Salesforce Monitoring with Tripwire Configuration Manager
You may already know that Tripwire Configuration Manager can audit your cloud service provider accounts like AWS, Azure, and Google Cloud Platform, but did you know it also has capabilities to monitor other cloud based software services such as Salesforce?
Salesforce is a popular customer relationship management (CRM) service with rich configuration options that could lead to unintended risks if it is improperly configured. Tripwire has created a security policy within Configuration Manager which can check settings in your Salesforce account for potential risks or exposures and even auto-remediate many common misconfigurations.
To see how easy it is to configure, let’s review the basics of scanning a Salesforce account with Tripwire Configuration Manager. If you aren’t already familiar with the Configuration Manager, now is the perfect time to set up a Configuration Manager free trial to follow along.
Most of the steps shown will be similar across the different supported cloud account types. While the specific configuration details may vary, the general workflow will be the same whether you are scanning AWS, Salesforce, or any other supported cloud service.
Salesforce Monitoring
Begin by creating a new cloud account entry within Configuration Manager. On the left side of the Manager window, look for the Environment heading. Below that is the Cloud Accounts section where you can select the New button.
Select Salesforce in the Choose a Cloud Provider input field to expand the configuration options available for the Salesforce account type.
In order for Configuration Manager to evaluate the security-related settings in your Salesforce account, you will need to provide details of the account to use for scanning. You will need to provide a Salesforce connected app consumer key, a user ID, and the key used for the connected app. Configuration Manager can generate a key pair to use with a new connected app, or you may provide an existing one.
Steps for creating a Salesforce-connected app with appropriate permissions and for gathering the needed configuration values are provided in the getting started help documentation. This can be found in the left-hand navigation menu within Configuration Manager.
Once your Salesforce cloud account is configured, you will be prompted to schedule a scan for the new account. You can also create and edit scheduled scans on the Schedules tab of the Cloud Compliance dashboard.
On the new schedule page, you can choose Cloud Accounts to be scanned, which policies to evaluate against, and the repeating nature of the scan.
In this case, choose the newly created Salesforce account in the Account Selection section and the Salesforce – Tripwire v1.0 Policy in the Evaluation section. You can choose to scan just once or on a recurring schedule.
Ensure the “Is Enabled” selection is checked, and save your new schedule.
If you are ready to scan now, you can also select the schedule on the Schedules page and choose Start to run immediately. Otherwise, you can simply await the scheduled time for the scan to run.
When the scan completes, the Cloud Compliance dashboard will show the results of your Salesforce account evaluated against Tripwire recommended settings for Salesforce.
This fast and simple setup can secure your Salesforce account from dangerous security misconfigurations. Try Tripwire Configuration Manager free for 30 days and discover how Tripwire can keep your cloud accounts compliant with best practice configurations by automatically remediating and enforcing common secure configurations.
