Overview
Nuclei provides Slack customers with the ability to automatically export and archive all communications occurring within Slack, including:
- Public Channels for each Workspace
- Private Channels for each Workspace
- Multi-Person Direct Messages (MPDMs) for the Organization
- Direct Messages for the Organization
- Slack Connect Messages for the Organization
- Org wide channels (public and private)
- Shared Channels
- Edited / deleted messages
- Audio and Video Clips (including transcript)
- Files
As a first step, the "Nuclei for Slack" archiving app must be authorized for the top-level Enterprise organization. Afterwards, Nuclei will automatically export Slack messaging content for review and retention in your existing compliance archive.
Prerequisites
- Slack Enterprise Grid
- Slack Discovery API (requires opt-in at exports@slack.com)
- Opt-in to Slack organizational data retention policies
- Authorization of the Nuclei archiving app at the top-level Enterprise organization
Scope
Conversations
Slack conversations (including org-shared and externally-shared i.e. Slack Connect conversations) from the entire Enterprise Grid org are supported for archiving. Selective grid-wide archiving can also be implemented for users that are members of a specific workspace / team.
The following types of metadata are supported for each conversation:
- Channel ID
- Channel Name
- Message ID
- Team ID
- Text
- Timestamp
- Type
The following additional types of metadata are also supported the message sender:
- User ID
- User Name
- User Real Name
Files
Files uploaded to Slack are supported for archiving. The following types of metadata are supported for each file:
- File ID
- Created Date
- Shares
- Name
- Title
- Mime Type
- File Type
- Pretty Type
- User
- Size
Supported Archives
The following archiving destinations are supported for Slack archiving:
- ACA ComplianceAlpha
- Dell EMC SourceOne
- Global Relay Archive
- Microsoft Purview
- Mimecast Cloud Archive
- Proofpoint Enterprise Archive
- Smarsh Digital Safe
- Smarsh Enterprise Archive
- Smarsh Professional Archive
- Veritas Enterprise Vault
- ZL Unified Archive
Quick Start
Prerequisites
- Your organization is running on the Slack Enterprise Grid
- You have opted-in to use of the Slack Discovery API (requires opt-in at exports@slack.com)
- You have opted-in to Slack's data retention policies
Authorization
To enable archiving you must authorize the Nuclei Capture archiving app at the top-level Enterprise organization:
Nuclei will provide you with the app authorization URL during onboarding and provisioning.
Selective Archiving (Membership based)
Selective grid-wide archiving can also be implemented for users that are members of a specific workspace / team:
- From your Slack desktop, click your workspace name on the top left.
- Select "Settings & administration", then select "Organization settings"
- Select "Workspaces" from the left sidebar
- Click "Create Workspace" in the top right
- Name: Provide a workspace name for your regulated users
- Domain: Provide a workspace domain for your regulated users
- Description: Provide a workspace description for your regulated users
- Select "Next"
- Set access for this workspace as "Hidden"
- Select "Create Workspace"
- Provide the name of the created workspace to Nuclei
- Add all regulated users to the workspace.
Important to note is that this workspace is just used as a container within Slack to organize a group of regulated users. Those users will still use their primary workspace(s) in day to day collaboration with other Slack users, but Nuclei will use the Slack user's membership within the separate workspace to enable selective archiving for that user grid-wide (including in their primary workspace(s)).
Selective Archiving (Identity based)
Selective grid-wide archiving can also be implemented for organizations using the following platforms for enterprise identity management:
- Google Workspace
- Microsoft Azure Active Directory
To enable selective archiving the following configuration is required:
Google Workspace
- Create a group in your organization that contains all regulated users (guide)
- Authorize Nuclei access to Google Workplace Directory API (guide)
Microsoft Azure Active Directory
- Create a group in your organization that contains all regulated users (guide)
- Authorize Nuclei access to Azure Activity Directory (guide)
Afterwards, Nuclei will use a Slack user's membership in the respective Google Workspace or Azure AD group to enable selective archiving for that user grid-wide.
Licensing
Licensing is required for any of the following types of users:
- Slack Users
- Slack Guests
Licensing is not required for the following types of users:
- Slack Connect users
For more information on the differences between a Slack Guest (licensed by the hosting org) and a Slack Connect user (licensed by an external organization), please reference the following guide:
https://slack.com/resources/slack-for-admins/guests-vs-channels-in-slack-connect
Uninstallation
Please create a new deprovisioning request with Nuclei.
More Information
For more information on Compliance Archiving for Slack and for a demonstration of related capabilities, please contact Nuclei's sales team at hello@nuclei.ai.
Comments
0 comments
Article is closed for comments.