Skip to main content

How to use Axiom through Slack

Requesting access, approving requests, and managing Axiom workflows directly through Slack

Updated over 3 months ago

Overview

The Axiom Slack bot integrates directly with Slack, allowing you to manage your permissions seamlessly without leaving the app.

Before using the Axiom Slack bot

Ensure that:

  1. Your organization uses Slack

  2. Your organization has integrated the Axiom Slack bot

Getting started with the Axiom bot

Signing in

To start using Axiom through Slack, you'll first need to:

  1. Make sure that your organization has integrated with the Axiom Slack bot

  2. Go to the Axiom bot app (appears under 'Apps' in the Slack interface)

  3. Click the Login button.

❗️Note that the sign-in happens through your organization's Single Sign-On (SSO), so you'll need to repeat this occasionally for security reasons.

You can use the axiom bot for:

  • Define and submit a custom request

  • View your approved requests

  • Easily connect to your approved requests

  • Make requests based on templates

  • For approvers - approve or deny pending requests that were submitted by other users

Axiom bot limitations

Currently, you can not use the Axiom bot for:

  • Create multi-request bundles

  • Revoke or cancel requests

  • Create templates

For these capabilities, you can use the Axiom web-based user console.

Making requests using Slack

After login successfully, you will get the following message from the Axiom Slack bot explaining about the available commands:

Submit a request from an existing template

Submitting requests on Slack using templates created by your organization's Axiom admins is the best method.

You can view the templates available by typing the command '/axiom templates' in any Slack conversation.

How to select a template

  1. Click the 'Select' button next to the template summary and description:

  2. In the request form, enter the following values:

    • System - the system you want to access (e.g., AWS, PostgreSQL, etc.)

    • Target - the target resource you wish to access (e.g., a GCP holder, a Kubernetes cluster, etc.)

    • Principal - the person or system that will get the requested access. By default, it will be you.

    • Permission - the permission you want (e.g., AWS permission set, a MySQL role, etc.)

    • Duration - the duration that you will be able to use the granted access from the time it's approved.

    • Justification - an explanation of why you need this access.


    This will create a request bundle containing the number of requests specified in the template.

  3. After you click the 'Submit' button, you will see the following confirmation message:

❗️Due to limitations in Slack, you need to use the Axiom web-based console to see the details.

❗️When using templates directly from Slack, the template can only be used as-is. In the following cases, you will not be able to see the template:

  • You don't have scope for any system, target, or permission for any of the requests included in the template.

  • Your user name in any system included in the template is not the same as your user name in Axiom.

  • The target or permission specified in any of the requests in the template no longer exists in the source system.

When using templates from the Axiom web-based user console, you have some more flexibility when using templates.

Submit a single request

You can also use Slack to make single requests (request bundles that contain just one request)

  1. To access the request form, type the command '/axiom request' in any Slack conversation - This will bring up the Axiom Request Dialog.

  2. Fill out the request form:

  3. After you click the 'Request' button, you will see the following confirmation message:

❗️NOTE: if you want to request a duration not on the list, you can submit the request using the Axiom web-based user console.

Axiom bot notifications

You can see a confirmation notification in the 'Messages' tab in the Axiom Slack bot.

Viewing pending requests

Once the access request is successfully created, you will receive a notification confirming the request creation:

Viewing approved requests

Once the request is approved, you will see the appropriate notification:

[IMAGE]

Using the granted access

To use your granted access:

  1. Go into the 'Home' tab.

  2. Under 'Active access,' you will see all your active access.

  3. You can connect to your granted access by easily clicking on the 'Connect' button.

Related Articles
Using Axiom through Slack
Why am I not seeing all my templates in Slack?
Getting Started with Axiom - Account Owners and Admins
Understanding permissions in Axiom
Microsoft Teams integration [BETA]
Did this answer your question?