You can add ANY email if using 'Add Meeting Registrants' API even 'Only authenticated users can join' is selected?

In admin setting I selected ‘Only authenticated users can join: Sign in to Zoom’
But when I used ‘Add Meeting Registrants’ API. It’s allow any email to be registered.

I also try to register by using registration link like
and fill random email in the Email Address it said “The email address has not been used as a Zoom account.”

So, This mean if I’m using API to add registrant. I can added any email and user still able to join the meeting without problem despite wrong email address (aka. zoom account) ?

1 Like

I have the same problem!

Can any moderator answer my question please ?

Hey @pingchp, @lisa.accardi,

How are you creating the meeting? With the API? If so, can you share your request body JSON so I can try to reproduce the issue?


  1. Created meeting via website control panel with theses option
  • Only authenticated users can join: Sign to zoom
  • Member registration set to Manually Approve
  1. Add member to room with this API
  • JSON => {“email”:"$put_email",“first_name”:"$firstname",“last_name”:"$lastname"}"
    After member added I will have those member list on waiting approval list. In step 2. I can added ANY email to the list whether it’s valid zoom account or not.
  1. Use this API to update member status to Approved.
  1. Setup webhook to grab a join_url to created join button on the website.


If you added members via API you can add any email to the list and join_url also not include email credential so user can use any zoom account to join the room via any join_url (friends can share their join_url and still can login without specific zoom account tie into that url as long as they have zoom account).

These should be fixed. Join Url should only be used with the email that created join url.

Hey @pingchp,

Once the registration is complete and the unique join_url is created, yes anyone can use it to join, but you should only share the join_url with the person who you intend to join.

As for the issue of being able to register add any email of a Zoom user for your meeting with Sign into Zoom required, the emails you are adding have Zoom accounts if it succeeds. If you want me to look into this further, share an email that is not a Zoom account that still was able to register to your meeting with the setting Sign into Zoom required.


Hi @tommy, I read your answer but I think @pingchp’s issue is still there.

Can you please share the steps that if I schedule an event via a zoom website, and I want to allow only email addresses which pay on my WordPress site to be able to join the meeting. So how to add email addresses via API? and no one else can join the meeting without any link or email.

Please answer as soon as possible.

@tommy my question from above comment has been edited and updated, please answer as soon as possible.

Hi @faisal.alvi,

If you want to allow only certain users to join a meeting, you can add those users to an upcoming meeting using our Add Meeting Registrant API endpoint to do so, and ensure that the meeting is set to registration: required.


Thanks @will.zoom , same applies for webinars, right?

Hey @faisal.alvi, that’s correct — you can use the equivalent endpoint for a Webinar:


1 Like
  • this email id has not been registered on Zoom.
    I was able to register this with the API.
    When I try to register this user through the Zoom registration link I get the error - “This meeting is for authorized users only”. See attached screenshot.
    Screenshot 2021-07-05 230634

Kindly share a solution on how to restrict such users from Add meeting registrants API.

Hi @nayagoet,

Do you have “Require authentication to join” checked off for this meeting/webinar? To prevent that error, you’ll want to uncheck the “Require authentication to join” setting. On your user-level settings page, you’ll also want to disable the setting “Only authenticated users can join meetings from Web client”.

Let me know if this helps,

Thanks Will.
I think there is a misunderstanding of my requirement.

I want to register only Zoom authenticated users through the Add registrant API.
In my example -
This email id is not a Zoom authenticated email.
But the API is allowing me to register this email although the meeting has Register authentication checked. See the attached screenshot.

Hi @nayagoet , can you please share the request and payload response showing a successful add of the unauthenticated Zoom user to We can see if we are able to reproduce this situation under like conditions.


1) Data:
registerdetails2 = {
“email”: “”,
“first_name”: “PY”,
“last_name”: “Verna”,
“custom_questions”: [
“title”: “Whatsapp Phone Number”,
“value”: “9912321”

  1. Request:
    r = requests.get(
    headers=headers, data=json.dumps(registerdetails))

  2. Response:
    <Response [201]>
    {“registrant_id”:“uZyvTcDsSSaxsmydK7J-pA”,“id”:81928392986,“topic”:“Zoom API Test meeting”,“start_time”:“2021-07-20T04:51:00Z”,“join_url”:“Launch Meeting - Zoom”}

Hey @nayagoet,

I think there might be some confusion here around how this setting works. While enabling Require Authentication to join: Sign in to Zoom will require that a registrant signs into Zoom before joining your meeting - it will not check if the email has a valid Zoom account on registration.

This is by design as checking if an email has a Zoom account by just running an API request on your account would allow information gathering for Hackers/Phishers.

Let me know if you have any questions.