The connector for Salesforce supports account provisioning only for users in Active Directory, eDirectory, and JDBC identity sources. For more information, see Section 2.4.1, Requirements for Provisioning.
Verify that you meet the following requirements before you configure the connector for Salesforce:
An understanding of identity federation using the SAML 2.0 protocol.
For more information about SAML, see the OASIS website.
A full or developer Salesforce account with provisioning APIs enabled.
Administrator access to the Salesforce account. An understanding of Salesforce and its account management tools are presumed.
(Conditional) A security token from Salesforce.
For more information, see Section 6.2, Configuring Salesforce to Trust CloudAccess.
The location in the Salesforce administration console where you will configure the SAML 2.0 federation for CloudAccess.
When you configure the connector, the Federation Instructions provide the information that you will need to set up the federation in Salesforce for CloudAccess. This information includes the metadata specific to the appliance; a signing certificate for the appliance; the field values to use; and other guidance.
The metadata file from Salesforce.
You generate and download this file after you configure SAML 2.0 federation for CloudAccess in Salesforce.