Roles and permissions on an organization
On Slack Enterprise Grid, all members have a role at the organization level.
At the workspace level, you can refine a member’s role even further to make sure everyone has the appropriate level of permission and access to data on the organization.
Roles overview
-
Organization level
Org Owner, Org Admin, Member, Multi-Channel Guest, and Single-Channel Guest -
Workspace level
Members of an organization can be promoted to individual Workspace Owners and Workspace Admins
Tip: Connect IDP groups to individual workspaces to make managing your organization’s membership a breeze. 🌴
Note: For more on roles and permissions at the workspace-level, visit Roles and permissions in Slack on the Help Center.
Organization policies
| Org Owner | Org Admin |
Workspace |
Workspace Admin | Member | |
| Set display name guidelines | ✓ | ✓ | ✦ | ✦ | |
| Set "@" prefix for user mentions | ✓ | ✓ | ✦ | ✦ | |
| Set default do not disturb mode | ✓ | ✓ | ✦ | ✦ | |
| Set custom message retention | ✓ | ✓ | ✦ | ✦ | ✦ |
| Set custom file retention | ✓ | ✓ | |||
| Set who can post in #general | ✓ | ✓ | ✦ | ✦ | ✦ |
| Create and edit User Groups | ✓ | ✓ | ✦ | ✦ | ✦ |
| Set edit/deletion policy | ✓ | ✓ | ✦ | ✦ | |
| Set public file sharing policy | ✓ | ✓ | ✦ | ✦ | |
| Create a shared channel betweeen Enterprise Grid workspaces | ✓ | ✓ | ✦ | ✦ | ✦ |
Security and access
| Org Owner | Org Admin | Workspace Owner | Workspace Admin | Member | |
| Configure single sign-on | ✓ | ✓ | |||
| Allow users to change their email address or display name | ✓ | ✓ | |||
| Enable mandatory two-factor authentication | ✓ | ✓ |
Administrative
| Org Owner | Org Admin | Workspace Owner | Workspace Admin | Member | |
| Connect IDP groups to workspaces | ✓ | ✓ | |||
| Manage a member's account status and permissions | ✓ | ✓ | |||
| Change a member's display name or email address | ✦ | ✦ | |||
| Deactivate a member's account | ✓ | ✓ | |||
| Manage domain whitelisting | ✓ | ||||
| Create a new workspace | ✓ | ✓ | |||
| Set workspace discovery and access | ✷ | ✷ | ✓ | ||
| Move channels between workspaces | ✷ | ✷ | ✓ | ✓ | |
| Manage shared channel creation | ✓ | ✓ | |||
| Choose name, URL, and icon | ✓ | ✓ | |||
| Enable calls | ✓ | ✓ | |||
| View workspace analytics | ✓ | ✓ | ✦ | ✦ | ✦ |
| Choose custom emoji and loading messages | ✓ | ✓ | ✦ | ✦ | ✦ |
| Set Slackbot responses policy | ✓ | ✓ | ✦ | ✦ |
✷ Only available if a Org Owner/Admin chooses.
✦ Only if an Org Owner/Admin is also a member of the workspace.