# Slack (Quick Setup)

## What You'll Need

* Your Tozny account - [create one free here](https://dashboard.tozny.com/register)
* Admin access to your Slack team configuration and a Slack Plus subscription or better
* About 15 minutes of time

## Configure TozID for Slack SSO

Create a new client application by logging into your TozID realm, selecting clients from the left menu, and clicking "create" on the top right. Select Slack from the drop down menu as shown in the screenshot below.

![Slack Configuration](https://1719691419-files.gitbook.io/~/files/v0/b/gitbook-x-prod.appspot.com/o/spaces%2F-L_m_2uhTi1Yrua9v6wA%2Fuploads%2Fgit-blob-0d33fcd0607175fb767081abe7363a310b9eade5%2FScreen%20Shot%202020-02-10%20at%203.15.51%20PM.png?alt=media)

{% hint style="info" %}
Your Slack domain is simply your organization name assigned by slack. So if you sign in at acme.slack.com your site domain is "<https://acme.slack.com>"
{% endhint %}

## Configure Slack

Navigate to your organization authentication settings and enable SAML Single Sign-On. To find this setting go to your Slack admin page, select Authentication from the left menu, and select the "SAML Authentication Settings" menu button. Below is a table of the configuration settings and the corresponding values as well as a screenshot of the completed settings.

| Setting                      | Value                                                                    |
| ---------------------------- | ------------------------------------------------------------------------ |
| SAML 2.0 Endpoint            | <https://id.tozny.com/auth/realms/\\><realm>/protocol/saml/clients/slack |
| Identity Provider Issuer     | <https://id.tozny.com/auth/realms/\\><realm>                             |
| Public Certificate           | Paste your certificate                                                   |
| Update profile on login      | Checked                                                                  |
| Allow users to change email  | Unchecked                                                                |
| Advanced - Sign AuthnRequest | Unchecked                                                                |
| Service Provider             | <https://slack.com>                                                      |
| Responses Signed             | Checked                                                                  |
| Assertions Signed            | Checked                                                                  |

![Basic Settings for TozID SAML with Slack](https://1719691419-files.gitbook.io/~/files/v0/b/gitbook-x-prod.appspot.com/o/spaces%2F-L_m_2uhTi1Yrua9v6wA%2Fuploads%2Fgit-blob-ec8f47a12265b466154e5fba403b2cebf7b03d9f%2FScreen%20Shot%202020-02-10%20at%203.12.03%20PM.png?alt=media)

![Advanced Settings for TozID SAML with Slack](https://1719691419-files.gitbook.io/~/files/v0/b/gitbook-x-prod.appspot.com/o/spaces%2F-L_m_2uhTi1Yrua9v6wA%2Fuploads%2Fgit-blob-197c0001b667e8565fcef5a2dbca36440ebdda61%2FScreen%20Shot%202020-02-10%20at%203.12.23%20PM.png?alt=media)