Supplemental Slack info for you and your team.Tips and tools for beginners and experts alike.Get familiar with Slack Enterprise Grid for large organizations.If you're curious about what's new in Slack — and what's changed — you're in the right place.Develop your skills and prepare to become Slack Certified!Launching a new team or joining one for the first time?
Our easy-to-read guides help your team work better, together, from day one.Ready to level up? Browse our time-saving tricks and practical tips for
making Slack work for you.All kinds of teams thrive with Slack — take a look at our department-specific guides.
More coming soon!From channels to search – learn how Slack works from top to bottom.Want to learn more about setting up your team? Look no further!Welcome to Slack! Nice to see you here. Let’s get started!Adjust your profile and preferences to make Slack work just for you.Connect, simplify and automate. Discover the power of apps and tools.Tips and tools for beginners and experts alike.
Slack is experiencing some connectivity issues — please stand by. Check
Status
Tip: Workspace owners and org owners can bypass SSO authentication to sign in with an email address and password. This guarantees access to Slack even if your IDP is having issues.
Step 1: Configure your identity provider
To get started, you’ll need to set up a connection between your IDP and Slack. Many of the providers that we work with have created content to guide you through enabling SAML for Slack:
Once you’ve configured your IDP, a workspace owner can enable SSO.
From your desktop, click Admin in the sidebar. If you can’t see this option, click your workspace name to access workspace settings instead.
Select Workspace settings from the menu.
Click Security, then select SSO & authentication.
Next to An identity provider or custom SAML, click Configure SAML.
In the top right, toggle Test mode on.
Next to SAML SSO URL, enter your SAML 2.0 endpoint URL. (This came from setting up your connector earlier). If Okta is your IDP, you can optionally include the IDP URL instead.
Next to Identity provider issuer, enter your IDP entity ID.
Copy the entire x.509 certificate from your identity provider and paste it into the Public certificate field.
Next to Advanced options, click Expand. Choose how the SAML response from your IDP is signed. If you need an end-to-end encryption key, tick the box next to SignAuthnRequest to show the certificate.
Under Settings, choose whether members can edit their profile information (like their email or display name) after SSO is enabled. You can also choose whether SSO is required, partially required or optional.
Below Customise, enter a sign-in button label.
Click Save Configuration to finish.
Once you’ve configured your IDP, an org owner can enable SSO.
From your desktop, click your organisation name in the top left.
Select Tools & settings from the menu, then click Organisation settings.
From the sidebar, click Security, then click SSO settings.
Enter your SSO name.
Enter your SAML 2.0 endpoint URL (this came from setting up your connector earlier) to configure where authentication requests from Slack will be sent.
Enter your identity provider issuer URL.
By default, the service provider issuer URL is set to https://slack.com. This field should match what you’ve set in your IDP.
Copy the entire x.509 Certificate from your IDP.
Choose whether the SAML responses and assertions are signed. If you require an end-to-end encryption key for your IDP, tick the box next to SignAuthnRequest to show the certificate. You can also select your preference for AuthnContextClassRef values.
Click Test configuration. We'll let you know if the changes are successful or whether you need to make further changes.
Click Turn on SSO or Add SSO.
Set up additional SSO configurations
You can add up to 11 additional SSO configurations to allow people to log in to Slack from IDPs of your choice.
From your desktop, click on your organisation name at the top left.
Hover over Tools & settings, then click Organisation settings.
From the left sidebar, click Security, then click SSO settings.
Click Add SSO Configuration in the top right.
Tip: If you have guests in your workspace or organisation, we recommend choosing the option where SSO is partially required so that they can still sign in with their email address and password.
Once you’ve set up SSO, members that are required to sign in with SSO will receive an email. The email will prompt members to bind their Slack accounts with your IDP. Members will have 72 hours to bind their account before their link expires.
Any members already signed in when SSO is enabled will remain signed in. Going forward, all members will sign in to Slack with their IDP account. If you chose to require SSO, your members will see a sign-in page before they can access Slack.
Great news! Our Help Center is available in multiple languages. Switch to EnglishBonne nouvelle ! Le centre d'assistance de Slack est désormais disponible dans plusieurs langues. Poursuivre en FrançaisGute Neuigkeiten! Unser Support-Center gibt es jetzt in mehreren Sprachen! Weiter auf DeutschSlack ヘルプセンターが複数言語で閲覧できるようになりました!日本語ページへ切り替え¡Buenas noticias! El centro de ayuda de Slack ya está disponible en varios idiomas. Continúa leyendo en español
