Salesforce Integration
Rezonate integration into Salesforce
Last updated
Rezonate integration into Salesforce
Last updated
Integrating with Salesforce can give Rezonate visibility into identities, privileges, and activities. These data points are then used to detect security gaps and to extend your identity-centric with salesforce identity information. The integration is only reading data.
If your Salesforce tenant has an IP Restrictions policy, you will have to whitelist Rezonate's collector IP Address. More information available Collectors IP Ranges
To Integrate please follow the following steps:
Sign in to your salesforce tenant, with a privileged user, Find your instance URL copy it, and keep it for later.
Click on Quick Settings, and then on Advanced setup
Select Apps -> Apps Manager on the side-menu
Select New Connected App
In the form please fill in the following information:
Connected App Name: Rezonate
API Name: Rezonate
After filing the basic information, make sure to tick the OAuth box and add the callback URL
Add the following OAuth Scopes:
Manage user data via APIs (api)
Perform requests at any time (refresh_token,offline_access)
Click the save\create button. After creating the application, you should see the button "Manager Consumer Details", and click on it.
You may be required to verify your identity, and after that, you will see a page with the key and secret, please copy them.
After we have created and configured the application, we will need to create a Read-Only user to authorize it. For that, create a user with the Read-Only profile role, and log in. We will use it to authorize the application in the next step.
Now that we have the app credentials and the read-only user. we can sign in to Rezonate, and install the integration. for this one, click on settings, integrations, Add Integration, and select Salesforce.
Fill out the form with the recently collected information, and click Connect. Salesforce will ask you to authorize and approve the application, and you will be redirected to Rezonate, seeing that the integration was successfully added.
Account Id
Your own account name (call it how you prefer)
Client Id
The Consumer Key you copied from earlier
Client Secret
Teh Consumer Secret you copied from earlier
Salesforce Url
The domain (starts with https://) for your salesforce tenant login
After filing the information click on integrate and the process is completed!
Make sure to remove the checkbox from the "Require Proof Key for Code Exchange"
Also, make sure that the 2 checkboxes "Require secret for Web server flow" and "Require secret for refresh Token flow" are selected.