Salesforce: Deploying Forcepoint ONE SSE as a SAML IdP

This page will guide you through configuring Forcepoint ONE SSE as a SAML identity provider for Salesforce Single Sign-on (SSO) authentication. This will ensure visibility and access control of Salesforce via Forcepoint ONE SSE.

First we must create a subdomain inside of Salesforce and then we can configure the SSO settings. Once completed you will have a new link (based on your new subdomain) that users can access Salesforce through. You can then choose to deny users from logging in via the standard Salesforce login and also choose to allow users to login directly or force them through the proxy. To complete these steps you will need to be logged into the Forcepoint ONE SSE portal as well as logged into your Salesforce portal as an admin.

Note: These instructions are using the Salesforce Classic view.