Adding a Cloud Service Provider Account for SFDC

You must have created a connected app in SFDC before you can add a Cloud Service Provider account. For more information see Creating a Connected App in SFDC.

Procedure 

  1. Log into the Cryptographic Security Platform Vault for Cloud Keys webGUI using an account with Cloud Admin privileges.
  2. In the top menu bar, click CloudKeys.
  3. Click the CSP Accounts tab and select Actions > Add Cloud Service Provider Account.

  4. On the Details tab of the Add CSP Account dialog box, enter the account details.

    Field Description
    Name The name you want to use for the Cloud Service Provider Account.
    Description An optional description of the Cloud Service Provider Account.

    Admin Group

    Select the Admin Group that you want to use for the account.

    Type

    Select SFDC.

    Client ID

    Enter the Consumer Key that you copied from SFDC.

    Client Secret

    Enter the Consumer Secret that you copied from SFDC.

    Salesforce Domain

    Enter the domain for your Salesforce instance. You will need to copy everything after the https:// and end with salesforce.com. For example, if the URL was https://my-company.development.salesforce.com/ you would enter my-company.development.salesforce.com.

    Wrapping Certificate Name

    Enter the name of an existing wrapping certificate, or the name to be used for a wrapping certificate.

    Named Credential ID

    If you plan to use cache-only keys, enter the ID for the named credential used by Salesforce to make cache-only key call out requests.

  5. Click Continue.

  6. On the Schedule tab, determine the rotation schedule for the Salesforce connection credentials.

    Note: Because the Cryptographic Security Platform Vault for Cloud Keys cannot rotate SDFC credentials, this allows you to create reminders for when you should plan to rotate.

  7. Click Apply.