JupiterOne provides a managed integration with Slack. The integration connects directly to Slack APIs using the JupiterOne Slack app to obtain information and allows delivery of Slack messages to specific channels.
The integration is triggered by an event containing the information for a specific integration instance.
Customers must install the JupiterOne Slack app and specify which Slack OAuth scopes the app should request. Once the app is installed, the JupiterOne integration can begin ingesting relevant information and send notifications via the JupiterOne Rules and Alerting feature.
- Navigate to the JupiterOne Slack integration configuration page (e.g. https://apps.us.jupiterone.io/integrations/slack/configure)
- Fill out relavant integration instance form information and OAuth scopes that
you'd like the Slack app to request. All read scopes are used to ingest data
into the JupiterOne graph and the write scopes are used for enabling the
ability to send notifications to channels in the configured Slack team. NOTE:
chat:writeis required to post messages in channels & conversations that the
@JupiterOnebot is a member of and
chat:write.publicis required to post messages to channels that the
@JupiterOnebot isn't a member of. Without one or both of
chat:write.publicscopes, users will not be able to configure JupiterOne alert rules with a Slack notification.
- Once the relevant form information has been filled out, submitting the form will redirect the user to Slack to authorize the requested scopes.
- Review the request scopes, click "Allow", and then you will be redirected back to JupiterOne.
JupiterOne Alert Rule Slack Notification
NOTE: For detailed instructions on how to configure JupiterOne Alert Rules, please see the JupiterOne Alert Rule configuration documentation. Additionally, see the JupiterOne Alert Rule Schema documentation for technical details on alert rule/action properties.
JupiterOne can deliver Slack messages directly to any channel or to specific users in a Slack Channel once the JupiterOne Slack integration has been configured via the JupiterOne web app. This will prompt the JupiterOne Slack app to be installed in your Workspace.
Be sure to include specify the channel in the format
You can alert to private channels as well if you have invited the JupiterOne Slack app to the private channel as well.
The following entity resources are ingested when the integration runs:
|Resources||_type of the Entity||_class of the Entity|
The following relationships are created/mapped: