Configure the Web Query Client Policy for Salesforce

Using the Client Policy Builder, you can create and modify policies for your Tenable Log Correlation Engine Web Query Client. The following steps are performed via the web interface on the Tenable Log Correlation Engine server that you configured your Tenable Log Correlation Engine Web Query Client to communicate with.

To configure the Web Query Client Policy for Salesforce:

  1. Using the Client Policy Builder, create a policy for your Tenable Log Correlation Engine Web Query Client. This documentation includes a list of valid configuration items for the client policy.

    A Web Query Client policy for Salesforce requires you to add a Salesforce endpoint to the policy. You must provide the following:

    1. In the Basic pane of the Client Policy Builder, click the button in to add a group.

      The Add a new endpoint group window appears.

    2. Click the Add Salesforce endpoint button.

      A new Salesforce endpoint appears.

    3. In the Endpoint name box, enter a name that identifies the endpoint.
    4. Select the Active check box.
    5. In the Query interval box, enter the number of seconds between each query to the Salesforce API.
    6. In the Username box, enter the username for the Salesforce account being queried.
    7. In the Password box, enter the password that corresponds to the username, along with that user’s security token appended to the end of the password. For example, passwordsREvNGuKHvuIhLTrS.
    8. In the Consumer Key box, enter the Consumer Key for the connected app you created.

    9. In the Consumer Secret box, enter the Consumer Secret for the connected app you created.

      Note: You can add multiple endpoints to a single group. For example, one group could contain three Salesforce endpoints. Another group could contain a Salesforce endpoint, an AWS CloudTrail endpoint, and a Google Cloud endpoint.

  2. Assign the policy to the Tenable Log Correlation Engine Web Query Client.