Skip to main content
Salesforce SSO Setup

Learn how to configure Salesforce SSO using Salesforce and CloudTalk.

S
Written by Shelby Glynn
Updated over 6 months ago

Set up a connected app for CloudTalk in Salesforce to get your client id, client secret, and redirect url values, so that agents can successfully log in to CloudTalk apps using the Salesforce SSO.

User Level:

  • Admin


Connect Salesforce with CloudTalk to authorize SSO

In order to use Salesforce to authorize logins to CloudTalk apps, we need to:

  • Set up a connected app in Salesforce.

  • Access values from our app in Salesforce to fill in the required values for SSO setup in CloudTalk.

Set up a connected app in your company Salesforce

This step must be completed by a Salesforce Org user with the feature permissions explained in this Salesforce documentation.

Open a tab and log into your Salesforce Org account.

  1. From the landing page in Salesforce, locate the cog icon near your user picture. It contains your Setup options.

  2. From the dropdown, select Setup.

  3. You'll be redirected to a new tab. Using the search or left menu, navigate to Apps > App Manager.

  4. In the top bar, select New Connected App.

  5. Enter the Basic Information for CloudTalk. Check the box to Enable OAuth Settings.

  6. The API (Enable OAuth Settings) sections will expand with more options. Configure the following, using the screenshot for reference:

    1. Check the box to Enable for Device Flow.

    2. The Callback URL box will autofill. You should replace the autofilled value with this URLs: https://authsso.cloudtalk.io/oauth2/idpresponse and https://cloudtalk-prod.auth.eu-central-1.amazoncognito.com/oauth2/idpresponse

    3. Use the arrow buttons to move the following into the Selected OAuth Scopes box:

      1. Access the identity URL service (id, profile, email, address, phone)

      2. Access unique user identifiers (openid)

      3. Full access (full)

      4. Manage user data via APIs (api)

      5. Perform requests at any time (refresh_token, offline_access)

    4. If automatically checked, you may uncheck the boxes for Require Secret for Web Server Flow and Require Secret for Refresh Token Flow.

    5. Check the box to Enable Client Credentials Flow. You may get a warning prompt from this option. Select OK.

  7. Save these settings.

Steps for SSO Setup in CloudTalk Dashboard

Make sure to have open the CloudTalk SSO app you created in Salesforce.

  1. In your Salesforce web tab, find your CloudTalk SSO app. You can get back to it by going through Apps > App Manager. Locate the app in the list and select View.

  2. Select Manage Consumer Details.

  3. You may be asked to input a verification code sent to your contact email.

  4. The Consumer Details page contains a Consumer Key and Consumer Secret, which we will use for our Client id and Client secret in CloudTalk. Keep this page open for reference.

  5. In a separate web tab, log into your CloudTalk dashboard. Navigate to Account > Settings > Single Sign-on. Toggle on Enable Salesforce SSO.

  6. Referencing your open Salesforce tab, use the info from the CloudTalk SSO app you created there to fill the required values:

    1. Client id = Consumer key

    2. Client secret = Consumer secret

    3. Discovery Url = Your Salesforce Org Url, which can be found in the address bar of the webpage

      1. should follow a pattern like: https://cloudtalk.my.salesforce.com

    4. Method = GET

  7. Save Settings.

Troubleshoot Tip
Followed the steps correctly but something isn't working? Try switching the Method from GET to POST.


Have more questions about setting up Salesforce SSO? Reach out to our Support team. We're always happy to help!

Did this answer your question?