Enable Cloud Malware Protection for Slack Tenants
Umbrella supports Cloud Malware protection for all messages and files within your Slack deployment.
Table of Contents
Prerequisites
- Chrome or Firefox (recommended) with pop-up blockers and ad blockers disabled (only for the duration of authorization)
- You must have an active Slack tenant and Slack admin privileges (co-admin does not have sufficient privileges).
Limitations
- A tenant that fails to authenticate cannot be deleted.
Authorize a Tenant
- Navigate to Admin > Authentication.
- In the Platforms section, click Slack.
- In the Cloud Malware section, click Authorize New Tenant to add a Slack tenant to your Umbrella environment.
- In the Slack Authorization dialog box, check the checkbox to verify you meet the prerequisite and then click Next.
- Add a Tenant Name and then click Next.
- Select a Response Action for Umbrella to automatically apply to Slack messages and files found with malware and then click Next.
- Choose Monitor to cause Umbrella to log messages and files detected with malware. You will be able to manually delete these from the Cloud Malware report.
- Choose Delete to automatically delete the message or file.
- Click Next to integrate with Slack.
- If you are not already logged in, the Slack login page will appear; log in to Slack with admin credentials to grant access.
If you are already logged in to Slack with admin credentials, the Slack login page does not appear; proceed to Step 9.
- Screens with prompts from Slack will appear .
A. Click Allow to authorize the Cisco Slack Connector to view content and information about your Slack account, and to administer Slack for your account.
B. Click Allow to authorize the Cisco Slack Connector to perform actions in channels and conversations associated with your Slack account.
- You are redirected to Umbrella and a message appears showing the integration was successful. (It may be up to 24 hours for the integration to be confirmed and appear as Authorized in the Platforms section of the Authentication page.)
- Click Done.
Edit a Tenant
You can change the Response Action you have selected for a tenant.
- Navigate to Admin > Authentication.
- In the Platforms section, click Slack.
- In the Cloud Malware section , from the Edit column, click Edit. You can edit any tenant.
- Select a Response Action for Umbrella to automatically apply to Slack messages and files found with malware and then click Next.
- Choose Monitor to cause Umbrella to log messages and files detected with malware. You will be able to manually delete these from the Cloud Malware report.
- Choose Delete to delete the message or file.
- Click Next.
The new Response Action is displayed.
Revoke Authorization
- Navigate to Admin > Authentication.
- In the Platforms section, click Slack.
- From the Action column, click Revoke. You can revoke any authorized tenant.
- Click Revoke. The selected account is no longer authorized.
Enable Cloud Malware Protection for ServiceNow Tenants< Enable Cloud Malware Protection for Slack Tenants > Enable Cloud Malware Protection for Webex Teams Tenants
Updated about 2 months ago