Skip to content

Configure Salesforce to connect to ActZero

Estimated Time to Complete: 15 minutes

Contact us to learn more about adding Managed Detection & Response (MDR) services to your cloud endpoints.

To enable the ActZero team to monitor your Salesforce.com endpoints, you need to complete a few steps to configure a connection from your cloud environment to ActZero. Use the instructions below to set up a connection.

As you go, be sure to collect the following pieces of information to securely share with ActZero:

  • consumer key
  • consumer secret
  • security token

Configuration options

Credentials for a Salesforce account (username, password, security token) are required to establish the connection between your Salesforce environment and ActZero. This means that the integrity of the connection depends on the credentials you provide us being correct and up to date. There are a few choices you can make when setting up the connection.

Choose which Salesforce account to use

You may either use your existing Salesforce account or you can create a utility account specifically for the ActZero connection. A utility account is the recommended approach, however this requires budgeting for an additional account.

Choose your password expiration settings

We recommend that the account used to configure the Salesforce connection has a Profile with password expiration disabled to ensure that the connection to ActZero functions continuously. If you are unable to disable password expiration for the account, you will need to update ActZero whenever the password is reset (e.g., every 90 days) with the updated password and security token, otherwise the connection will cease to function. Follow these instructions to disable password expiration for a Profile:

  1. Log in to Salesforce with an administrator account.
  2. Click the gear icon to navigate to Setup.
  3. On the Setup page, under the Administration heading in the left nav, select Users > Profiles.
  4. Select the Profile you would like to modify. This should be the Profile associated with the Salesforce Account that will be used to configure the connection to ActZero.
  5. Navigate to System > Password Policies.
  6. Click Edit and set User passwords expire in to Never Expires.

Configure Salesforce.com

  1. Log in to the Salesforce.com account you will use to configure the connection to ActZero.
  2. Click the gear icon to navigate to Setup.
  3. On the Setup page, under the Platform Tools heading in the left nav, select Apps > App Manager.
  4. In the Lightning Experience App Manager, click the New Connect App button.
  5. Input values for the Connect App Name, API Name, and Contact Email, then check the box to Enable OAuth Settings.
  6. In the Callback URL field, enter: https://openidconnect.herokuapp.com/callback
  7. In the Selected OAuth scopes field, add the following scopes:
    • Access and manage your data (api)
    • Allow access to your unique identifier (openid)
    • Provide access to your data via the Web (web)
  8. Check the boxes for Require Secret for Web Server Flow and Require Secret for Refresh Token Flow, then click Save.
  9. Copy the values for Consumer Key and Consumer Secret to a safe and temporary place in your local environment.
  10. Click your avatar to navigate to the Settings page.
  11. On the Settings page, click to expand My Personal Information in the left nav, then select Reset My Security Token. Click the button to Reset Security Token.
  12. Salesforce emails the new security token to you. Copy the value of the new security token to a safe and temporary place in your local environment.

Share with ActZero

  1. Use Keybase to securely encrypt and share the four pieces of information you collected. You do not need to create a Keybase account.
    • Recipient: actzerocre
    • Message to encrypt:
      • your Salesforce.com username/email
      • your Salesforce.com password
      • consumer key
      • consumer secret
      • security token
      • content type (a list of the fields you wish to monitor, such as: SetupAuditTrail and LoginHistory; refer to Salesforce Fields Reference)
  2. Click Encrypt, then copy the encrypted contents of the message into an email or open ticket with ActZero and send or save.
  3. Erase the copies of the sensitive information in your local environment.



Was this documentation helpful? Please send us your feedback!