Communities
A collaborative platform to connect and grow with like-minded Informaticans across the globe
Product Communities
Connect and collaborate with Informatica experts and champions
Discussions
Have a question? Start a Discussion and get immediate answers you are looking for
User Groups
Customer-organized groups that meet online and in-person. Join today to network, share ideas, and get tips on how to get the most out of Informatica
Get Started
Community Guidelines
Knowledge Center
Troubleshooting documents, product guides, how to videos, best practices, and more
Knowledge Base
One-stop self-service portal for solutions, FAQs, Whitepapers, How Tos, Videos, and more
Support TV
Video channel for step-by-step instructions to use our products, best practices, troubleshooting tips, and much more
Documentation
Information library of the latest product documents
Velocity (Best Practices)
Best practices and use cases from the Implementation team
Learn
Rich resources to help you leverage full capabilities of our products
Trainings
Role-based training programs for the best ROI
Certifications
Get certified on Informatica products. Free, Foundation, or Professional
Product Learning Paths
Free and unlimited modules based on your expertise level and journey
Resources
Library of content to help you leverage the best of Informatica products
Tech Tuesdays Webinars
Most popular webinars on product architecture, best practices, and more
Product Availability Matrix
Product Availability Matrix statements of Informatica products
SupportFlash
Monthly support newsletter
Support Documents
Informatica Support Guide and Statements, Quick Start Guides, and Cloud Product Description Schedule
Product Lifecycle
End of Life statements of Informatica products
Ideas
Events
Change Request Tracking
Marketplace
English
  • Application Integration
  • All Products

Table of Contents

Search

  1. Preface
  2. Introduction to Salesforce Connector
  3. Salesforce Connections
  4. Salesforce Connector Processes

Salesforce Connector Guide

Salesforce Connector Guide

Back Next

Salesforce connection authentication properties

Salesforce connection authentication properties

When you create a Salesforce connection, configure the connection using Password or OAuth authentication properties. Default is
Password
 authentication.

Password Authentication

To authenticate the Salesforce connection using Password authentication, select
Password
 in the
Authentication Type
 list and configure the following properties:
Connection Property
Description
User name
Required. Salesforce developer account user name.
Password
Required. Salesforce developer account password.
Security Token
Required. Salesforce security token. This is a case-sensitive alphanumeric code used as a second level of authentication.
Service URL
Required. The SOAP service URL of the Salesforce endpoint. For example, enter:
https://login.salesforce.com/services/Soap/c/40.0
To subscribe to Salesforce custom platform events, PushTopic queries, and change events, or publish messages to Salesforce custom platform events, the supported version for the soap service URL for Salesforce login is 40.0. Enter the following value:
https://login.salesforce.com/services/Soap/c/40.0
To subscribe to Salesforce custom platform events, PushTopic queries, and change events, or publish messages to Salesforce custom platform events, you must configure the following properties in the
Event API Settings
 section:
Connection Property
Description
Consumer Key
The consumer key associated with the Salesforce user account for API access.
This field is required to subscribe to Salesforce custom platform events, PushTopic queries, and change events, or publish messages to Salesforce custom platform events.
To know the consumer key, perform the following steps:
  • Log in to Salesforce.
  • Click
    Create
    Apps
    . The connected apps are displayed.
  • Click the connected app. The
    API
     section displays the consumer key as shown in the following image:
    The image shows the API section for the connected app from where you can get the consumer key.
Consumer Secret
The consumer secret associated with the Salesforce user account for API access.
This field is required to subscribe to Salesforce custom platform events, PushTopic queries, and change events, or publish messages to Salesforce custom platform events.
To find the consumer secret, perform the following steps:
  • Log in to Salesforce.
  • Click
    Create
    Apps
    . The connected apps are displayed.
  • Click the connected app. The
    API
     section displays the consumer secret as shown in the following image:
    The image shows the API section for the connected app from where you can get the consumer secret.

OAuth Authentication

Use OAuth to connect to Salesforce through an API. If you choose OAuth authentication, you enter your Salesforce developer account credentials in a Salesforce window that opens when you authenticate the connection. You do not enter your Salesforce developer account credentials in the
Application Integration
 UI. For more information about using OAuth to authorize external applications, see the Salesforce documentation.
To authenticate the Salesforce connection using OAuth authentication, select
OAuth
 in the
Authentication Type
 list and configure the following properties:
Connection Property
Description
Authorization URL
Required. Endpoint used to make OAuth authorization requests to Salesforce. The following URLs are the default production and sandbox authorization URLs:
  • https://login.salesforce.com/services/oauth2/authorize
  • https://test.salesforce.com/services/oauth2/authorize
Token Request URL
Required. Endpoint used to make OAuth token requests to Salesforce. The following URLs are the default production and sandbox token request URLs:
  • https://login.salesforce.com/services/oauth2/token
  • https://test.salesforce.com/services/oauth2/token
Session Duration
Optional. Number of minutes after which the OAuth token expires. When this duration ends, the connection makes a token request and performs authorization again. You do not need to manually authorize the connection when the session times out.
Default is 60 minutes.
Authorization Status
The current authorization status. The name of the last user who authorized the connection and the time of authorization appears, if applicable.
Authorize Access
Required. Starts the OAuth authentication process.
Perform the following tasks:
  1. Click
    Authorize
     next to
    Authorize Access
    .
  2. In the Salesforce window that appears, enter your Salesforce developer account credentials.
  3. Click
    Allow
     next to the message that prompts you to authorize access.

OAuth JWT Authentication

You can configure OAuth JSON Web Token (JWT) authentication in a Salesforce connection to connect to Salesforce.
Use OAuth JWT authentication to authorize servers to access data without logging in each time the servers exchange information. The OAuth JWT authentication uses a certificate to sign the JWT request and does not require explicit user interaction.
Before you configure OAuth JWT authentication, ensure that you have the keystore file and password.
To authenticate the Salesforce connection using OAuth JWT authentication, select
OAuth JWT
 in the
Authentication Type
 list and configure the following properties:
Connection Property
Description
User Name
Required. Salesforce user name that has access to the connected app.
Keystore File
Required. Select a keystore file of the PKCS12 format.
Keystore Password
Required. Enter the keystore password.
Session Duration
Optional. Number of minutes after which the session expires. When this duration ends, the connected app makes a token request and performs authorization again. You do not need to manually authorize the connection when the session times out. Default is 60 minutes.
Consumer Key
Required. The consumer key associated with the Salesforce connected app.
This field is required to subscribe to Salesforce custom platform events, PushTopic queries, and change events, or publish messages to Salesforce custom platform events.
To find the consumer key, perform the following steps:
  • Log in to Salesforce.
  • Click
    Create
    Apps
    . The connected apps are displayed.
  • Click the connected app. The
    API
     section displays the consumer key as shown in the following image:
    The image shows the API section for the connected app from where you can get the consumer key.
Token Request URL
Required. Endpoint used to make OAuth token requests to Salesforce. The following URLs are the default production and sandbox token request URLs:
  • https://login.salesforce.com/services/oauth2/token
  • https://test.salesforce.com/services/oauth2/token
Audience
Required. Endpoint of the authorized servers of the intended audience for the token. The following URLs are the default production, sandbox, and Experience Cloud site token request URLs:
  • https://login.salesforce.com
  • https://test.salesforce.com
  • https://site.force.com/customers
To use a platform event-based Salesforce connection with OAuth JWT authentication in a process, ensure that the platform event is in the same Salesforce organization and the event is enabled. Otherwise, in the input fields of the process, instead of the connection event type, you might see the type as
$any
.
While configuring the Salesforce connection with OAuth JWT authentication, you might encounter the following errors:
  • invalid_grant : user has not approved this consumer
    To resolve this issue, you must change the OAuth policy of the connected app from
    All users may self-authorize
     to
    Admin approved users are pre-authorized
     in Salesforce.
  • invalid_app_access : user is not admin approve to access this app
    To resolve this issue, you must provide the connected app access to the user's profile in Salesforce.
For more information about OAuth JWT authentication, see the Salesforce documentation.
0 COMMENTS
We’d like to hear from you!