Your suggested change has been received. Thank you.

close

Suggest A Change

https://thales.na.market.dpondemand.io/docs/dpod/services/kmo….

Thales Logo

All

  • All
back

SAS PCE for Salesforce

Salesforce Configuration

search

Please Note:

Salesforce Configuration

Perform the following steps to configure SafeNet Access Exchange (SAE) as your OIDC Provider in Salesforce:

  1. Log into Salesforce as an administrator.

  2. Create an Apex class to set up single sign-on to implement Auth.RegistrationHandler.

    A Registration handler class is required to use Authentication Providers for single sign-on flow.

    Perform the following steps:

    1. Go to Setup, in the left pane, under PLATFORM TOOLS > navigate to Custom Code and click Apex Classes.

    2. Click New and copy below into the Create Apex Class window.

      
global class STAInternalRegHandler implements Auth.RegistrationHandler{
global User createUser(Id portalId, Auth.UserData data){
    User u = [Select Id , username from User where email =: data.email];
            return u;
}
      

      global void updateUser(Id userId, Id portalId, Auth.UserData data){
}
}

    3. Click Save.

    4. Ensure that the Apex Class name appears as SASInternalRegHandler.

      Default icon

  3. Go to Setup, in the left pane, under SETTINGS, click Identity > Auth. Providers.

  4. In the right pane, click New and in the Provider Type field, select Open ID Connect.

    Default icon

  5. On the Auth. Providers window, perform the below steps:

    1. In the Name field, enter any name to identify OIDC Provider (for example, SASPCE).

    2. Click in URL Suffix field and ensure that you find auto-populated value (for example, SASPCE).

    3. In the Consumer Key field, enter client ID of the provider, you can copy the CLIENT ID from Clients in SAE.

    4. In the Consumer Secret, enter the value of Secret, which you copied in step 5 of Identity Provider Setup.

    5. Enter the values of URLs, which you copied earlier as a prerequisite.

      • In the Authentication Endpoint URL field, enter the value of authorization_endpoint URL.

      • In the Token Endpoint URL field, enter the value of token_endpoint URL.

      • In the User Info Endpoint URL field, enter the value of userinfo_endpoint URL.

    6. In the Registration Handler field, click the Handler Lookup symbol alt_text, click Go in the newly opened window, and select SASInternalRegHandler that you created in step 2(d).

    7. In the Execute Registration As, select the user that runs the Apex handler class (usually your admin account).

    8. Click Save.

      Default icon

    9. Under Salesforce Configuration, copy and save the value of Callback URL. Then go to step 7 of Identity Provider (SafeNet Access Exchange) Setup and complete the Identity Provider configuration.

      Default icon

  6. In the left pane, under Company Settings, click My Domain.

  7. On the My Domain page, under Authentication Configuration, click Edit.

    Default icon

  8. On the Authentication Configuration page, under Authentication Service, select the Identity Provider (for example, SASPCE) that was created in step 5.

  9. Click Save.

    Default icon

    It is required to create users in Salesforce.

On this page