Configuring Salesforce connected app - Classic view

Steps

  1. Login to Salesforce using an administrator account.
  2. On the top right hand corner, click Setup.


  3. On the left navigation pane, navigate to the Apps page by following Build > Create > Apps path. Click the New button in the Connected Apps section.


  4. Configure the following required fields and any optional fields as desired (for example, Logo Image) and click Save.
    1. Connected App Name: Forcepoint ONE SSE
    2. API Name: Forcepoint ONE SSE
    3. Contact Email: <Salesforce Admins Email>
    4. Enable OAuth Settings: Checked
    5. Callback URL:
      • https://portal.bitglass.com/appapis/salesforce/code/
      • https://portal.bitglass.com/api/salesforce/authz_result/
      Note:

      On-prem deployments will have different URLs:

      Important: The ending / must be present for the callback to work correctly.
    6. Selected OAuth Scopes:
      • Manage user data via APIs (api)
      • Perform requests at any time (refresh_token, offline_access)


        As an alternative, the Full Access (full) OAuth scope can be used. However, this may introduce additional security gaps and may not be acceptable depending on a client's risk tolerance.

        For a full list of Salesforce OAuth Scopes and their descriptions, see Salesforce OAuth Tokens and Scopes.

    7. When you are done, click Save at the bottom of the page to create the new Forcepoint ONE SSE app.
  5. Click on the newly created Forcepoint ONE SSE app in the Connected Apps table. Keep this page open for the next section as you will need the consumer key and secret for authorizing the API in Forcepoint ONE.


  6. Advanced (OAuth Token Timeouts)

    OAuth token timeouts and refresh settings can also be adjusted by editing the Connected App.

    • Click the Edit button on the Administer > Setup > Manage Apps > Connected Apps page.


    • Adjust timeouts and refresh token policies as desired and click Save.