UniFi Identity Enterprise - Add Slack as an SSO App
You can manage and secure access to Slack in Identity Enterprise Manager by enforcing SAML single sign-on (SSO) through Identity Enterprise
Requirements
To get started, ensure that you have an SSO-enabled Slack subscription.
Add Slack App to Identity Enterprise
- Go to your Identity Enterprise Manager > SSO Apps.
- Click the Add icon on the upper right corner and select Slack.
- Click Add. Copy the sign-on URL and Issuer and download the Public Certificate. You’ll need them when configuring SSO in Slack.
- After SSO is configured in Slack, navigate back to Identity Enterprise Manager, fill in the required information, and click Add.
Configure SSO in Slack
- Sign in to your Slack workspace as an admin.
- Click your workspace name in the left upper corner and go to Tools & Settings > Workspace settings.
- Go to the Authentication tab and click Configure in the SAML authentication.
- Go to the SAML SSO URL field and paste the sign on URL copied from Identity Enterprise Manager.
- Go to the Identity provider issuer field and paste the Issuer copied from Identity Enterprise Manager.
- Open the Public certificate downloaded from Identity Enterprise Manager, copy the entire content, and paste it to the Public certificate textbox.
- Expand the Advanced options and perform the following actions as needed:
- If you need an end-to-end encryption key, tick the Sign AuthnRequest checkbox to show the certificate.
- Enter https://slack.com in the Service provider issuer textbox.
- Under Settings, decide if members can edit their profile information (like their email or display name) after SSO is enabled. You can also choose whether SSO is required for all workspace members, all workspace members except guest accounts, or it is optional.
- Click Save Configuration.