Cloudflare Docs
Cloudflare Zero Trust
View GitHub RSS feed
Visit Cloudflare Zero Trust on GitHub
Set theme to dark (⇧+D)


The Slack integration detects a variety of data loss prevention, account misconfiguration, and user security risks in an integrated Slack Workspace that could leave you and your organization vulnerable.

​​ Integration prerequisites

​​ Integration permissions

For the Slack integration to function, Cloudflare CASB requires the following Slack API permissions:

  • channels:read
  • files:read
  • groups:read
  • users:read

These permissions follow the principle of least privilege to ensure that only the minimum required access is granted. To learn more about each permission, refer to the Slack Permission scopes reference.

​​ Security findings

The Slack integration currently scans for the following findings, or security risks. Findings are grouped by category and then ordered by severity level.

To stay up-to-date with new CASB findings as they are added, bookmark this page or subscribe to its RSS feed.

​​ User account settings

Finding Severity Description
Slack User 2FA Disabled Critical A user in the Slack Workspace does not have two-factor authentication (2FA) enabled for their account.
Slack User Email Not Confirmed High A user in the Slack Workspace has not verified the email they use to sign in.

​​ Channel sharing

Finding Severity Description
Slack Channel Shared Externally High A channel in the Slack Workspace has been shared with users who are not members of the Workspace.

​​ File sharing

Finding Severity Description
Slack File Publicly Accessible Medium An external link has been created for a file uploaded to the Slack Workspace.
Large File (2GB+) Shared in Slack Low A file ≥ 2 GB has been uploaded to the Slack Workspace.