Salesforce Target

You can define a Salesforce target to be used in the Akeyless KMS integration with Salesforce Shield.

Create a Salesforce Target from the CLI

To create a Salesforce target using the Akeyless CLI, use the following command:

akeyless create-salesforce-target /
--name <target name> /
--tenant-url <Salesforce tenant URL> /
--client-id <Oauth2 app client ID for connecting to Salesforce> /
--client-secret <Oauth2 app client secret for connecting to Salesforce> /
--email <Oauth2 app user email> /
--password <Oauth2 app user password> /
--security-token <Oauth2 app user security token>

Where:

  • name: A unique name for the target. The name can include a path to the virtual folder where you want to create a new target, using slash / separators. If the folder does not exist, it will be created together with the target.

  • tenant-url: The Salesforce tenant URL.

  • client-id: The Client ID of the OAuth 2.0 app to use for connecting to Salesforce.

  • client-secret: The Client secret of the OAuth 2.0 app to use for connecting to Salesforce.

  • email: The email of the user attached to the OAuth 2.0 app that is used for connecting to Salesforce.

  • password: The password of the user attached to the OAuth 2.0 app used for connecting to Salesforce.

  • security-token: The security token of the user attached to the OAuth 2.0 app used for connecting to Salesforce.

Parameters

You can find the complete list of parameters for this command in the CLI Reference - Akeyless Targets section.

Create a Salesforce Target in the Akeyless Console

  1. Log in to the Akeyless Console, and go to Targets > New > Cloud Targets > Salesforce.

  2. Define a Name of the target, and specify the Location as a path to the virtual folder where you want to create the new target, using slash / separators. If the folder does not exist, it will be created together with the target

  3. Define the remaining parameters as follows:

  • Tenant URL: Specify the URL of the Salesforce tenant.

  • Client ID: Provide a Client ID of the oauth2 app to use for connecting to Salesforce.

  • Client Secret: Provide a Client secret of the OAuth 2.0 app to use for connecting to Salesforce.

  • Username: Provide a username (usually, the email) of the user attached to the OAuth 2.0 app that is used for connecting to Salesforce.

  • Password: Provide a password of the user attached to the OAuth 2.0 app used for connecting to Salesforce.

  • Security Token: Provide a security token of the user attached to the OAuth 2.0 app used for connecting to Salesforce.

  • CA certificate name: Specify the name of the certificate in the Salesforce tenant.

  • CA certificate: Provide a base64-encoded PEM certificate of your Salesforce tenant.

  • Protection key: To enable Zero-Knowledge, select a key with a Customer Fragment. For more information about Zero-Knowledge, see Implement Zero Knowledge.

  1. Click Save.