Salesforce
Create Connected App
Login in to your salesforce account.
Click on the setup (gear) icon on top right to go to Setup Home.
Go to PLATFORM TOOLS → Apps → App Manager from the left hand side menu or search App Manager on the search bar.
Click on
New Connected App
button on the top-right to create a new connected app for Zilla to use. Fill in basic information.Fill in API (Enable OAuth Settings). Click the checkbox for “Enable OAuth Settings”. Enter this URL: https://app.zillasecurity.com/api/auth/callback/salesforce (if you use a non-US URL then replace ‘app’ with what’s in your specific Zilla login URL e.g. eu, anz, uk) into the Callback URL field, and select the scopes shown in screenshot and then click save . Click Continue on the next page.
Once the details appear, make sure that Consumer Key and Consumer Secret have been created and save them for a later step.
Uncheck Require Proof Key for Code Exchange
Navigate to Manage Consumer Details
Login into Zilla with your admin credentials.
You will land on the Applications page. Click
Add Application
.
Search for
Salesforce
in the search bar and clickAdd to Applications
.
Fill in the form and click
Add to Applications
.
Salesforce
application instance will show up on theApplications
page.
Click the
Salesforce
application instance. You will be redirected to the application details page. Click the gear icon to configure the application.
The application configuration screen will appear.
Enable
API Integration
and enter the configuration details:Salesforce OAuth Domain: For sandbox accounts, this will be
test.salesforce.com
For regular accounts, this will belogin.salesforce.com
Salesforce Lightning Domain: Navigate to
Settings -> Setup -> Company Settings -> My Domain -> My Domain Settings -> Current My Domain URL
to get the lightning domain URLSalesforce Consumer Key: From step 6
Salesforce Consumer Secret: From step 6
User Type: Specify the user type(s) for which data sync will occur. To sync data for multiple user types simply provide a comma-separated list of user types e.g. Standard, CSN only. If no user type is specified, then all user types will be synced.
Sync Groups: Specify whether you want to sync Salesforce groups or not, default is Yes.
Sync Permission Set Groups: Specify whether you want to sync Salesforce Permission Set Groups or not, default is Yes.
Note: When “Sync Permission Set Groups” set to Yes, we bring in Permission Set Groups as Permission Set in Zilla which will be hyperlinked and other Permission Sets will not be hyperlinked. Example as shown in below screenshot.
If you receive this error, then you have PKCE turned on at the app or Global level:
Use this guide to ensure that PKCE is turned off at a Global level, and check the app to make sure that using PKCE is toggled off at the app level:
Click
Sync Now
. You should see an OAUTH Screen like this. Review the scopes, and select Allow. If everything is setup correctly, your Salesforce sync should start. If you see an error message, contact Zilla support.If you see an error like this:
2021-05-17T15:19:50 FetchError-request to https://zsec-dev-ed.force.com/services/data/v50.0/query?q=SELECT+Id,Email,Name,Profile.name+from+User+ORDER+BY+Name failed, reason: getaddrinfo ENOTFOUND zsec-dev-ed.force.com for url=undefined [ { appId: '6086dd2ca9dc218378f93e5a', name: 'salesforce' } ] 2021-05-17T15:19:50 attemptNumber=1 retriesLeft=5 [ { appId: '6086dd2ca9dc218378f93e5a', name: 'salesforce' } ] 2021-05-17T15:19:50 ::ffff:10.0.103.29 - - "GET /api/service/status HTTP/1.1" 200 0.462 106 "-" "ELB-HealthChecker/2.0" 2021-05-17T15:19:51 ::ffff:10.0.102.249 - - "GET /api/service/status HTTP/1.1" 200 0.440 106 "-" "ELB-HealthChecker/2.0" 2021-05-17T15:19:52 FetchError-request to https://zsec-dev-ed.force.com/services/data/v50.0/query?q=SELECT+Id,Email,Name,Profile.name+from+User+ORDER+BY+Name failed, reason: getaddrinfo ENOTFOUND zsec-dev-ed.force.com for url=undefined [ { appId: '6086dd2ca9dc218378f93e5a', name: 'salesforce' } ] 2021-05-17T15:19:52 attemptNumber=2 retriesLeft=4 [ { appId: '6086dd2ca9dc218378f93e5a', name: 'salesforce' } ] 2021-05-17T15:19:53 ::ffff:10.0.101.172 - - "GET /api/service/status HTTP/1.1" 200 0.273 106 "-" "ELB-HealthChecker/2.0" 2021-05-17T15:19:57 FetchError-request to https://zsec-dev-ed.force.com/services/data/v50.0/query?q=SELECT+Id,Email,Name,Profile.name+from+User+ORDER+BY+Name failed, reason: getaddrinfo ENOTFOUND zsec-dev-ed.force.com for url=undefined [ { appId: '6086dd2ca9dc218378f93e5a', name: 'salesforce' } ] 2021-05-17T15:19:57 attemptNumber=3 retriesLeft=3 [ { appId: '6086dd2ca9dc218378f93e5a', name: 'salesforce' } ] 2021-05-17T15:20:06 FetchError-request to https://zsec-dev-ed.force.com/services/data/v50.0/query?q=SELECT+Id,Email,Name,Profile.name+from+User+ORDER+BY+Name failed, reason: getaddrinfo ENOTFOUND zsec-dev-ed.force.com for url=undefined [ { appId: '6086dd2ca9dc218378f93e5a', name: 'salesforce' } ]
This may be because the
Salesforce Lightning Domain
is configured incorrectly. Try adding or dropping the wordlightning
beforeforce.com
Reference Links: