Jump to:
Overview
Who can use Slack
You can use Axiom through Slack if your organization uses Slack, and has integrated the Axiom Slack bot.
Signing in
To start using Axiom through Slack you first need to sign in:
Go to the Axiom bot app (under Apps in the Slack interface), and press the Login button.
Sign-in happens through your organization's Single Sign On (SSO), and needs to be repeated occasionally, for security reasons.
Summary
Use Slack to:
You currently can not use Slack for:
Create multi-request bundles.
Author templates.
Revoke or cancel requests.
For these capabilities, use the Axiom web-based user console. Go to console | See documentation
Making requests using Slack
Requests from templates
The best way to use Slack to make requests, is by using templates. Templates are authored by the Axiom admins in your organization.
View the templates available to you by, either:
Typing the command /axiom templates in any conversation in Slack, or
Going to the Axiom bot, and from the "About" tab pressing "Start command" next to the templates command in the Commands list.
To select a template, press the "Select" button next to the template description. For each template, we display a summaries of all the access included in the template:
[IMAGE]
NOTE!
When using templates from Slack, the template can only be used as-is, so in the following cases you will not see the template:
You do not have Scope for any System, Target, or Permission in any of the requests included in the template.
Your user name in any of the Systems included in the template is not the same as your user name in Axiom.
The Target or Permission specified in any of the requests in the template no longer exists in the source System.
When using templates from the Axiom web-based user console, you have more flexibility, and can edit some request properties when using templates.
After you press Select you Once ready, press the Submit button. This will create a request bundle containing the number of requests specified in the template.
After you press Submit, you will see the confirmation message
[IMAGE]
Due to limitations in Slack, you need to use the axiom web based console to see the details.
Submit a single request
You can also use Slack to make single requests (request bundles that contain just one request).
You can bring up the request form either:
Typing the command /axiom request in any conversation in Slack, or
Going to the Axiom bot, and from the "About" tab pressing "Start command" next to the request command in the Commands list.
This will bring up the Axiom Request dialog. In the request form, pick values for all of:
The System you want access to (e.g. AWS, PostgreSQL, etc.)
The Target resource you want to access (e.g. a GCP folder, a Kubernetes cluster, etc.)
The Principal (person or system) that will get the requested access. By default, this is you.
The Permission you want (e.g. and AWS permission set, a MySQL role, etc.)
Then pick a duration from the list (how long you will be able to use the granted access, from the time it is approved). Note that i you want to request a duration that is not in the list, you can do so by making the request using the Axiom web-based user console.
Finally, type a justification (why you need this access), and press the "Request" button.
You will see the request in, and receive notifications about it in the Messages tab of the Axiom bot
[IMAGE]
Viewing your pending requests
In the “Messages” tab in the Axiom Slack bot, you will now see a notification about the successful creation of the access request:
Viewing you approved requests, and using the granted access
Once the request is approved, you will see the appropriate notification:
Return to the “Home” tab in the Axiom Slack bot and you will now see the newly added access. Click on the 3 dots button opposite to the access and then, on “Get Credentials”. You will be presented with the connection details and the credentials for access:
Approving/ denying requests
If you have the proper scope you can use Slack to approve or deny requests submitted by other.