September 20, 2019

Service Account or Integration Account Best Practices in Salesforce

Check the below for Service User or Integration User Best Practices in Salesforce

1. Create separate user account for each service or integration.

2. Create separate Connected App for each service or integration.

3. Have separate profile for each service or integration.

4. Give only required permissions to the profile.

5. Avoid giving Manage Users permission.

6. Add the profile to the Connected App so that no other profile user can use the same connected app.

7. Add IPs to to the profile to white-list.

8. Change the password periodically or follow your company's security password policies.

9. Use API Only permission in Profile. To know more about this permission, check https://www.infallibletechie.com/2020/12/api-only-permission-in-salesforce.html

Note:
Salesforce does not provide for "free" or "discounted" user licenses for these types of User Accounts.

No comments:

Post a Comment