Salesforce

About this document

This document provides the step-by-step procedure to onboard a Salesforce account in SAFE.

Introduction

SAFE integrates with Salesforce and onboard your Salesforce account under the Cloud-SaaS Applications vertical. Onboarding a Salesforce account in SAFE is a three-step process:

1. Create a connected application in your Salesforce account and generate connection details.
2. Enter and save the connection details in SAFE.
3. Assess the Salesforce account and view results in SAFE.

Prerequisites

A user with a system administrator role in Salesforce is required to create and authorize the connected app.

Onboard a Salesforce account in SAFE

Step 1: Create a connected application and generate connection details

You must create a Connected App in the Salesforce account first with the following OAuth settings:

• Manage user data via APIs (api)
• Perform requests at any time (refresh_token, offline_access).

Follow the below step-by-step instruction to create a connected app:

1. Log in to Salesforce as an administrator.
2. In the drop-down list of the account (in the upper-right corner), click Setup.
3. In the left-hand pane, click Create > App under Build.
4. In the Connected Apps pane, click the New button.
5. Under the Basic information, enter the Connected App Name, API Name, and Contact Email.
   1. Connected App Name: SAFE_SFDC
   2. Contact Email: <email address>
6. Under API (Enable OAuth Settings), mark the Enable OAuth Settings checkbox.
7. Enter the below Callback URL
   <BASE_URL of SAFE>/api/v3/saas-apps/auth-code
8. Select the following under OAuth scopes:
   1. Manage user data via APIs (api)
   2. Perform requests at any time (refresh_token, offline_access)
9. Click the Save button.
   Note: The system may take 2 to 10 minutes to reflect the connected app on the server.
   
10. Once the Connected App is created, it will be available under the Connected Apps pane. Go to the Connected Apps pane and click the newly created SAFE_SFDC Connected App.  
11. Click the Manage Consumer Details button available under API (Enable OAuth Settings). The system displays the Consumer Key(Client ID) and Consumer Secret(Client Secret).
12. Note down the Consumer Key(Client ID) and Consumer Secret(Client Secret).
    

Step 2: Enter and save connection details in SAFE

1. Navigate to the SAFE Hooks > Salesforce configuration page.
2. Enter the connection details; Instance URL, Client ID, and Client Secret generated in step 1.
   
3. Under the Get Authorization URL section, click the Open URL button. You can also copy the URL and open it in a new tab
4. Clicking the Open URL button, you will be redirected to the Authorization URL page, where the system displays an authorization code. Copy the authorization code.
5. Enter the authorization code on the Salesforce configuration page in SAFE.
6. Click the Save button.

Step 3: Assess the Salesforce account and view results in SAFE

1. On the Salesforce configuration page in SAFE Hooks, click the Sync Now button to assess the onboarded Salesforce account.
   
2. The account, once saved, will get assessed once per day as per the scheduled scan time. This is set to a pre-set time of 24 Hrs.
3. SAFE Onboards the Salesforce assets under Cloud-SaaS Applications. To view the assessment result:
   1. Go to Technology > Inside-out. Click the Cloud-Saas Vertical.
      
   2. On this page, search and view the Salesforce assets' assessment details.