Snaps in the Salesforce Snap Pack that use the Salesforce Mutual Authentication account must configure the setup in the Salesforce portal to function without any issue. For enabling mutual authentication in Salesforce, follow the steps below.
Navigate to Go to Setup > Security Controls > Certificate and Key Management. The following page is displayed.
By default, you cannot view the Mutual Authentication Certificate section. In such case, you need to raise a request to the Salesforce Support team to enable this section.
Once this section is enabled, you need a CA signed certificate to upload in this section. See “Create CA signed certificate” for more information.
Once you are ready with a CA signed certificate, click Upload Mutual Authentication Certificate.
Provide a label and name for your certificate.
Click Choose File to locate the certificate.
Click Save the upload.
Create a custom profile to enable the “Enforce SSL/TLS Mutual Authentication” user permission for an
API Only
user.
This API Only
user configures the API client to connect on port 8443 to present the signed client certificate. If you are using a certificate chain, the client certificate must include any intermediate certificates in the chain when contacting port 8443.