Like many of you reading, at Haekka we’re constantly working in Slack. Recently, we’ve been thinking about ways to improve our internal security processes. As part of that initiative, we’re taking a closer look at all of our SaaS application configurations. Of course, Slack is a big one — it houses most of our internal knowledge, data, thoughts, and ideas. Ensuring that Slack and the apps that you use within it are configured properly is important to basic security hygiene.
We know that configuring your organization’s Slack Workspace can seem like a daunting task. However, Slack is extremely user-friendly and intuitive when it comes to setting up configurations and establishing permissions. Below are detailed instructions on Slack channel permissions, posting permissions, and Slack roles. Settings these properly can help you remain secure.
There are several hierarchies of permissions in Slack. Some features are only available to Owners/Admins, others to Members, and some to Guests.
For Slack’s Enterprise Grid plan, System Roles give multiple users flexibility and access that helps the organization communicate seamlessly.
Depending on the type of Slack plan a company has, every person has a different role, each with its own level of permissions and access. These different permissions are listed below.
Most of the permissions below are available by default for the owner/admin and members of the Slack workspace.
View a detailed breakdown here along with administrative settings for certain features.
Admins can use the following steps to expand and establish Slack permissions.
For an organization’s basic member, they typically have restricted user and channel permissions. Members can invite outside organization users to private channels and direct messages, and they can create/delete/archive their own channels, and invite other Workspace members. They can also create channels that are shared with other Workspaces or organizations.
As the organization becomes more familiar with Slack accessibility, these Slack channel permissions can be changed and adjusted at any time. Owners/Adminis can upgrade to the Enterprise Grid plan at any time, or make the Plus Grid Plan work just as well.