These steps will guide you through setting up the single sign-on functionality between ADSelfService Plus and Slack.
Login to ADSelfService Plus as an administrator.
Navigate to Configuration → Self-service → Password Sync/Single Sign-on.
Locate and click on Slack in the list of applications provided.
Click on the Download SSO Certificate link in the top-right corner of the screen.
Slack (Service Provider) configuration steps
Login to Slack with an administrator’s credentials.
Click Account Name from the top-left.
Under Team settings, Select Authentication.
Enable Single sign on and click Configure SAML authentication.
Reconfirm your password and choose Custom SAML 2.0 and click Configure.
Paste the Login URL and Identity Provider URL, copied in Step 5 of Prerequisite.
Open the downloaded SSO certificate as a text file. Copy and paste the content it in the Identity Provider Certificate text field.
Under Advanced options,
Uncheck Authentication Sign.
Choose default value for AuthContextClassRef and.
Check Responses Signed.
Customize the sign-in button label.
Click Save the Configuration.
ADSelfService Plus (Identity Provider) configuration steps
Now, switch to ADSelfService Plus’ Slack configuration page.
In the Domain Name field, enter the domain name of your email address. For example, if you use firstname.lastname@example.org to log in to Slack, then slack.com is the domain name.
Enter the SP Identifier of your Slack account in the SP Identifier field. For Eg: https:// <sp_identifier>.slack.com
Provide a Description in the respective field.
In the Available Policies field, click on the drop-down box and select the policies for which you wish to enable single sign-on.
For Slack, both SP and IDP initiated flows are supported.