Salesforce is a best-of-breed cloud customer relationship management app, enabling organizations to easily manage and track leads, contacts and opportunities. It is built on the platform, and can be readily extended with an expansive range of third-party marketplace apps and other Salesforce products that encompasses sales, marketing, customer service and commerce.

API version

The Salesforce connector uses Salesforce REST API.

Supported editions and versions

The Salesforce connector works with all Salesforce cloud instances, e.g. Professional, Enterprise, Unlimited, and Developer

It also works with apps.

How to connect to Salesforce on Workato

The Salesforce connector uses OAuth2 authentication to authenticate with Salesforce.

Configured Salesforce connection Configured Salesforce connection

  • Connection name

Give this Salesforce connection a unique name that identifies which Salesforce instance it is connected to.

  • Sandbox

To connect to a Salesforce Sandbox instance, simply use the login credentials for your sandbox account and select "yes" on this field.

  • Enable restricted IP

Relevant for organizations with IP whitelisting. Select yes to have all requests from Workato originate from a consistent, known IP address.

Fill in the above fields and click connect. A Salesforce connection pop-up prompts you to provide your Salesforce login credentials for OAuth2 authorization.

Salesforce authorization pop-up Salesforce authorization pop-up

  • Username

Username to connect to Salesforce.

  • Password

Password to connect to Salesforce.

Roles and permissions required to connect

Salesforce users can connect to Salesforce from Workato. We recommend that a separate user be created for integration purposes.

The connected user will have the same permissions through the Workato Salesforce connector as in Salesforce. They will be able to read and write the objects as specified in their Salesforce profile. The user profile should be setup to allow appropriate access to the requisite objects required for the recipes. The permissions can be edited via the connected user's profile in Salesforce.

API Enabled permission

The connected user's profile should be API enabled. API enabled permission - profile setup API enabled permission - profile setup

Standard and custom object permissions

To interact with an object in Salesforce, the connected user's profile needs to have permissions to read, write, edit, delete, view all, modify all for the standard object or custom object in your Salesforce organization.

Salesforce standard object permissions - profile setup Salesforce standard object profile permissions setup

Salesforce custom object permissions - profile setup Salesforce custom object profile permissions setup

Platform event permissions

In order to use platform events triggers and actions, you need platform events to be enabled in your Salesforce organization. You would need to set read and create permissions for the connected user's profile.

Salesforce platform events permissions - profile setup Salesforce platform events permissions - profile setup

Real-time trigger permissions

To use real-time triggers in Salesforce, workflow rules have to be set up in your Salesforce organization. These workflow rules require the Customize application permission under the Administrative Permissions tab to be setup, although the connected user does not need to be the user who sets these rules up.

Customize application permission - profile setup Customize application permission - profile setup

Connecting to custom domains

Salesforce allows custom domains to be defined on both Salesforce organization and Salesforce Communities. Workato allows connections to be created to both.

If your Salesforce organization is hosted on a custom domain, connect your account by clicking on 'Use custom domain' on the OAuth 2 pop-up. Then, enter your custom domain and the username and password.

Salesforce custom domains Use a custom domain

If you are connecting to a Salesforce community with a custom domain, expand the 'Advanced settings' in the connection. Here, enter your Salesforce community's custom domain before clicking on 'Link your account'. You will see the login page for your community where you can simply enter your username and password to connect.

Salesforce Communities custom domains Use a Salesforce Communities custom domain

Working with the Salesforce connector

Can I connect more than one Salesforce account in a single recipe?

Yes, you may use up to 2. Simply use the Salesforce Secondary app on Workato, and you will be able to use both accounts in a single recipe. Find out more here.

Best practices

When starting to use Workato with your Salesforce account, we recommend that you either do it on a sandbox account, or test on non-essential pieces of data. This would prevent any loss of crucial data, especially since actions performed through Workato cannot be undone.

Working with sandboxes on Workato

Salesforce sandboxes are isolated from your Salesforce production organization, so operations that you perform in your sandboxes don’t affect your Salesforce production organization, and conversely. Sandboxes are nearly identical to your Salesforce production organization. For a list of differences, see Sandbox Setup Tips and Considerations.


Here is a list of common errors that you may encounter, and links to how to rectify them.

results matching ""

    No results matching ""