Configuring Salesforce Provisioning
Last updated: October 8, 2024
Background
This article provides a walkthrough of how to enable native Salesforce provisioning capabilities in your AppStore.
This feature is currently in a closed beta! If you have questions, please contact your Lumos Customer Success Manager.
Prerequisites
To enable Salesforce provisioning, you need to connect the Salesforce integration (π Connecting Salesforce) and add your Salesforce app to the AppStore (π Adding Apps To Your AppStore).
Assigning Profiles
Manual Steps Needed | Time-Based Access Available | Multi-Select |
β | β | β |
In theΒ Permissions tab in your Salesforce AppStore configuration (π AppStore Configuration Settings), you'll see the profile values from your Salesforce tenant populate with a [Profile] suffix. If you're not seeing a profile, refresh the permissions list.
If an employee is approved for a Profile, we will replace the user's existing Salesforce Profile with the requested Profile.
If you're using the AppStore to allow users to request Profiles, ensure they can only request one. Provisioning will fail if they select two or more. Seeπ Configuring Permissions for Single Select
Salesforce API endpoints: https://help.salesforce.com/s/articleView?language=en_US&id=sf.identity_scim_update_users.htm&type=5 (we execute a replace of the user's profile entitlement)
Assigning Permission Sets
Manual Steps Needed | Time-Based Access Available | Multi-Select |
β | β | β |
In theΒ Permissions tab in your Salesforce AppStore configuration (π AppStore Configuration Settings), you'll see the permission set values from your Salesforce tenant populate with a [Permission Set] suffix. If you're not seeing a permission set, refresh the permissions list.
If an employee is approved for a Permission Set, we will add this permission set to their existing permission sets.
Salesforce API endpoints: https://help.salesforce.com/s/articleView?language=en_US&id=sf.identity_scim_update_users.htm&type=5 (we execute an add of the user's permission set entitlement to include the new Permission Sets)