Supplemental Slack info for you and your team.Tips and tools for beginners and experts alike.Get familiar with Slack Enterprise Grid for large organizations.If you're curious about what's new in Slack — and what's changed — you're in the right place.Develop your skills and prepare to become Slack Certified!Launching a new team or joining one for the first time?
Our easy-to-read guides help your team work better, together, from day one.Ready to level up? Browse our time-saving tricks and practical tips for
making Slack work for you.All kinds of teams thrive with Slack — take a look at our department-specific guides.
More coming soon!Learn how Slack works, from top to bottom!Want to learn more about setting up your team? Look no further!Welcome to Slack! We're so glad you're here. Let's get started!Adjust your profile and preferences to make Slack work just for you!Simplify your daily work with apps and tools.Tips and tools for beginners and experts alike.
Slack is experiencing some connectivity issues — please stand by. Check
Status
If your preferred identity provider doesn't have a connector with Slack, you can use a custom SAML connection.
Note: We're happy to help with your setup, but we can't always guarantee your connection will work with Slack. Read our Troubleshoot SAML authorization errors article or send us a note and we'll do what we can!
Parameters
Follow these parameters to configure your custom SAML connection.
Provisioning
Slack supports Identity Provider (IDP) Initiated Flow, Service Provider (SP) Initiated flow, Just In Time provisioning, and automatic provisioning through our SCIM API.
For SP-Initiated single sign-on, go to https://yourdomain.slack.com.
SSO post-back up URL
https://yourdomain.slack.com/sso/saml (Also known as the Assertion Consumer Service URL)
Entity ID
https://slack.com
Note: Slack does not support Single Logout or session duration configured in your IDP. As an alternative, you can set up a session duration to limit how long your members stay signed into Slack.
Considerations
Slack supports HTTP POST binding, not HTTP REDIRECT. You must configure HTTP POST bindings in the IDP metadata.
Your IDP must ensure a user is both authenticated and authorized before sending an assertion. If a user isn't authorized, assertions should not be sent. We recommend your identity provider redirects people to an HTTP 403 page or something similar.
Slack requires that the SAML response is signed, and you will need to paste a valid X.509 .pem Certificate to verify your identity. This is different from your SSL certificate.
End-to-end encryption key
If you require an end-to-end encryption key for your IDP, you can find a certificate by clicking the Advanced Options button located in your workspace's SSO settings. You can then check the Sign AuthnRequest preference to reveal Slack's public encryption key.
Note: If you'd like to connect your Active Directory Federation Services (ADFS) instance, read ADFS single sign-on for details.
Who can use this feature?
Only Workspace Owners can access this feature
Available on the Business+ and Enterprise Grid plans
Great news! Our Help Center is available in multiple languages. Switch to EnglishBonne nouvelle ! Le centre d'assistance de Slack est désormais disponible dans plusieurs langues. Poursuivre en FrançaisGute Neuigkeiten! Unser Support-Center gibt es jetzt in mehreren Sprachen! Weiter auf DeutschSlack ヘルプセンターが複数言語で閲覧できるようになりました!日本語ページへ切り替え¡Buenas noticias! El centro de ayuda de Slack ya está disponible en varios idiomas. Continúa leyendo en español