related to phone events will fail. |
| phone_e911:read | View all users’ emergency call alert information. | Monitor audit logs related to phone events. | Audit logs related to phone events will fail. |
| phone_sms:read | View all users’ Zoom phone SMS information. | Monitor audit logs related to phone events. | Audit logs related to phone events will fail. |
| recording:read | View all user recordings. This scope allows the app to view details of all recordings. | Allows Netskope to access the recording metadata to detect security and threat risk. | The recording related fetching and evaluation process will fail. |
| recording:write | View and manage all user recordings. This scope allows the app to access all recordings. | Allows Netskope to access the recording metadata to remediate security and threat risk. | The recording related fetching and evaluation process will fail. |
| report_chat:read | View your chat history report. | Retrieve chat history to see any message containing sensitive content. | Protect the past chat messages will fail. |
| role:read | View all user roles. | Detect anomalies in the admin role changes. | Detect anomalies in admin role changes will fail. |
| user:read | Read user metadata. This scope allows the app to view user information of all users in a Zoom account. | Allows Netskope to access user metadata of the account that granted access and detect security and threat risk. | This is a mandatory permission. |
| webinar:read | View all user webinars. This scope allows the app to view details of all webinars. | Allows Netskope to access the webinar metadata to detect security and threat risk. | The webinar related fetching and evaluation process will fail. |
| webinar:write | View and manage all user webinars. | Remediate (delete) webinar chat messages containing sensitive content. | Remediate (delete) webinar chat messages containing sensitive content will fail. |
