Extras
Supplemental Slack info for you and your team.
Slack Guides
Tips and tools for beginners and experts alike.
Slack Enterprise Grid
Get familiar with Slack Enterprise Grid for large organizations.
Changelog
If you're curious about what's new in Slack — and what's changed — you're in the right place.
Slack Certification
Develop your skills and prepare to become Slack Certified!
Getting Started
Launching a new team or joining one for the first time?
Our easy-to-read guides help your team work better, together, from day one.
Getting More Out of Slack
Ready to level up? Browse our time-saving tricks and practical tips for
making Slack work for you.
Department Playbooks
All kinds of teams thrive with Slack — take a look at our department-specific guides.
More coming soon!
Using Slack
Learn how Slack works, from top to bottom!
Workspace Administration
Want to learn more about setting up your team? Look no further!
Getting Started
Welcome to Slack! We're so glad you're here. Let's get started!
Your Profile and Preferences
Adjust your profile and preferences to make Slack work just for you!
Add Tools to Your Workspace
Simplify your daily work with apps and tools.
Tips, tricks, & More
Tips and tools for beginners and experts alike.
Next
Previous
Next Video
Previous Video
Actions, activity, access logs, accessibility, add, add an app, add-in, add-on, Add members, add on, Add to Slack, administrators, all passwords, analytics, android, announcement, announcements, App Directory, app icon, Apple Watch, approving apps, archive, Asana, Atlassian, Automation apps, badge, billing details, billing, Bitbucket, bot user, box, browse, Calendar, calls, Calls !pobeta!pc, cancel, changes, channels, channel instantly, channel management, channel notification, channel suggestions, claim domains, close, company culture, compliance exports, compose, computers, conversations, convert, connect, connected accounts, connection, connecting, copy messages, create, customization, customize, custom SAML, custom, customer support teams, dark mode, data exports, data security, deactivate, default channels, delete, deletion, deploy slack, desktop, direct messages, directory, disable, discover and join, Discovery APIs, display name, DMs, Do Not Disturb, domain, domains, downgrade, dropbox, duplicate accounts, edit, editing, education, email address, email, emoji, emoticons, Enterprise Grid, Enterprise Key Management, Enterprise Mobility Management, executives, export, failed payments, Fair Billing, faqs, features, finding, format, formatting, framework for apps, free trials, general, getting started, giphy, github integration, github organization, github, glossary, Gmail add-on, google apps, google calendar, google drive, guests, highlights, hipchat, human resources, IFTTT, import, Incoming WebHooks, integrations, ios, invite, invited, IT teams, JIRA, join, Keep up, keyboard layout, keyboard shortcuts, Keychain Access, keyword notifications, language, languages, leave, link previews, loading, limits, links, linux, mac, manage a workspace, manage apps, manage members, marketing, mention, merge, message actions, messages are displayed, message display, microsoft products, mobile, mobile push, move channels, moving workspaces, multiple, mute, name, names, noise, nonprofits, notify, OneDrive, onboard, Outlook Calendar, owners, password, payment, payments, pending, permissions, phones, pin, plan, plans, plus plan, polls, posts, privacy policies, prioritize tasks, private, private channel, private notes and files, project management, public channel, purpose, quick start guide, Quick Switcher, quote, reactivate, read, recruitment, referrer information, reminder, remove, rename, retention, Request a new workspace, role, roles, RSS, sales, Salesforce, SAML, SCIM, SCIM provisioning, screen reader, search, send, session duration, share messages, share, shared channel, shared channels, sidebar, sign in, sign out, signup mode, single sign-on, Slack Day, Slack for Teams, Slack notifications, Save notes and files, Service Level Agreements, ServiceNow, sign up, slack status, slackbot, slash commands, snippet, snooze, software developers, star, statistics, Stride, sync, tablets, tax, threads, time zone, tips, to-do lists, topic, triage channels, Terms of Service, transfer ownership, Transport Layer Security, Trello, troubleshoot, trouble receiving, tour, twitter, two-factor authentication, unread messages, updates, upgrade, upload, users, username, user groups, URL, vacation, Vendor and remittance, video, voice call, voice, what is, what's important, whitelist, whitelisting, windows phone, windows, Workflow Builder, workflows, working in, workspace apps, workspace creation requests, workspace discovery, work hours, workspace's settings, wunderlist, your actions, Zapier, zoom
Slack is experiencing some connectivity issues — please stand by.
Check
Status
自定义 SAML 单点登录
如果你首选的身份提供商与 Slack 之间没有连接,则可以使用自定义 SAML 连接。
注意: 我们很乐意帮助你设置,但我们不能保证你的连接适用于 Slack。请阅读排除 SAML 授权错误 文章,或向我们发送通知 ,我们将全力协助。
参数
按照这些参数配置你的自定义 SAML 连接。
配置
Slack 通过 SCIM API 支持身份提供商 (IDP) 发起的流、服务提供商 (SP) 发起的流、及时配置和 自动配置 。
对于服务提供商 (SP) 发起的单点登录,请转到 https://yourdomain.slack.com。
SSO 发布备份网址
https://yourdomain.slack.com/sso/saml (也称为断言使用者服务网址)
实体 ID
注意: Slack 不支持在 IDP 中配置的单次登出或会话持续时间。作为一种替代方法,你可以设置会话持续时间 来限制成员登录 Slack 的时长。
考虑事项
Slack 支持 HTTP POST 绑定 ,而非 HTTP REDIRECT。必须在 IDP 元数据中配置 HTTP POST 绑定。
在发送断言之前,IDP 必须确保用户经过身份验证和授权。如果用户未被授权,则不应该发送断言。我们建议身份提供商将人员重定向到 HTTP 403 页面或类似页面。
设置应包括
NameID(必填)
<saml:Subject> <saml:NameID Format="urn:oasis:names:tc:SAML:2.0:nameid-format:persistent " NameQualifier="YOURDOMAIN.slack.com" SPNameQualifier="https://slack.com">Your Unique Identifier</saml:NameID> </saml:Subject>
注意: 为满足 SAML 规范 ,NameID必须是惟一的、伪随机的,并且不会随时间而改变——就像员工 ID 号一样。
电子邮件属性(必填)
<saml:Attribute Name="User.Email " NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:unspecified"> <saml:AttributeValue xsi:type="xs:anyType">testuser@youremail.com </saml:AttributeValue> </saml:Attribute>
用户名属性(选填)
<saml:Attribute Name="User.Username " NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:unspecified"> <saml:AttributeValue xsi:type="xs:anyType">UserName </saml:AttributeValue> </saml:Attribute>
名字属性(选填)
<saml:Attribute Name="first_name " NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:unspecified"> <saml:AttributeValue xsi:type="xs:anyType">FirstName </saml:AttributeValue> </saml:Attribute>
姓氏属性(选填)
<saml:Attribute Name="last_name " NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:unspecified"> <saml:AttributeValue xsi:type="xs:anyType">LastName </saml:AttributeValue> </saml:Attribute>
证书
公共证书
Slack 要求签署 SAML 响应,并且你需要粘贴一个有效的 X.509 .pem 证书 ,以便验证身份。这不同于你的 SSL 证书。
端到端加密密钥
如果需要为 IDP 提供端到端加密密钥,你可以通过单击位于工作区 SSO 设置中的高级选项 按钮,找到证书。随后,你可勾选签署 AuthnRequest 选项,以显示 Slack 的公钥。
注意: 如要连接你的 Active Directory 联合服务 (ADFS) 示例,请阅读ADFS 单点登录 ,以获取详情。
哪些人员可以使用此功能?
只有工作区拥有者 可使用此功能
企业增强 套餐和 Enterprise Grid 套餐中提供此功能
Awesome!
Thanks so much for your feedback!
Got it!
Thanks for your feedback.
If you’d like a member of our support team to respond to you, please send a note to feedback@slack.com .
Oops! We're having trouble. Please try again later!