Sync users and profiles from Salesforce. Uses OAuth 2.0 client credentials via a Connected App.
Source connector — pulls identity and access data from Salesforce into ComplianceScout where it is scored against your compliance frameworks and violation rules.
After a successful sync, the following data is available in your ComplianceScout dashboard for violation detection and reporting.
These fields are collected when you add the connector in the ComplianceScout dashboard. Secrets are encrypted at rest using AES-256-GCM and are never logged.
| Field | Type | Required | Notes |
|---|---|---|---|
| Instance URL | URL | Optional | Optional. Defaults to https://login.salesforce.com. Use https://test.salesforce.com for sandboxes. |
| Client ID (Consumer Key) | Text | Required | Consumer Key from your Connected App settings. |
| Client secret (Consumer Secret) | Secret | Required | Consumer Secret from your Connected App settings. The app must have "client_credentials" flow enabled. |
Follow these steps to gather the credentials above and connect Salesforce to ComplianceScout.
In Salesforce Setup (gear icon → Setup), search for "App Manager" and click New Connected App.
Enable OAuth Settings, check "Enable for Device Flow" and "Enable Client Credentials Flow". Add OAuth scopes: api and refresh_token.
Save the app and copy the Consumer Key (Client ID) and Consumer Secret.
Under Manage → Edit Policies, set the Client Credentials Flow to run as a dedicated integration user with appropriate permissions.
In ComplianceScout, go to Data & Secrets → Integrations → Add Connector → Salesforce, enter the credentials, then click Test and Save.
Start a free trial — your tenant is provisioned instantly and you can wire up this integration from the connectors page.