SAS PCE for Salesforce
The Salesforce application, which follows the OpenID Connect (OIDC) protocol can be secured by integrating it with SafeNet Authentication Service Private Cloud Edition (SAS PCE). This integration is achieved by using SafeNet Access Exchange (SAE) as an Identity Provider (IdP), which allows configuring the Salesforce application (client) using the OIDC protocol. In this integration, SAS PCE provides multi-factor authentication in the context of authentication requests received by the SafeNet Access Exchange IdP from the Salesforce application. SafeNet Access Exchange also provides SSO capabilities.
This documentation enables you to integrate Salesforce with SAS PCE for authentication.
In the Salesforce application integration with SAS PCE, no claims can be passed when using the SafeNet Access Exchange IdP. The same is applicable to all the OIDC applications.
The integration comprises the following components:
-
SafeNet Access Exchange (SAE): It is an on-premises IdP, which complements with secure authentication of SAS PCE.
-
SAS PCE: Provides Multi-factor authentication (MFA) to OIDC applications.
-
Salesforce application: The application supports Single Sign-On (SSO) for users by implementing both the Security Assertion Markup Language (SAML) and OpenID Connect (OIDC) protocols. This documentation specifically focuses on integration using the OIDC protocol.
Authentication Flow
The image below illustrates the authentication process, which ensures access to Salesforce.
Integration - Salesforce with SAS PCE
Before you start integrating Salesforce with SAS PCE, you need to complete specific prerequisites.
Integrating Salesforce with SAS PCE is a three-step process:
