Extras
Supplemental Slack info for you and your team.
Slack Guides
Tips and tools for beginners and experts alike.
Slack Enterprise Grid
Get familiar with Slack Enterprise Grid for large organizations.
Changelog
If you're curious about what's new in Slack — and what's changed — you're in the right place.
Slack Certification
Develop your skills and prepare to become Slack Certified!
Getting Started
Launching a new team or joining one for the first time?
Our easy-to-read guides help your team work better, together, from day one.
Getting More Out of Slack
Ready to level up? Browse our time-saving tricks and practical tips for
making Slack work for you.
Department Playbooks
All kinds of teams thrive with Slack — take a look at our department-specific guides.
More coming soon!
Using Slack
Learn how Slack works, from top to bottom!
Workspace Administration
Want to learn more about setting up your team? Look no further!
Getting Started
Welcome to Slack! We're so glad you're here. Let's get started!
Your Profile and Preferences
Adjust your profile and preferences to make Slack work just for you!
Add Tools to Your Workspace
Simplify your daily work with apps and tools.
Tips, tricks, & More
Tips and tools for beginners and experts alike.
Next
Previous
Next Video
Previous Video
Actions, activity, access logs, accessibility, add, add an app, add-in, add-on, Add members, add on, Add to Slack, administrators, all passwords, analytics, android, announcement, announcements, App Directory, app icon, Apple Watch, approving apps, archive, Asana, Atlassian, Automation apps, badge, billing details, billing, Bitbucket, bot user, box, browse, Calendar, calls, Calls !pobeta!pc, cancel, changes, channels, channel instantly, channel management, channel notification, channel suggestions, claim domains, close, company culture, compliance exports, compose, computers, conversations, convert, connect, connected accounts, connection, connecting, copy messages, create, customization, customize, custom SAML, custom, customer support teams, dark mode, data exports, data security, deactivate, default channels, delete, deletion, deploy slack, desktop, direct messages, directory, disable, discover and join, Discovery APIs, display name, DMs, Do Not Disturb, domain, domains, downgrade, dropbox, duplicate accounts, edit, editing, education, email address, email, emoji, emoticons, Enterprise Grid, Enterprise Key Management, Enterprise Mobility Management, executives, export, failed payments, Fair Billing, faqs, features, finding, format, formatting, framework for apps, free trials, general, getting started, giphy, github integration, github organization, github, glossary, Gmail add-on, google apps, google calendar, google drive, guests, highlights, hipchat, human resources, IFTTT, import, Incoming WebHooks, integrations, ios, invite, invited, IT teams, JIRA, join, Keep up, keyboard layout, keyboard shortcuts, Keychain Access, keyword notifications, language, languages, leave, link previews, loading, limits, links, linux, mac, manage a workspace, manage apps, manage members, marketing, mention, merge, message actions, messages are displayed, message display, microsoft products, mobile, mobile push, move channels, moving workspaces, multiple, mute, name, names, noise, nonprofits, notify, OneDrive, onboard, Outlook Calendar, owners, password, payment, payments, pending, permissions, phones, pin, plan, plans, plus plan, polls, posts, privacy policies, prioritize tasks, private, private channel, private notes and files, project management, public channel, purpose, quick start guide, Quick Switcher, quote, reactivate, read, recruitment, referrer information, reminder, remove, rename, retention, Request a new workspace, role, roles, RSS, sales, Salesforce, SAML, SCIM, SCIM provisioning, screen reader, search, send, session duration, share messages, share, shared channel, shared channels, sidebar, sign in, sign out, signup mode, single sign-on, Slack Day, Slack for Teams, Slack notifications, Save notes and files, Service Level Agreements, ServiceNow, sign up, slack status, slackbot, slash commands, snippet, snooze, software developers, star, statistics, Stride, sync, tablets, tax, threads, time zone, tips, to-do lists, topic, triage channels, Terms of Service, transfer ownership, Transport Layer Security, Trello, troubleshoot, trouble receiving, tour, twitter, two-factor authentication, unread messages, updates, upgrade, upload, users, username, user groups, URL, vacation, Vendor and remittance, video, voice call, voice, what is, what's important, whitelist, whitelisting, windows phone, windows, Workflow Builder, workflows, working in, workspace apps, workspace creation requests, workspace discovery, work hours, workspace's settings, wunderlist, your actions, Zapier, zoom
Slack is experiencing some connectivity issues — please stand by.
Check
Status
自訂 SAML 單次登入
若你偏好的身分提供者沒有提供可與 Slack 搭配使用的連接器,則可使用自訂 SAML 連線。
注意: 我們很樂意協助你設定,但無法保證連線方式一定能與 Slack 搭配運作。若有問題,請參閱 SAML 授權錯誤疑難排解 一文,或是傳送訊息給我們 ,我們將盡力提供協助。
參數
請參照以下參數來設定自訂 SAML 連線。
佈建
Slack 支援透過 SCIM API 進行身分提供者 (IDP) 初始化流程、服務提供者 (SP) 初始化流程、即時佈建與自動佈建 。
如果是採用 SP 初始化單次登入,請前往 https://yourdomain.slack.com。
SSO 備份後網址
https://yourdomain.slack.com/sso/saml (又稱為「判斷提示取用者服務網址」)
實體識別碼
注意: Slack 不支援 IDP 中的單一登出或作業階段持續時間設定。做為替代方案,你可以設定作業階段持續時間 來限制成員登入 Slack 的時間。
考量事項
Slack 支援 HTTP POST 綁定 ,但不支援 HTTP REDIRECT。你必須在 IDP 中繼資料內設定 HTTP POST 綁定。
IDP 必須確保使用者已通過認證並獲得授權,才能傳送判斷提示。如果使用者未獲得授權,就不應傳送判斷提示。建議身分提供者將人員重新導向至 HTTP 403 頁面或類似網頁。
包含的設定
NameID (必要)
<saml:Subject> <saml:NameID Format="urn:oasis:names:tc:SAML:2.0:nameid-format:persistent " NameQualifier="YOURDOMAIN.slack.com" SPNameQualifier="https://slack.com">Your Unique Identifier</saml:NameID> </saml:Subject>
注意: 為符合 SAML 規範 ,NameID 不得重複,且應使用虛擬隨機方式產生,而使用者資料 (如員工識別碼) 也不會隨時間變動。
電子郵件屬性 (必要)
<saml:Attribute Name="User.Email " NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:unspecified"> <saml:AttributeValue xsi:type="xs:anyType">testuser@youremail.com </saml:AttributeValue> </saml:Attribute>
使用者名稱屬性 (選用)
<saml:Attribute Name="User.Username " NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:unspecified"> <saml:AttributeValue xsi:type="xs:anyType">UserName </saml:AttributeValue> </saml:Attribute>
名字屬性 (選用)
<saml:Attribute Name="first_name " NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:unspecified"> <saml:AttributeValue xsi:type="xs:anyType">FirstName </saml:AttributeValue> </saml:Attribute>
姓氏屬性 (選用)
<saml:Attribute Name="last_name " NameFormat="urn:oasis:names:tc:SAML:2.0:attrname-format:unspecified"> <saml:AttributeValue xsi:type="xs:anyType">LastName </saml:AttributeValue> </saml:Attribute>
認證
公開認證
除了要求簽署 SAML 回應外,Slack 也規定必須貼上有效的 X.509 .pem 認證 來驗證個人身分。該認證與 SSL 認證並不相同。
端對端加密金鑰
如果需要 IDP 的端對端加密金鑰,請在工作空間的 SSO 設定中按一下「進階選項 」按鈕。接著,你可以查看「簽署 AuthnRequest 」偏好設定並找出系統顯示的 Slack 公開加密金鑰。
注意: 若想連線至 Active Directory 同盟服務 (ADFS) 執行個體,請參閱「ADFS 單次登入 」一文以取得詳細資料。
誰可以使用此功能?
只有工作空間擁有者 可使用這項功能
適用於 Business+ 和 Enterprise Grid 方案
Awesome!
Thanks so much for your feedback!
Got it!
Thanks for your feedback.
If you’d like a member of our support team to respond to you, please send a note to feedback@slack.com .
Oops! We're having trouble. Please try again later!