Create Salesforce app in Assertiv
Log into your Assertiv Organization (https://<your-org>.assertiv.com) as an administrative user and select the Manage Apps dashboard tile.
Select the plus () button to create a new App config.
Search for the Salesforce application and select the Salesforce icon.
You will be prompted for some basic information on the following page.
Salesforce Service Name: This is the name of the application as you would like it to appear in Assertiv. Make this a descriptive name that your users will understand. E.g. "Corporate Salesforce".
Signing Certificate: The certificate is used to create a trust between Assertiv and your Assertiv account. For advanced users, if you have a certificate loaded or created in Assertiv that you wish to use, select it here. Otherwise (or if you are unsure) you can select "-- Generate New Signing Certificate --".
Save the configuration.
You should now be shown the Edit Service page with some additional information.
Four new sections are visible on this form:
- Download Metadata File for Salesforce
- Salesforce Login URL
- Identity Provider Login URL (For Salesforce)
- Public Signing Certificate (Advanced) - This is only used if you wish to change the signing certificate used in Salesforce and should not be needed for initial setup.
Configure Salesforce
Log into your Salesforce account as an administrative user and navigate to the Setup menu.
Then navigate to the Single Sign-On Settings configuration (Settings > Identity > Single Sign-On Settings).
Enable SAML, then click the New from Metadata File button.
Load in the Metadata file you downloaded from the Assertiv Salesforce configuration page.
On the next screen make the following changes.
Copy in the Identity Provider Login URL from the Assertiv configuration page:
Select the SAML Identity Type
- Assertion contains the User's Salesforce username
Note: Assertiv uses the email address as the identifier for Single Sign-On. Ensure the username in your salesforce configuration matches the email address of your users.
(Optional): Disable Single Logout unless you have configured your domain within Salesforce.
Save the configuration.
On the following page, copy the Login URL.
Copy this into the Login URL field in Assertiv and save.
Configure Roles
For your users to access Salesforce from their Assertiv apps page, you must set up a role, assign users to the role, and give that role permission to access the application.
More details on roles can be found in the following articles: