The Certinia connector is a Palantir-provided driver connector. The official documentation for this driver can be found here ↗.
Networking
If using an agent connection, the agent must be allowed to connect to the system you choose. This means that the agent must be able to reach the destination IP address, and the destination system must be configured to allow connections from the agent.
If using a direct connection, be sure to add the following egress policies to the connector:
Domain
Required
test.salesforce.com
Only if UseSandbox=TRUE
<Site>.my.salesforce.com
Only Returned by Salesforce when authenticating
login.salesforce.com
Only Default LoginURL, overriden by LoginURL property. LoginURL used when AuthScheme=Basic, OAuth, OAuthPassword, OAuthJWT, OAuthPKCE
<LoginURL>
Only Used in place of login.salesforce.com
<SSOLoginURL>
Only if AuthScheme=Okta, PingFederate, ADFS
<Subdomain>.onelogin.com
Only if AuthScheme=OneLogin. <Subdomain> is set in SSOProperties
<SSOExchangeURL>
Only if AuthScheme=Okta, PingFederate, ADFS, OneLogin, AzureAD
<Resource>
Only if AuthScheme=AzureAD. <Resource> is set in SSOProperties
<RelyingParty>
Only if AuthScheme=ADFS. <RelyingParty> set in SSOProperties