Permissions on an Enterprise Grid organisation

On an Enterprise Grid org, member permissions exist at both the org and workspace level. In the tables below, you'll find an overview of org-level permissions. Learn more about roles in Slack, as well as workspace-level permissions.   

Organisation policies

Read the tables below to see more about what each role can do.

✓ Available by default.
✷ Only available if an Org Owner/Admin chooses.
✦ Only if an Org Owner/Admin is also a member of the workspace.

  Org owner Org admin

Workspace 
owner

Workspace admin Member
Set display name guidelines   ✦    ✦    
Set default do not disturb mode  ✓   ✦  ✦   
Set custom message retention  ✓   ✦  ✦
Set custom file retention  ✓         
Set who can post in #general  ✓   ✦  ✦
Create and edit user groups  ✓   ✦  ✦
Set edit/deletion policy  ✦  ✦  
Set public file sharing policy  ✦  ✦  
Create a multi-workspace channel on an Enterprise Grid org  ✓   ✦  ✦  ✦ 


Security and access

  Org owner Org admin Workspace owner Workspace admin Member
Configure single sign-on        
Allow users to change their email address or display name        
Enable mandatory two-factor authentication        


Administrative

  Org owner Org admin Workspace owner Workspace admin Member
Connect IdP groups to workspaces  ✓       
Manage a member’s account status and permissions  ✓       
Change a member’s display name or email address ✓  ✓   ✦  ✦   
Manage email display  
Deactivate a member’s account      
Manage domain whitelisting  ✓         
Create a new workspace  ✓   ✓       
Set workspace discovery and access ✓     
Move channels between workspaces  ✷ ✓   ✓   
Manage multi-workspace channel creation  ✓  ✓       
Manage shared channels  ✓  ✓       
Choose name, URL and icon  ✓      
Enable calls   ✓      
View workspace analytics    ✓  ✦   ✦
Add custom emoji  ✓ ✦   ✦   ✦
Set Slackbot responses policy  ✓  ✦     ✦     
Delete workspace*     ✦     
Set app management policies        


*Specifically, the workspace primary owner.