Authenticate a non-logged in or API user

To host or join a scheduled meeting as a non-login user, retrieve these two values from the REST API.

• User ID - pass your email address or retrieve it from the REST API by sending a GET request to https://api.zoom.us/v2/users/{userID}
• For individual users, a Zoom Access Key (ZAK) - send a GET request to the https://api.zoom.us/v2/users/{userId}/token with type="zak" and pass it to the SDK with JoinMeetingParam4WithoutLogin's zak or StartMeetingParamsWithoutLogin's zak.
• For apps that need to join the meeting as individual users, an OnBehalf Of (OBF) token - send a GET request to https://api.zoom.us/v2/users/{userId}/token with type="onbehalf" and pass it to the SDK with JoinMeetingParam4WithoutLogin's onBehalfToken.

Beginning March 2 2026, apps joining meetings outside their account must be authorized. Authorize apps by using either ZAK or OBF tokens, or RTMS. Learn more.

See SDK Authentication for more details.

Access the Meeting API

See Using Zoom APIs to configure your setup and access the Meeting API.

Get a Zoom Access Key (ZAK) or an OnBehalf Of (OBF) token

Once you have the access to the Meeting API, send a GET request to the /users/me/zak endpoint to get a Zoom Access Key (ZAK) for individual users, and an On Behalf Of (OBF) token for apps that need to join the meeting as individual users. See Get user's ZAK and SDK Authentication for details.

Even if the ZAK does expire, DO NOT pass or expose the ZAK token to others after retrieving it.