Webinar Registration Page Not Prompting for Webinar Password

sdwebguy · May 4, 2020, 9:00pm

Description
I created a webinar using the API and it has a webinar password set. If I access the webinar using a join_url, I can see an ecrypted pwd passed along – that seems to be working fine. But if I just go to the webinar registration page hosted by zoom, I am asked to fill out the first name, lastname, and email, and click I am not a robot, but no requirement of putting in the webinar password. It just lets me in.

I have webinarID 925-2584-1946 in this state and don’t know why it isnt asking me for a password.

Tim

tommy · May 7, 2020, 8:31pm

Hey @sdwebguy,

After the user registers for the webinar, and is approved, then they will get the join URL with the password.

When someone goes to join the webinar itself (not the registration page) they will be prompted for the password.

Does that make sense?

Thanks,
Tommy

sdwebguy · May 7, 2020, 9:04pm

@tommy Thanks for the reply. I agree with you that is how it should happen, but…

Just now I tried it again.
I created a webinar with a webinar password, with registration required, and with Automatically Approve enabled. I started the webinar.
On another computer, I went to the registration page, filled out the info, clicked Join Webinar in Progress, and was put right into the webinar without it requiring me to enter the password.

This was the same behavior I noticed when I made the original post.

Tim

tommy · May 13, 2020, 12:24am

Hey @sdwebguy,

Once you register, and use the link that is provided to you, that link actually includes the password so you don’t have to manually type it.

Thanks,
Tommy

sdwebguy · May 13, 2020, 3:31am

@tommy Thanks for responding, but I don’t understand what is not being understood in my question. I see this as a major security issue.

Try this:

Create a webinar with a webinar password, with registration required, and with Automatically Approve enabled. Then start the webinar.
Now pretend your colleague tells their friend about the seminar, who tells their friend, who tells one of your competitors. That person is given the link to the Zoom-provided Registration Page for the seminar.
That person goes to that page, sees the information asking for first name, lastname, and email address, and fills it out. They click on Join Webinar in Progress
In my testing, even though the webinar has a password, the registration form doesn’t ask for it, and the user is NEVER PROMPTED FOR IT. They get right into the webinar.

So Ill ask again. How can that happen? What is the point of having a webinar password then?

Tim

tommy · May 15, 2020, 10:51pm

Hey @sdwebguy,

When you open up registration, and use the auto approve, any person can register for the webinar and get the join_url which includes the password. This is the intended flow.

That being said, if someone were to have found the Webianr ID without registering, they would not be able to join since they don’t have the password.

I suggest you use manual approve, and or authentication profiles if you want to make it a private webinar.

Thanks,
Tommy

Topic		Replies	Views
Webinars: User registers with email address X, but can use the link to join with email address Y API and Webhooks	2	241	May 21, 2021
Join Link API and Webhooks	2	580	August 21, 2020
Not require email to access webinar Web	4	1388	May 8, 2021
Auto create registrants to webinar API and Webhooks	8	1620	August 21, 2020
Automatic Approval of Registrants using API but not otherwise API and Webhooks	4	807	November 20, 2020

Webinar Registration Page Not Prompting for Webinar Password

Related Topics