Permissions Required for Slack Enterprise
Permissions Required for Slack Enterprise
When you grant access to the Slack Enterprise instance, Netskope requests the following permissions from your Slack account:
Bot Token Scopes: scopes that govern what the app can access.
Permissions | Description | Purpose |
---|---|---|
calls:read | View information about ongoing and past calls | This permission allows Netskope Security Posture Management to retrieve calls history. |
conversations.connect:manage | Allows Netskope Security Posture for Slack to manage Slack Connect channels | This permission allows Netskope Security Posture Management to list Slack Connect invites. It requires Slack Connect API methods to access details about connected organizations and users, making this scope necessary. |
files:read | View files shared in channels and conversations that Netskope Security Posture for Slack has been added to | This permission allows Netskope Security Posture Management to retrieve file information. |
team.preferences:read | Allows Netskope Security Posture for Slack to read the preferences for workspaces Netskope Security Posture for Slack has been installed to | This permission allows Netskope Security Posture Management to list workspace specific settings. |
team:read | View the name, email domain, and icon for workspaces Netskope Security Posture for Slack is connected to | This permission allows Netskope Security Posture Management to get the list of workspaces and its settings. |
usergroups:read | View user groups in a workspace | This permission allows Netskope Security Posture Management to list the groups and its memberships. |
users.profile:read | View profile details about people in a workspace | This permission allows Netskope Security Posture Management to list the user profiles. |
users:read | View people in a workspace | This permission allows Netskope Security Posture Management to list the users in a workspace and its settings. |
users:read.email | View email addresses of people in a workspace | This permission allows Netskope Security Posture Management to retrieve a specific user by email. |
User Token Scopes: scopes that access user data and act on behalf of users that authorize them.
Permission | Description | Purpose |
---|---|---|
admin.app_activities:read | View execution logs within an organization | This permission allows Netskope Security Posture Management to retrieve the app activities. |
admin.apps:read | View apps and app requests in a workspace | This permission allows Netskope Security Posture Management to retrieve the list of approved apps. |
admin.invites:read | View a workspace’s invites and invite requests | This permission allows Netskope Security Posture Management to retrieve the list of accepted and denied invites in a workspace. |
admin.teams:read | Access information about a workspace | This permission allows Netskope Security Posture Management to get the list of workspaces and its settings |
admin.usergroups:read | Access information about user groups | This permission allows Netskope Security Posture Management to list the groups and its memberships. |
admin.users:read | Access a workspace’s profile information | This permission allows Netskope Security Posture Management to list the users in a workspace and its settings. |
auditlogs:read | View events from all workspaces, channels and users (Enterprise Grid only) | This permission allows Netskope Security Posture Management to allow continuous monitoring of resources in an Enterprise Grid. |
calls:read | View information about ongoing and past calls | This permission allows Netskope Security Posture Management to retrieve calls history. |
discovery:read | View all the organization’s messages (including all private channels and direct messages), as well as the organization’s files | This permission allows Netskope Security Posture Management to list all the channels. |
files:read | View files shared in channels and conversations that a user has access to | This permission allows Netskope Security Posture Management to retrieve file information. |
team.preferences:read | Allows Netskope Security Posture for Slack to read a workspace's preferences | This permission allows Netskope Security Posture Management to list workspace specific settings. |
team:read | View the name, email domain, and icon for workspaces a user is connected to | This permission allows Netskope Security Posture Management to get the list of workspaces and its settings. |
usergroups:read | View user groups in a workspace | This permission allows Netskope Security Posture Management to list the groups and its memberships. |
users.profile:read | View profile details about people in a workspace | This permission allows Netskope Security Posture Management to list the user profiles. |
users:read | View people in a workspace | This permission allows Netskope Security Posture Management to list the users in a workspace and its settings. |
users:read.email | View email addresses of people in a workspace | This permission allows Netskope Security Posture Management to retrieve a specific user by email. |