Skip to main content

Netskope Help

API-enriched Real-time Controls for Slack Enterprise

Note

This is a Controlled General Availability feature. If you want to enable this feature, contact your sales team.

API-enriched real-time controls for Slack provides users the ability to apply granular real-time policies to prevent sensitive data exfiltration in externally-shared/Slack Connect channels.

With this feature, you can now add “channel type” and “channel name” constraints to POST activities in real-time policies for Slack. This provides users the granularity to allow data to be shared in other internal Slack channels while restricting the same in externally-shared or Slack Connect channels.

Prerequisites

To enable this feature, the customer MUST have configured:

  1. Netskope CASB API protection for their Slack Enterprise Instance

  2. Slack traffic steering to the Netskope Cloud

Activities Supported
  • POST

Newly Added Constraints
  • Channel Type

  • Channel Name

How to use API-enriched controls in Slack Real-time protection policies
  1. This feature is currently in controlled-GA and could be enabled by reaching out to customer success teams or Netskope support.

  2. Once enabled, the "Channel Type" and "Channel name" constraints will be available under the "POST" activity for Slack in real-time policies.

  3. The “channel-type” currently supported is ‘Externally-shared’ and the “channel names” list all the externally-shared channels in that Slack Enterprise tenant across all workspaces.

  4. Administrators can configure Channel type and name based policies as shown in the image below.

    Netskope-Policies-Real-time-Protection-Policy.png

Note

The prevention of file “uploads” to Slack Connect channels can be controlled via a native app configuration in Slack. To learn more: Manage file uploads for Slack Connect.