Permissions Required for Zoom
When you grant access to the Zoom app instance, Netskope seeks consent for the following permissions from the Zoom account:
Permissions required by Netskope | Description | Purpose | Trade-off if not allowed |
---|---|---|---|
chat_channel:read | View all users' chat channels. This scope allows the app to view details of all channels. | Allows Netskope to access the channel settings and metadata to detect security and threat risk. | The chat related fetching and evaluation process will fail. |
chat_message:read | View all users' chat messages. This scope allows the app to view details of all chat messages. | Allows Netskope to access the message detail and metadata to detect security and threat risk. | The chat related fetching and evaluation process will fail. |
chat_message:write | View and manage all users' chat messages. This scope allows the app to access all chat messages. | Allows Netskope to access the message detail and metadata to remediate security and threat risk. | The chat related fetching and evaluation process will fail. |
group:read | View groups. This scope allows the app to view details of all group message. | Allows Netskope to access the group metadata to detect security and threat risk. | The group related fetching and evaluation process will fail. |
group:write | View and manage groups. This scope allows the app to access all group. | Allows Netskope to access the group metadata to remediate security and threat risk. | The group related fetching and evaluation process will fail. |
meeting:read | View all user meeting. This scope allows the app to view details of all group meeting. | Allows Netskope to access the meeting setting and metadata to detect security and threat risk. | The meeting related fetching and evaluation process will fail. |
meeting:write | View and manage all user meetings. | Remediate (delete) in-meeting chat messages containing sensitive content. | Remediate (delete) in-meeting chat messages containing sensitive content will fail. |
phone:masterDelete | View and manage all sub accounts' Zoom phone information. | Monitor audit logs related to phone events. | Audit logs related to phone events will fail. |
phone:read | View all users' phone information. | Monitor audit logs related to phone events. | Audit logs related to phone events will fail. |
phone_e911:read | View all users' emergency call alert information. | Monitor audit logs related to phone events. | Audit logs related to phone events will fail. |
phone_sms:read | View all users' Zoom phone SMS information. | Monitor audit logs related to phone events. | Audit logs related to phone events will fail. |
recording:read | View all user recordings. This scope allows the app to view details of all recording. | Allows Netskope to access the recording metadata to detect security and threat risk. | The recording related fetching and evaluation process will fail. |
recording:write | View and manage all user recordings. This scope allows the app to access all recording. | Allows Netskope to access the recording metadata to remediate security and threat risk. | The recording related fetching and evaluation process will fail. |
report_chat:read | View your chat history report. | Retrieve chat history to see any message containing sensitive content. | Protect the past chat messages will fail. |
role:read | View all user roles. | Detect anomalies in the admin role changes. | Detect anomalies in admin role changes will fail. |
user:read | Read user metadata. This scope allows the app to view user information of all users in a Zoom account. | Allows Netskope to access user metadata of the account that granted access and detect security and threat risk. | This is a mandatory permission. |
webinar:read | View all user webinars. This scope allows the app to view details of all webinar. | Allows Netskope to access the webinar metadata to detect security and threat risk. | The webinar related fetching and evaluation process will fail. |
webinar:write | View and manage all user webinars. | Remediate (delete) webinar chat messages containing sensitive content. | Remediate (delete) webinar chat messages containing sensitive content will fail. |