Merge pull request #115635 from v-nagta/slack

Product Backlog Item 1022212: SaaS App Tutorial: Slack Update

Author: GitHubber17

articles/active-directory/saas-apps/media/slack-tutorial/tutorial-slack-001.png

@@ -13,7 +13,7 @@ ms.subservice: saas-app-tutorial
 ms.workload: identity
 ms.tgt_pltfrm: na
 ms.topic: tutorial
-ms.date: 01/31/2020
+ms.date: 05/19/2020
 ms.author: jeedes
 
 ms.collection: M365-identity-device-management
@@ -36,6 +36,9 @@ To get started, you need the following items:
 * An Azure AD subscription. If you don't have a subscription, you can get a [free account](https://azure.microsoft.com/free/).
 * Slack single sign-on (SSO) enabled subscription.
 
+> [!NOTE]
+> Identifier of this application is a fixed string value so only one instance can be configured in one tenant.
+
 ## Scenario description
 
 In this tutorial, you configure and test Azure AD SSO in a test environment.
@@ -45,9 +48,6 @@ In this tutorial, you configure and test Azure AD SSO in a test environment.
 * Slack supports [**Automated** user provisioning](https://docs.microsoft.com/azure/active-directory/saas-apps/slack-provisioning-tutorial)
 * Once you configure Slack you can enforce Session control, which protect exfiltration and infiltration of your organization’s sensitive data in real-time. Session control extend from Conditional Access. [Learn how to enforce session control with Microsoft Cloud App Security](https://docs.microsoft.com/cloud-app-security/proxy-deployment-aad)
 
-> [!NOTE]
-> Identifier of this application is a fixed string value so only one instance can be configured in one tenant.
-
 ## Adding Slack from the gallery
 
 To configure the integration of Slack into Azure AD, you need to add Slack from the gallery to your list of managed SaaS apps.
@@ -85,7 +85,7 @@ Follow these steps to enable Azure AD SSO in the Azure portal.
 1. On the **Basic SAML Configuration** section, enter the values for the following fields:
 
 	a. In the **Sign on URL** text box, type a URL using the following pattern:
-    `https://<companyname>.slack.com`
+    `https://< DOMAIN NAME>.slack.com/sso/saml/start`
 
     b. In the **Identifier (Entity ID)** text box, type a URL:
     `https://slack.com`
@@ -148,15 +148,15 @@ In this section, you'll enable B.Simon to use Azure single sign-on by granting a
 
 2. Navigate to **Microsoft Azure AD** then go to **Team Settings**.
 
-     ![Configure single sign-on On App Side](./media/slack-tutorial/tutorial_slack_001.png)
+     ![Configure single sign-on On App Side](./media/slack-tutorial/tutorial-slack-001.png)
 
 3. In the **Team Settings** section, click the **Authentication** tab, and then click **Change Settings**.
 
-    ![Configure single sign-on On App Side](./media/slack-tutorial/tutorial_slack_002.png)
+    ![Configure single sign-on On App Side](./media/slack-tutorial/tutorial-slack-002.png)
 
 4. On the **SAML Authentication Settings** dialog, perform the following steps:
 
-    ![Configure single sign-on On App Side](./media/slack-tutorial/tutorial_slack_003.png)
+    ![Configure single sign-on On App Side](./media/slack-tutorial/tutorial-slack-003.png)
 
     a.  In the **SAML 2.0 Endpoint (HTTP)** textbox, paste the value of **Login URL**, which you have copied from Azure portal.
 
@@ -166,7 +166,11 @@ In this section, you'll enable B.Simon to use Azure single sign-on by granting a
 
     d. Configure the above three settings as appropriate for your Slack team. For more information about the settings, please find the **Slack's SSO configuration guide** here. `https://get.slack.help/hc/articles/220403548-Guide-to-single-sign-on-with-Slack%60`
 
-    e.  Click **Save Configuration**.
+    ![Configure single sign-on On App Side](./media/slack-tutorial/tutorial-slack-004.png)
+
+    e. Click on **expand** and enter `https://slack.com` in the **Identity provider issuer** textbox.
+
+    f.  Click **Save Configuration**.
 
 ### Create Slack test user