G Suite single sign-on

G Suite, formerly known as Google Apps, authentication (OAuth 2.0) allows all team members to sign in to Slack using their G Suite accounts. 

If you prefer to use SAML-based authentication instead, jump over to SAML single sign-on.

Set up G Suite authentication

    1. Go to the Team Settings page at https://my.slack.com/admin/settings.
    2. Click the Authentication tab.
    3. Next, click Configure for Google Apps authentication.
    4. Choose your authentication Settings. Visit Guide to single sign-on with Slack article for more.
    5. Click Save and Authenticate. You will be asked to authenticate with your G Suite account. Once done, G Suite authentication is enabled!

Tip: If you have Guest accounts on your team, we recommend choosing the option where SSO is partially required, so those members can still access your Slack team.

Don't forget! With G Suite authentication turned on, anyone in your organization with access to a whitelisted G Suite domain email address can sign-up for an account on your Slack team.  

 

User account provisioning and deprovisioning

  • Provisioning
    Slack supports just-in-time provisioning. This allows your members to create new accounts on the fly, the first time they log into Slack using G Suite authentication.
  • Deprovisioning
    If a member has left your team, and you’d like to restrict their login access, an Admin or Owner will need to deactivate their account from the Team Members page in Slack. Slack does not currently support automatic deprovisioning through G Suite.

After G Suite is enabled

Team members can continue to go to your team’s URL to sign in after G Suite is enabled.

  • New members 
    New members can create an account on your team as long as they have access to an email address that has been whitelisted. To get started, members can simply click create an account and follow the steps.

  • Existing members 
    Existing team members will receive an SSO binding email to authenticate their accounts. Once team members complete binding their accounts, they can sign in by going to your team’s URL and use their G Suite credentials.

Note: To learn more, visit Connect your SSO account with Slack.

 

Domain whitelisting

If you’d like to add additional domains to your whitelist, so team members with those domains can easily create accounts on your team, send us a note! We’d be happy to help add (or remove) them for you.

Switching domains? Clicking the Switch Domains button will prompt you to choose another Google account. All team members will be sent an email to link their accounts.

Who can use this feature?
  • Team Owners and Admins can make this feature available to all members
  • Available to teams on the Standard and Plus plans.

Related Articles

Recently Viewed Articles