Salesforce Integration
1. Create a Salesforce Developer Account
1.1. Navigate to the Salesforce Developers Enrollment Page
- Click + to open a new tab in Firefox
- Enter the URL https://developer.salesforce.com/signup
1.2. Create a Developers account
Complete the fields on the registration page. The registration must use a valid email address as you will be required to validate the account and create a password by responding to an email.
1.3. Navigate to Salesforce Login Page
After validating your email and creating a password navigate to the Salesforce login page by entering https://login.salesforce.com into the browser
1.4. Login to Salesforce
- Enter your username
- Enter your password
- Click Login
You may be prompted to enter a security code because you are logging in from an unknown browser. You will receive an email to your registered email account with the Verification Code.
1.5. Switch to VMware Identity Manager Console
Click on the "VMware Workspace ONE" tab in the browser.
1.6. Navigate to Catalog Settings
- Click Catalog
- Click Settings
1.7. Export the SAML Metadata
- Click SAML Metadata
- Click Identity Provider (IdP) metadata
- Click Save Line As...
1.8. Save the SAML Metadata
Click Save
1.9. Switch to Salesforce
Click on the Salesforce Firefox tab
1.10. Navigate to the Single Sign-On Settings
- In the Quick Search field enter single
- Click on Single Sign-On Settings
1.11. Edit the Single Sign-On Settings
Click Edit
1.12. Enable Single Sign-On
1.13. Import the Metadata file
Click New from Metadata File
1.15. Select the Metadata file
- Click Downloads
- Select idp.xml
- Click Open
1.17. Update the SAML Settings
- Select Assertion contains the Federation ID from the User object in the "SAML Identity Type" section
- Click Save
1.18. Download the Salesforce Metadata
Click Download Metadata
1.19. Save the Metadata file
- Select Save File
- Click OK
1.20. Search for My Domain
- In the quick search field enter my
- Click My Domain
1.21. Register your new domain
- Enter you admin account from Identity Manger in the domain field which should be first name last name and 4 numbers.
- Check the "Terms and Conditions" check box
- Click Register Domain
After registering your domain it may take a few minutes for Salesforce to complete the process. Return to the "My Domain" screen by performing the previous step.
1.23. Select the Authentication Service
- Un-check the box next to "Login Page"
- Check the box next to your username
- Click Save
1.24. Search for Users
In the quick search field enter Users
Click Users
2. Configure the Salesforce1 App for Single Sign-On
2.1. Switch to VMware Identity Manager Console
Click on the "VMware Workspace ONE" tab in the browser.
2.2. Navigate to the Catalog App Catalog
- Click Catalog
- Click Application Catalog
2.4. Select Salesforce
Click on the Salesforce icon
2.6. Open Notepad++
- Click the Start button
- Click Notepad++
2.7. Open the Metadate file
- Click File
- Click Open
2.8. Select the Metadata file
- Click Downloads
- Select the Metadata XML file
- Click Open
2.10. Paste the meta data into Identity Manager
- Paste the data into Identity Manager by typing Ctrl-V
- Click Save
2.11. Import Confirmation
Confirm that the "Assertion Consumer Service", the "Recipient Name" and the "Audience" fields were set correctly.
2.13. Select the user
Click browse
2.14. Configure the User Entitlement
- Check the checkbox next to the
- Select Automatic from the Deployment dropdown
- Click Save
2.15. Finalize the Entitlement
Click Done
2.16. Add a new Salesforce Policy
- Click Identity & Access Management
- Click Policies
- Click Add Policy
2.17. Name the policy
- Enter Salesforce in the "Policy Name" field
- Click Select from the "Applies To" section
2.18. Select Salesforce
- Check the box next to Salesforce
- Click Save
2.19. Create a new Policy Rule
Click the "+" sign
2.20. Configure the Rule
- Select ALL RANGES
- Select iOS
- Select Mobile SSO (for iOS)
- Click OK
2.21. Save the new policy
3. Add the Salesforce1 App to the App Catalog
3.1. Switch to the AirWatch Console
Click on the AirWatch tab in Firefox
3.2. Add the Salesforce1 Application
- Click Apps & Books
- Click List View under Applications
- Click Public
- Click Add Application
3.3. Search for the Application
- Select Apple iOS
- Enter salesforce1
- Click Next
3.5. Configure the Assignment of the Application
Click Assignment
Click in the "Assigned Groups" field and select All Devices ([email protected])
3.6. Configure the Deployment of the Application
- Click Deployment
- Select Auto
- Confirm that the check box for "Device must be MDM Managed to install this App (Workspace ONE only)" check box is checked
3.7. Configure Application Configuration Values
- Scroll down in the "Deployment" options
- Check "Send Application Configuration"
- Value 1 Settings
- Configuration Key = AppServiceHosts
- Value Type = String
- Configuration Value = yourname1234-dev-ed.my.salesforce.com - Click + Add
- Value 2 Settings
- Configuration Key = ClearClipboardOnBackground
- Value Type = Boolean
- Configuration Value = TRUE - Click Save & Publish
4. Add the Workspace ONE App to the App Catalog
4.1. Add Workspace ONE
Click Add Application
4.2. Search for Workspace ONE
- Select Apple iOS
- Enter Workspace ONE
- Click Next
4.4. Application Assignment Settings
- Click Assignment
- Click in the "Assigned Groups" field
- Select All Devicces ([email protected])
4.5. Application Deployment Settings
- Click Deployment
- Select Auto
- Un-check the check box for "Device must be MDM Managed to install this App (Workspace ONE only)"
- Check the "Send Application Configuration" checkbox
- Value 1 Settings
- Configuration Key = AppServiceHost
- Value Type = String
- Configuration Value = https://yourname1234.vmwareidentity.com - Click + Add
- Value 2 Settings
- Configuration Key = deviceUDID
- Value Type = String
- Configuration Value = {DeviceUid} - Click Save & Publish
5. Validate the Salesforce1 App Single Sign-On
5.1. Launch the App on the device
Click on the Salesforce1 app on your enrolled iOS device
5.2. Confirm re-direction to Workspace ONE
If the AppConfig parameters were configured correctly you should see the Workspace ONE Authentication page display.
5.3. Validate Single Sign-On
Authentication should complete and the application should launch without requiring the user to enter their username and password.
0 Comments
Add your comment