Skip to content
Integrations/Slack Audit Logs (Enterprise Grid)/Connection Guide
Connection Guide

Connect Slack Audit Logs (Enterprise Grid) Without Breaking the Audit Trail

Use this guide to connect Slack Audit Logs (Enterprise Grid) or confirm the export-based path that fits your environment. Aurora keeps source, timestamps, ownership, and collection history attached so the first run becomes reusable proof instead of one-off setup work.

Connector Summary
Connection typeLog collection
CategoryLogging
Checklist4 steps
Want help with rollout?
We'll confirm what can be automated, what stays export-based, and how to keep the first evidence record clean.

First-Run Checklist

Use this sequence to connect Slack Audit Logs (Enterprise Grid) and make sure the first collection lands cleanly.

  1. 1
    Create Slack app for Enterprise Grid and request user token scope auditlogs:read.
  2. 2
    Install the app at the org level by an Enterprise Owner.
  3. 3
    Store the resulting OAuth access token (xoxp user token) as access_token.
  4. 4
    Validate by pulling a small log window.

Credentials and Secrets

The keys, secrets, or tokens Aurora uses to authenticate and collect proof.

access_token

Recommended Access

Aurora only asks for the minimum read access needed for collection and checks.

auditlogs:read