- Setup
- Reference
When to Use This
By default, Server-to-Server OAuth apps have access to all users in your Zoom account. Use custom roles and scopes to restrict Parable’s access to specific teams or departments.
Overview
This guide walks you through creating a restricted Zoom integration that can only access data for a defined subset of users. The approach involves four steps:1. User Group
Group the users Parable should access
2. Custom Role
Create a role scoped to that group
3. Service Account
Create a dedicated service user
4. OAuth App
Create the app as the service user
Prerequisite: This guide assumes familiarity with the standard Server-to-Server OAuth setup. You’ll create a new, restricted app rather than modifying an existing one.
Setup Guide
1
Create a User Group
- Sign in to Zoom as an account owner or admin
- Go to User Management → Groups
- Click Add Group
| Field | Value |
|---|---|
| Group Name | Parable-Accessible-Users |
| Description | Users visible to Parable integration |
- Click Add
- Navigate to User Management → Users
- Add target users to the new group
2
Create a Custom Role
- Go to User Management → Roles
- Click Add Role
| Field | Value |
|---|---|
| Role Name | Parable-Restricted-Role |
| Description | Scoped access for Parable integration |
- Go to Role Settings tab
- Enable the permissions your integration needs:
| Permission | Purpose |
|---|---|
| Users (View) | Read user profiles |
| Dashboard (View) | Meeting/webinar data |
| Recording (View) | Access recordings |
| Zoom Phone (View) | Call logs (if applicable) |
- Set the scope for each permission:
- Click Edit in the Scope column
- Select Custom Scope
- Choose the
Parable-Accessible-Usersgroup - Click Save
3
Create a Service Account
- Go to User Management → Users
- Click Add Users
- Create a dedicated service user:
| Field | Value |
|---|---|
parable-service@yourcompany.com | |
| User Type | Licensed (required for phone data) |
- Find the new user in the list
- Click Edit next to their name
- Set User Role to
Parable-Restricted-Role - Click Save
The service user must have appropriate licenses to access the data types you need (e.g., Zoom Phone license for call logs).
4
Create the Server-to-Server OAuth App
- Log in to Zoom App Marketplace as
parable-service@yourcompany.com - Click Develop → Build App
- Select Server-to-Server OAuth → Create
- Name the app:
Parable Restricted Integration - Go to Scopes and add scopes matching your role permissions:
| Scope | Maps to Role Permission |
|---|---|
user:read:user, user:read:list_users:admin | Users (View) |
meeting:read:meeting, meeting:read:list_meetings:admin | Dashboard (View) |
report:read:admin, report:read:user:admin | Dashboard (View) |
team:read:team, team:read:list_teams:admin | Teams (View) |
phone:read:admin, phone_call_log:read:admin | Zoom Phone (View) |
- Complete required fields and Activate the app
- Copy your credentials from App Credentials:
- Account ID
- Client ID
- Client Secret