• Link PingOne for Enterprise to an identity repository containing the users requiring application access.
  • You must have administrative access to PingOne for Enterprise and Slack.
  1. Set up the Slack application in PingOne for Enterprise:
    1. Sign on to PingOne for Enterprise and go to Applications > Application Catalog.
    2. Search for Slack.

      Screen capture showing a search for Slack in the application catalog. The search results list shows the results for Slack.
    3. Expand the Slack entry and click the Setup icon.
    4. Copy theIssuer and IdP ID values.
    5. Download the signing certificate.

      Screen capture showing how to download the signing certificate.
    6. Click Continue to Next Step.
    7. Set ACS URL to https://<Your slack domain>.slack.com/sso/saml.
    8. Click Continue to Next Step.
    9. In the Attribute Mapping section, map the attributes to the corresponding attributes in your userstore.

      Screen capture showing how to map the application attributes to the corresponding attributes in your userstore.
    10. In the SAML_SUBJECT row, click Advanced.
    11. In the NameID Format to send to SP field, enter urn:oasis:names:tc:SAML:2.0:nameid-format:persistent.
    12. Click Save.

      Screen capture showing the advanced attribute options and where to enter the Name ID Format to send to the SP.
    13. Click Continue to Next Step.
    14. Click Add for each user group that should have access to Slack.

      Screen capture showing how to add user groups that should have access to Slack.
    15. Click Continue to Next Step.
    16. Click Finish.
  2. Add the PingOne for Enterprise IdP connection to Slack:
    1. Sign on to your Slack Admin account as an administrator.
    2. Go to Settings & Administration > Workspace Settings.