Configuring SAML SSO for Slack

These steps will guide you through setting up the single sign-on functionality between ADSelfService Plus and Slack.

Prerequisite

Login to ADSelfService Plus as an administrator.
Navigate to Configuration → Self-service → Password Sync/Single Sign-on.
Locate and click on Slack in the list of applications provided.
Click on the Download SSO Certificate link in the top-right corner of the screen.
In the pop-up that appears, copy the Login URL and download the SSO certificate by clicking on the Download SSO Certificate button.

Slack (Service Provider) configuration steps

Login to Slack with an administrator’s credentials.
Click Account Name from the top-left.
Under Team settings, Select Authentication.
Enable Single sign on and click Configure SAML authentication.
Reconfirm your password and choose Custom SAML 2.0 and click Configure.
Paste the Login URL and Identity Provider URL, copied in Step 5 of Prerequisite.
Open the downloaded SSO certificate as a text file. Copy and paste the content it in the Identity Provider Certificate text field.
Under Advanced options,
- Uncheck Authentication Sign.
- Choose default value for AuthContextClassRef and.
- Check Responses Signed.
Customize the sign-in button label.
Click Save the Configuration.

ADSelfService Plus (Identity Provider) configuration steps

Provide a Description in the respective field.

In the Available Policies field, click on the drop-down box and select the policies for which you wish to enable single sign-on.

Click Save.

For Slack, both SP and IDP initiated flows are supported.