Okta

How to Configure SAML 2.0 for Slack

Contents


Supported Features

The Okta/Slack SAML integration currently supports the following features:

For more information on the listed features, visit the Okta Glossary.


Configuration Steps

  1. Login your Slack account as an administrator.

  2. Navigate to Administration > Workspace settings:

    slack_newa.png

  3. Select Authentication.

  4. Click Configure for SAML Authentication:

    slack_new_2.png

  5. Enter the following:

    • SAML 2.0 Endpoint (HTTP): Copy and paste the following:

      Sign into the Okta Admin dashboard to generate this value.

    • Identity Provider Issuer: Copy and paste the following:

      Sign into the Okta Admin dashboard to generate this value.

    • Certificate: Copy and paste the following:

      Sign into the Okta Admin Dashboard to generate this variable.

    slack_new_3.png

  6. Under Advanced Options, use the default value for the Service Provider Issuer.

    It must be https://slack.com.

    slack_new_4.png

  7. Under Settings, select the desired options for SAML Authentication for users and workspace.

    Note: We recommend to use It’s optional for the Authentication for your workspace must be used by until the SAML configuration is fully tested. This will allow you to use both – username/password and SAML authentication options.

  8. Click Save Configuration:

    slack_new_5.png

  9. You will be prompted for Okta authentication.

  10. After successful authentication in Okta, the following message will appear in Slack:

    slack_new_6.png

  11. Done!


Notes

SP-initiated SSO

  1. Go to https://[subdomain].slack.com.

    Where [subdomain] is your organization's Slack subdomain.

  2. Select Sign in with Okta:

    slack_new_7.png