Additional integration and instance types

Create a Salesforce Community integration

You may want to create a Salesforce Community integration if you have a Community within Salesforce. This integration uses the Portal setup to provide access to a Community subset of the Salesforce instance, where Community users are provisioned as external users.

To create a Salesforce Community integration:

  1. From Okta, go to Applications > Applications and select Salesforce.com.
  2. From the General tab in Salesforce, click Edit and then select Salesforce Community User from the User Profile & Type drop-down.
  3. Complete other settings as desired.

  4. Optionally, configure SAML 2.0.

    You can configure SAML 2.0 settings to allow Community users to automatically log in to Salesforce. Unlike the existing Salesforce Customer Portal app, a separate SAML configuration is used.

    1. Click View Setup Instructions and follow the SAML setup instructions.
    2. Set the login URL to the Community Login URL for your Community.

      See the Salesforce Single Sign-On Settings page under Endpoints.

      Secure Web Authentication (SWA) login is not supported for communities.

  5. From the Provisioning tab, specify the Salesforce account ID for provisioned users and the type of Community users to import.

    As part of provisioning a new Community user, Okta creates a new contact in Salesforce associated with the Salesforce account. This new contact contains the user's name and email address. This contact is necessary because Community users in Salesforce must be associated with a contact.

    1. Go to SETTINGS > To App and with the Create Users provisioning option enabled, complete the Salesforce Account ID field with the Community user's contact that will be associated with Salesforce.

    2. Go to SETTINGS > To Okta and select Import "Customer" users or Import "Partner" users, or both, and then click Save.

  6. Complete the application setup as desired.

Create a Salesforce Portal integration

You may want to create a Salesforce Portal integration if you're using a portal in Salesforce. This integration uses the Portal setup to provide access to a Portal subset of the Salesforce instance, where Portal users are provisioned as external users.

To create a Salesforce Portal integration:

  1. From Okta, go to Applications > Applications and select Salesforce.com.
  2. From the General tab in Salesforce, click Edit and then select Salesforce Portal User from the User Profile & Type drop-down.
  3. Enter your Salesforce organization ID, portal ID, and optionally the site URL.
  4. Complete other settings as desired.

  5. Optionally, configure SAML 2.0.

    You can configure SAML 2.0 settings to allow Community users to automatically login to Salesforce. Unlike the existing Salesforce Customer Portal app, a separate SAML configuration is used.

    1. Click View Setup Instructions and follow the SAML setup instructions.
    2. Set the login URL to the Salesforce Login URL.

      See the Salesforce Single Sign-On Settings page under Endpoints.

      Secure Web Authentication (SWA) login is not supported for communities.

  6. From the Provisioning tab, specify the Salesforce account ID for provisioned users and the type of Portal users to import.

    As part of provisioning a new Portal user, Okta creates a new contact in Salesforce associated with the Salesforce account. This new contact contains the user's name and email address. This contact is necessary because Portal users in Salesforce must be associated with a contact.

    1. Go to SETTINGS > To App and with the Create Users provisioning option enabled, complete the Salesforce Account ID field with the Portal user's contact that will be associated with Salesforce.

    2. Go to SETTINGS > To Okta and select the user types you want to import.

  7. Complete the application setup as desired.

Enable the Salesforce Government Cloud feature

The Salesforce Government Cloud feature enables you to create instances of Salesforce that can integrate with Salesforce Government Cloud.

To enable the Salesforce Government Cloud feature:

  1. From Okta, go to Applications > Applications and open the Salesforce app.
  2. Click the General tab and then Edit.
  3. From the Instance Type drop-down, select Government.

  4. Specify your custom domain in the Custom Domain field.

    A Salesforce instance can have a custom domain, and an Okta integration with Salesforce can be setup to use that custom domain. But a Salesforce instance does not require a custom domain.

    In order for the government instance type to work with Okta Provisioning, you must configure a custom domain for the Salesforce instance.