Adding a Cloud Service Provider Account for SFDC

You must have created a connected app in SFDC before you can add a Cloud Service Provider account. For more information see Creating a Connected App in SFDC.

Procedure 

1. Log into the Cryptographic Security Platform Vault for Cloud Keys webGUI using an account with Cloud Admin privileges.
2. In the top menu bar, click CloudKeys.
3. Click the CSP Accounts tab and select Actions > Add Cloud Service Provider Account.

4. On the Details tab of the Add CSP Account dialog box, enter the account details.

   Field	Description
   Name	The name of the CSP account.
   Description	The optional description of the CSP account. Click the name, or Not Set if there is no name, to edit. Click Save to keep your changes.
   Type	The type of CSP account.
   KeySet	If you have a keyset, the name of the keyset associated with this CSP account.
   Client ID	The Consumer Key from SFDC.
   Salesforce Domain	Enter the domain for your Salesforce instance. You will need to copy everything after the https:// and end with salesforce.com. For example, if the URL was https://my-company.development.salesforce.com/ you would enter my-company.development.salesforce.com.
   Wrapping Certificate Name	Enter the name of an existing wrapping certificate, or the name to be used for a wrapping certificate.
   Named Credential ID	If you plan to use cache-only keys, enter the ID for the named credential used by Salesforce to make cache-only key call out requests.

5. Click Continue.

6. On the Schedule tab, determine the rotation schedule for the Salesforce connection credentials.

   Note: Because the Cryptographic Security Platform Vault for Cloud Keys cannot rotate SDFC credentials, this allows you to create reminders for when you should plan to rotate.

7. Click Apply.