Skip to main content

Prepare Salesforce Sales Cloud connectors

The Salesforce Sales Cloud connector retrieves information about subscriptions and users.

In Salesforce, you are required to create a connected app, and enter portal URL, username, consumer key, private key, authorization server URL, and company name from Salesforce in Settings when adding the connector.



A Salesforce user account with Multi Factor Authentication configured cannot be used in authentication of the API integration.

A digital certificate, and the private key used to sign the certificate, are required to create a connected app in Salesforce, and to add the Salesforce connector. You can use a certificate and private key issued by a certification authority, or you can generate a certificate and key using OpenSSL.

The certificate consists of two files:

  • The digital certificate, with file extension .crt, used when creating a connected app in Salesforce

  • The private key, with file extension .key, used when adding the connector

For more information on how to create a certificate, see Salesforce developer documentation.

User permissions needed to read, create, update, or delete connected apps in Salesforce:

  • Customize Application and

  • Modify All Data or Manage Connected Apps


  1. Sign in to Salesforce:

  2. Create a connected app, upload your digital certificate, and set the scopes.

    1. Create a new Connected App.

    2. Update the basic information as needed, such as the connected app name and your email address.

    3. In the API section, select Enable OAuth Settings.

    4. Add as the callback URL.

    5. Select Use digital signatures.

    6. Select Choose File and upload your digital certificate.

      The certificate file has the extension .crt.

    7. Add the following OAuth scopes:

      • Manage user data via APIs (api)

      • Perform requests at any time (refresh_token, offline_access)

    8. Select Save.

  3. Set policies and permissions for the connected app.

    1. On the newly created app page, select Manage.

    2. Select Edit Policies.

    3. In the OAuth Policies section, select Admin approved users are pre-authorized for permitted users, and select OK.

    4. Select Save.

    5. Select Manage Profiles and then select Manage Permission Sets.

      Select the profiles and permission sets that are pre-authorized to use this connected app. Create permission sets if necessary.

  4. When adding the connector, in Settings, enter the values from Salesforce according to the table.


    Value from Salesforce

    Company names

    The organization for which you want to collect data. You can add several company names, one per row, if your organization has multiple legal entities.


    The URL of your Salesforce portal.

    It has the format

    Login URL

    The URL of the authorization server.

    There are a few possible values for this field:

    • for production environments (this is the default value)

    • for sandbox environments

    Client ID

    The Consumer Key of the connected app that you created in Salesforce.


    The username of the user account that you want to impersonate for execution of requests. This user needs to have a profile/permissions set added when creating a connected app in Salesforce.

    Certificate secret key

    The content of your digital certificate's private key file.

    The private key file has the extension .key.

After completing this task, follow the general procedure to Add connectors.

The connector makes API calls to the vendor to retrieve data.