Slack App Configuration
© 2025 Sonrai Security. All rights reserved.
Overview
Our Slack application enables you to approve or deny cloud access requests from the convenience of Slack.
The Sonrai Cloud Permissions Firewall slashes the permissions attack surface by protecting access to privileged permissions, unused services and cloud regions, and quarantining dormant identities.
Access needs are granted seamlessly through Permissions-on-Demand and just-in-time workflows that integrate with the best ChatOps tools out there — Slack included.
When an identity tries to use a restricted permission or quarantined identity, an automated message is routed via Slack to predetermined owners. The message details the account, identity, service, permission, and timeframe, allowing the owner to either approve or deny the request.
Sonrai Slack App Functionalities
Permissions
On behalf of the app, Sonrai can:
- View messages that directly mention
@sonraiin conversations that the app is in - Send messages as
@sonrai - Start direct messages with people
- View people in a workspace
- View email addresses of people in a workspace
Event Subscriptions
Sonrai App for Slack subscribes to the below events:
- App Mention
- Home Tab Opened
- App Uninstall
App Mentions
If the Sonrai Cloud Permissions Firewall Slack app is mentioned using @Sonrai from any Slack channel, the output of the /sonrai help slash command will be displayed.
The app mention will not work from Direct Messages or from the Messages tab of the app
App Tabs
Home: The home tab displays an overview of available slash commands that you can use to interact with the Sonrai app:
/sonrai register- check if the app is already registered to Sonrai for your Slack Workspace- If the app is not registered for the given Slack Workspace, you will be presented with an option to "Register with Sonrai"
/sonrai unregister- unregister the Sonrai app from the Slack Workspace/sonrai help- display the list of available slash commands/sonrai jit- initiate a just-in-time workflow for the current user
Messages: All conversation with the app will be displayed (messages sent to users through notifications and sent during the Permissions on Demand transition flow).
About: The description of the Sonrai App.
App Installation
The email address used to install the Slack application must match the email address you use to log in to the Sonrai Cloud Permissions Firewall, otherwise you will NOT be able to:
- Install the Slack app
- Receive Permissions on Demand requests through Slack
- Navigate to the Slack store and search for the Sonrai Slack app, installing it for your organization's Workspace:
The static link to the Sonrai Slack app is:
https://<yourSlackWorkspace>.slack.com/marketplace/A06TBRJ2RV5-sonrai
- Install the Sonrai app by clicking Add to Slack.
- Click Register and log in to the Sonrai Cloud Permissions Firewall.
Upon successful login to the Sonrai platform, you will be redirected to the Sonrai app success page:
If the app is not yet registered for your Workspace, you will be redirected to the Sonrai Cloud Permissions Firewall login page to complete the OAuth flow
This initial configuration process only needs to be completed once per Slack organization. If any one Slack user completes this OAuth connection flow through Sonrai, all other users can immediately start using the app! (i.e. complete Step #2 above)
App Uninstall (for your entire Slack Workspace)
- Navigate to About > Configuration in the Slack app to be redirected to the Slack App marketplace settings
Alternatively, you can also send the unregister app command in Slack (as circled/*'d in green above)!
- Click Remove App - When the uninstall event is triggered, the app will make a call to the
/sonrai unregisterendpoint and delete the token corresponding to your Workspace
