Stop AI Hallucinations: Using Filters to Control Your Salesforce Agents
AI Agents are revolutionizing how we interact with data in Salesforce, but every Admin asks the same question: “How do I stop the AI from doing something it shouldn’t?”
In Agentforce Builder, the answer lies in Filters.
If Actions are the “muscles” of your Agent, Filters are the “brain stem.” They are the conditional logic gates that determine if and when an action is allowed to run. Without them, your Agent is guessing; with them, your Agent is governed.
Here is a deep dive into the four critical uses of Filters in Agentforce Builder and how they turn a generic chatbot into a secure business partner.
1. Enforcing Business Rules (Contextual Logic)
The most common use of filters is to replicate your organization’s standard operating procedures (SOPs). You don’t want an Agent to offer a discount just because a user asks nicely; you want it to offer a discount only if the customer qualifies.
Filters allow you to bind Agent actions to specific variable states.
- The Scenario: A user asks, “Can I have a refund?”
- The Filter:
Is_Eligible_For_RefundequalsTrue. - The Result: If the variable (populated by a Flow or Apex class) returns
False, the Agent is physically blocked from executing the “Process Refund” action. It will instead tell the user they are not eligible.
2. Role-Based Access Control (Security)
Not every user in your Salesforce org should have the same power. While Salesforce Profiles and Permission Sets handle data access, Agentforce Filters handle conversational access.
You can use filters to hide high-stakes capabilities from unauthorized users.
- The Scenario: A junior support agent asks the AI to “Escalate this case to Engineering.”
- The Filter:
User_RoleequalsManagerORSenior_Support. - The Result: The AI checks the user’s context. If they don’t match the criteria, the “Escalate” action is effectively invisible to the Agent for that conversation. This prevents social engineering attacks where users try to trick the AI into performing admin-level tasks.
3. Preventing Hallucinations with “Prerequisite Checks”
One of the biggest risks with LLMs (Large Language Models) is that they try to be helpful even when they lack data. If an Agent tries to update a record without knowing which record to update, it might hallucinate or guess.
Filters act as Input Guardrails.
- The Scenario: The Agent tries to run an action “Update Shipping Address.”
- The Filter:
Account_IDIS NOT NULL. - The Result: The filter ensures the action cannot run unless the Agent has successfully identified and stored the specific Account ID. If the ID is missing, the Agent is forced to ask the user for clarification rather than guessing.
4. Managing Flow Orchestration
Sometimes, actions need to happen in a specific order. Filters help you create a linear progression in a non-linear conversation.
Pro Tip: Use Boolean variables to track the state of a conversation.
- The Scenario: You want the Agent to collect customer feedback, but only after a case is closed.
- The Filter:
Case_StatusequalsClosed. - The Result: Even if the user says “I want to leave feedback” at the start of the chat, the Agent can be filtered to hold that action until the Case resolution logic is complete.
Comparison: Agents With vs. Without Filters
| Feature | Without Filters | With Filters |
| Security | Relies solely on the LLM’s “common sense” | deterministic rules block unauthorized actions |
| Reliability | High risk of hallucinations | Actions only run when data is present |
| User Experience | Chaotic; Agent may try impossible tasks | Guided; Agent follows a logical flow |
| Business Value | Unpredictable | Aligned with company policy |
How to Implement a Filter in Agentforce
Setting up a filter is a low-code process within the Builder:
- Define Your Variable: Ensure you have a variable (Input or Output) that represents the condition (e.g.,
Current_User_Profile). - Select the Action: Click on the specific Action or Topic you want to restrict.
- Add Logic: In the Rules/Filter tab, define the criteria (e.g.,
VariableEqualsValue). - Test: Use the Copilot Preview to try and trigger the action without meeting the criteria to ensure it is blocked.
Conclusion
Trust is the currency of AI adoption. If your stakeholders don’t trust the Agent to follow the rules, they won’t deploy it.
By effectively using Filters in Agentforce Builder, you move from “experimenting with AI” to “deploying enterprise-grade Agents.” You ensure that your AI doesn’t just generate text—it generates value, securely and accurately.