Introduction #
- When establishing connections between systems, ensuring secure and reliable authentication mechanisms is paramount.
- Within the SKYVVA integration application’s agent control board, administrators are presented with the flexibility to choose between different authentication types, notably the “Authentication Type” picklist, which includes options for both “Basic” and “OAuth2 Client-Credential” methods.
- The “Basic” authentication method involves the straightforward transmission of credentials (typically username and password) from the agent to Salesforce.
- Conversely, the “OAuth2 Client-Credential” authentication method offers a more robust and secure approach.
- It leverages the OAuth2 protocol, allowing agents to obtain access tokens from Salesforce by presenting client credentials.
- This method is particularly advantageous in scenarios where a higher level of security and control over access is required, as it minimizes the exposure of sensitive information and facilitates seamless integration with Salesforce APIs.
When setting up a ping connection agent to Salesforce using the SKYVVA integration application via the Agent Control Board, administrators have the flexibility to choose between two authentication types: Basic and OAuth2 Client-Credential. Here’s an explanation of each:
Basic Authentication: #
-
- This authentication method involves sending credentials (usually a username and password) with each request made from the agent to Salesforce.
- Basic authentication is straightforward to set up and understand, making it suitable for simple integration scenarios.
- However, it’s important to note that Basic authentication may not be as secure as other methods, especially when dealing with sensitive data, as the credentials are sent with each request in plain text.
OAuth2 Client-Credential Authentication: #
-
- OAuth2 is an industry-standard protocol for authorization, providing a more secure and flexible way to authenticate and authorize access to resources.
- With the Client-Credential grant type, the integration application obtains an access token from Salesforce using a client ID and client secret, which are securely stored and managed.
- OAuth2 authentication is recommended for enhanced security, as it does not require the transmission of user credentials with each request. Instead, it relies on access tokens that have a limited lifespan and can be easily revoked if compromised.
- This method is particularly suitable for scenarios where higher security standards are necessary or when integrating with multiple Salesforce instances or other OAuth2-compliant systems.
By offering both Basic and OAuth2 Client-Credential authentication options, the SKYVVA integration application caters to a wide range of integration requirements, allowing administrators to choose the authentication method that best aligns with their security policies and integration needs.
Summary #
When configuring a ping connection agent to Salesforce via the SKYVVA integration application’s agent control board, choose between basic and OAuth2 Client-Credential authentication types from the picklist.