Skip to content

Aembit supports the official Slack MCP server, which lets AI Agent: A software workload that authenticates to systems, requests credentials, and accesses resources, either on behalf of a person or on its own. Aembit secures AI agents with the same identity-first model it uses for any workload. User-driven agents such as Claude Desktop also carry a blended identity that ties access to both the user and the agent.Learn more search and read workspace content through Model Context Protocol: A standard protocol for AI agent and server interactions that defines how AI assistants communicate with external tools and data sources.Learn more(opens in new tab) tools.

This page describes how to configure Slack as an MCP Server: A server that implements the Model Context Protocol to provide tools, resources, or data to AI agents and MCP clients.Learn more(opens in new tab) behind the Aembit MCP Identity Gateway: A component that brokers MCP traffic between MCP clients and target MCP servers, validating authorization and presenting Aembit-managed credentials on each request.Learn more. Each user authenticates with their own Slack identity, and the Gateway injects their token into MCP requests.

Before you begin, ensure you have the following:

Before you configure Slack, review these requirements and behaviors specific to Slack’s MCP server.

  • Use User-Based Auth. Slack returns an invalid_scope error during the Admin-Based (OAuth 2.0 Authorization Code) flow, so this guide uses the MCP User-Based Access Token credential type.
  • Register an internal or Marketplace app. Slack lets only internal apps and apps published in the Slack Marketplace use MCP; it rejects unlisted apps.
  • Connect over Streamable HTTP. Slack’s MCP server supports only the Streamable HTTP transport, not Server-Sent Events (SSE).

Slack doesn’t support OAuth Dynamic Client Registration: An OAuth mechanism that allows MCP clients to register with the Authorization Server at runtime without pre-configuration, receiving unique credentials for subsequent authorization requests.Learn more, so an administrator must register an app before users can authenticate.

  1. Go to Slack API: Your Apps, click Create New App, then choose From Scratch.

  2. Enter an app name, select your workspace, then click Create.

  3. On the App Credentials screen, copy the Client ID and Client Secret, and store them for the next section.

  4. Go to Agents & AI Apps and enable the Model Context Protocol toggle.

  5. Go to OAuth & Permissions and opt in to PKCE. Keep this page open. You add the Aembit Callback URL and scopes after you create the Credential Provider.

Create an MCP User-Based Access Token Credential Provider: Credential Providers obtain the specific access credentials—such as API keys, OAuth tokens, or temporary cloud credentials—that Client Workloads need to authenticate to Server Workloads.Learn more in Aembit.

  1. Log into your Aembit Tenant.

  2. Go to Credential Providers in the left sidebar and click + New.

  3. Configure the following fields:

    FieldValue
    NameA user-friendly name
    Credential TypeMCP User-Based Access Token
    MCP Server URLhttps://mcp.slack.com/mcp
    Client IDThe Client ID you copied from Slack
    Client SecretThe Client Secret you copied from Slack
    Scopessearch:read.public channels:history channels:read users:read
    PKCE RequiredOn

    For MCP Server URL, click Discover to populate the Authorization URL and Token URL.

  4. Click Save.

  5. Copy the read-only Callback URL from the Credential Provider.

Return to the Slack app’s OAuth & Permissions page.

  1. Under Redirect URLs, click Add New Redirect URL, paste the Aembit Callback URL, click Add, then click Save URLs.

  2. Under Scopes, add the same scopes you set on the Credential Provider.

  3. Install and approve the app in your Slack workspace.

  1. Return to the Credential Provider in Aembit and click Authorize.

  2. Complete the Slack sign-in and approve access. The Credential Provider status changes to Ready when the flow completes.

  1. Go to Server Workloads in the left sidebar and click + New.

  2. Configure the following fields:

    FieldValue
    NameA user-friendly name
    Hostmcp.slack.com
    Application ProtocolMCP
    Port443 with TLS
    URL Path/mcp
    Authentication methodHTTP Authentication
    Authentication schemeBearer
  3. Click Save.

Create an Access Policy: Access Policies define, enforce, and audit access between Client and Server Workloads by cryptographically verifying workload identity and contextual factors rather than relying on static secrets.Learn more linking your Client Workload: Client Workloads represent software applications, scripts, or automated processes that initiate access requests to Server Workloads, operating autonomously without direct user interaction.Learn more (the AI agent), the MCP User-Based Access Token Credential Provider, and the Slack Server Workload. See Access Policies for details.

After a user authorizes access, the Aembit AI Access Authorized page lists the Slack MCP Server as Ready. The AI agent can then call Slack MCP tools through the Gateway.