Salesforce CRMSalesforce CRMExchange Authentication for Salesforce.com


Salesforce - Requirements

1. If you are using Contact Manager or Group Editions, an upgrade is required.

Editions of Salesforce.com that can be supported by Riva are,

  • Salesforce Professional
  • Salesforce Enterprise
  • Salesforce Unlimited

2. Salesforce feature for "Delegated Authentication Single Sign-On" (DA-SSO) must be activated.

3. Establish a "Network Trust" to avoid security tokens during DA-SSO authentication.

4. Users must be assigned to a "User Profile" that has "Single Sign-On" enabled.

5. The generated DA-SSO URL must be placed in: Administration Setup -> Security Controls -> Single Sign-On Settings.


Exchange & Active Directory - Requirements

1. Must be able to log into Exchange using the same username as Salesforce.com.

    a) Exchange On-Premise: Salesforce usernames must match the user's Active Directory User Principal Name (UPN).

    b) Exchange Hosted: Salesforce usernames must match the user's Primary SMTP email address.


Activation Request


Exchange Web Services URL:
Example: https://mail.my-company.com/ews/exchange.asmx



Additional Technical References

1. Test: Test & verify authentication for generated URL.

2. Omni KB: Preparing for Salesforce.com Delegated Authentication Single Sign-on (DA-SSO) for Impersonation. (kb281)

3. Microsoft TechNet: Active Directory - Add user principal name suffixes

Get more Riva information here: