Question about Saas protection with Okta

I have all of my Saas apps in Okta. If I wanted to add say Slack, do I need to unhook Slack SAML from Okta and then I can add it to Cloudflare Access? I’m not clear on this.

It depends on the application. Some SaaS apps support multiple IdP integrations which allows you to add Cloudflare as an Identity proxy, verify it works for SSO and ten you can remove the previous IdP integration. Where only a single IdP is allowed, it would be a remove / add.