Use case: Integrate a CRM solution (for example, Salesforce) with ForgeRock Identity Cloud

Use case overview

The ability to provision, reconcile and synchronize identities between a CRM solution and the ForgeRock platform is a common use case that is easily implemented in ForgeRock Identity Cloud.

This use case demonstrates how to integrate Identity Cloud with Salesforce using a built-in Salesforce connector to provision, reconcile and synchronize identities. You can configure the Salesforce connecter easily through the Identity Cloud admin UI.

Once configured, the Salesforce connector can be used for both bulk synchronization and “trickle” migration if your organization wishes to migrate users from an existing Salesforce as an identity service to Identity Cloud.

For further information on setting up a Salesforce Connector in Identity Cloud, see Salesforce in the Identity Cloud product documentation.

Steps to achieve this use case

This use case is achieved in two steps:

  • Configure the Salesforce connector in Identity Cloud
  • Configure mappings to sync identities between Salesforce and Identity Cloud

Prerequisites

You’ll need an existing Salesforce organization, a Salesforce administrative account, and a Connected App with OAuth enabled. For instructions on setting up a Connected App in Salesforce, see the Salesforce documentation.

Make a note of the Consumer Key and Consumer Secret of the Salesforce app (configured in the API (Enable OAuth Settings) section of the Connected App).

Configure the Salesforce connector in Identity Cloud

  1. Sign in to the Identity Cloud admin UI using your admin tenant URL, in the format https://<tenant-name>/am/XUI/?realm=/#/.

  2. Go to Native Consoles > Identity Management > Configure > Connectors.

  3. Click New Connector.

  4. Enter the following details and click Save.

    • Connector Name: Enter a name for the connector, for example, Salesforce.
    • Connector Type: Select Salesforce Connector - <version>.
    • Consumer Key: Enter the Consumer Key for your Salesforce app.
    • Consumer Secret: Enter the Consumer Secret for your Salesforce app.

    Note that there is no requirement to provide a Remote Host since Salesforce is a SaaS provider.

  5. Click Allow to enable Identity Cloud to access your Salesforce app.

    If everything is configured correctly, the Salesforce connector displays as Active.

    uc_salesforce_connector_active

To view the Salesforce data fields:

  1. Go to Configure > Connectors and click on the Salesforce connector you just created.

  2. Click the Object Types tab, and click the edit icon next to the User object type.

    The Salesforce data fields that are already known by the Salesforce connector are displayed.

To view the users who are configured in Salesforce:

  1. Go to Configure > Connectors and click on the Salesforce connector you just created.

  2. Click the Data tab.

    NOTE: You might need to scroll to the right to see all the values.

  3. Click on a user to view the user’s details.

Configure mappings to sync identities between Salesforce and Identity Cloud

You can sync in either direction between Identity Cloud and Salesforce, so you may need to create two sync mappings depending on your use cases.

See Configure a Resource Mapping for further information on configuring mappings.

Additional resources

Documentation:

Training videos:

2 Likes

How can I set up a mapping/reconciliation for Contacts that have been modified after the last successful sync?
For example. Let’s say the sync runs every 5 mins. the last successful run was on 1/1 at 08:00. I have 3 SFDC Contacts that have been modified at 8:02. I want to set up the sync in a way that, when it runs at 8:05, it picks up these 3 contacts (because the last modified date is greater than 1/1 08:00)

Thanks!

1 Like

The Salesforce connector implements the Sync interface ( Salesforce connector :: ICF 1.5.20.21 ), and therefore, livesync is supported: Synchronization types :: ForgeRock Identity Cloud Docs, Schedule synchronization :: ForgeRock Identity Cloud Docs, Manage liveSync :: ForgeRock Identity Cloud Docs

2 Likes