- 30 Dec 2024
- 2 Minutes to read
- Print
- DarkLight
- PDF
Slack - Create Group
- Updated on 30 Dec 2024
- 2 Minutes to read
- Print
- DarkLight
- PDF
Slack - Create group creates a group in Slack for:
- Assets returned by the selected query or assets selected on the relevant asset page.
- Not all asset categories are supported for all Enforcement Actions.
- See Actions supported for Activity Logs, Adapters Fetch History, and Asset Investigation modules.
- See Actions supported for Vulnerabilities.
- See Actions supported for Software.
General Settings
- Action name - The name of this Enforcement Action. The system sets a default name. You can change the name.
- Configure Dynamic Values - Toggle on to enter a Dynamic Value statement. See Creating Enforcement Action Dynamic Value Statements to learn more about Dynamic Value statement syntax.
- Use stored credentials from Slack Adapter - Select this option to use credentials from the adapter connection. By default, the first connection is selected.
- When you select this option, the Select Adapter Connection drop-down becomes available. Select the adapter connection to use for this Enforcement Action.
Note:To use this option, you must successfully configure a Slack adapter connection.
Required Fields
These fields must be configured to run the Enforcement Action.
- Group Name - The name of the group you are creating.
- Description - Description for the group you are creating.
Compute Node - The Axonius node to use when connecting to the specified host. For more details, see Connecting Additional Axonius Nodes.
Additional Fields
These fields are optional.
- Draft - Send the message to the group's Draft channel.
- Team ID - The Team ID for the new group. This is required if an org token is used.
Connection and Credentials
When Use stored credentials from the adapter is toggled off, some of the connection fields below are required to create the connection, while other fields are optional.
Host Name or IP Address (default: https://slack.com) - The full URL of the Slack server.
Authentication Token (required) - An Authentication Token associated with a user account that has the Required Permissions to fetch assets. For instructions on generating the Authentication Token, see admin.users.list.
Authentication Sub Domain - The Slack account's sub domain (<sub_domain>.slack.com).
User Name and Password - The credentials for a user account that has the Required Permissions to perform this Enforcement Action.
MFA Secret - The MFA Secret Key configured for the Slack adapter.
Enterprise Grid Organization - Select if you are using the Slack Enterprise Grid Organization solution. This allows Axonius to fetch data from all workspaces associated with the authentication token.
- Verify SSL (optional) - Select whether to verify the SSL certificate of the server against the CA database inside of Axonius. For more details, see SSL Trust & CA Settings.
- HTTPS Proxy (optional) - Connect the adapter to a proxy instead of directly connecting it to the domain.
- Gateway Name - Select the Gateway through which to connect to perform the action.
APIs
Axonius uses the Slack Create a User Group API.
Required Permissions
The stored credentials, or those provided in Connection and Credentials, must have have the following permissions:
- write
- edit
- admin
For more details about other Enforcement Actions available, see Action Library.