Approve Slack workspaces for your network

If you’re an IT administrator, this guide will show you how to approve Slack workspaces using an SSL proxy within your corporate network. By limiting connections, you can prevent anyone on your network from signing in to workspaces that are not approved.

What you can approve for your network 

  • A Slack workspace
  • An Enterprise Grid org and all of its connected workspaces
  • Workspaces outside your Enterprise Grid org, such as those belonging to vendors, contractors or external clients

What to expect

IT administrators can configure an on-premises or cloud-based proxy server to intercept traffic to The proxy inserts new HTTP headers (X-Slack-Allowed-Workspaces-Requester and X-Slack-Allowed-Workspaces) that list the workspaces your employees can access.


Once enabled, your team will be able to access the approved org or workspace(s) and continue using Slack normally. If anyone tries to sign in to a workspace that isn’t on the approved list, they’ll see an error message.


How to approve workspaces for your network

  1. Check your proxy server: Make sure that your proxy server supports SSL interception. We recommend referring to your product or service for details on how to configure the HTTP header.
  2. Identify org IDs or workspace IDs: Reach out to your customer success manager or contact us to get a list of your org and workspace IDs.
  3. Configure the following 2 HTTP headers:

    Header 1: Add the header X-Slack-Allowed-Workspaces-Requester and set its value to the org or workspace ID representing your account. If this is not done first, the next header will not work.

    Header 2: Add the header X-Slack-Allowed-Workspaces and set its value to a comma-separated list of allowed org and/or workspace IDs. These represent the orgs and/or teams that need to be approved. 


Who can use this feature?
  • Workspace owners and workspace admins
  • Plus and Enterprise Grid subscription