The Certinia connector is a Palantir-provided driver for Certinia.
To create a new Certinia source, follow the standard setup flow for Palantir-provided drivers, then use the sections below for Certinia-specific configuration and networking. For the complete property reference, see the official Certinia driver documentation ↗.
The properties below are mandatory or recommended.
| Property | Required? | Description | Default |
|---|---|---|---|
AuthScheme ↗ | Mandatory | The type of authentication to use when connecting to Certinia. | OAuth |
APIVersion ↗ | Recommended | The version of the Certinia API used. | 62.0 |
InitiateOAuth ↗ | Recommended | Specifies the process for obtaining or refreshing the OAuth access token, which maintains user access while an authenticated, authorized user is working. | REFRESH |
LoginURL ↗ | Recommended | URL to the Certinia server used for logging in. | https://login.salesforce.com/services/Soap/c/58.0 |
OAuthClientId ↗ | Recommended | Specifies the client Id that was assigned when the custom OAuth application was created. (Also known as the consumer key.) This ID registers the custom application with the OAuth authorization server. | — |
OAuthClientSecret ↗ | Recommended | Specifies the client secret that was assigned when the custom OAuth application was created. (Also known as the consumer secret). This secret registers the custom application with the OAuth authorization server. | — |
Password ↗ | Recommended | Specifies the password of the authenticating user account. | — |
SecurityToken ↗ | Recommended | The security token used to authenticate access to the Certinia account. | — |
User ↗ | Recommended | Specifies the user ID of the authenticating Certinia user account. | — |
UseSandbox ↗ | Recommended | A boolean determining if the connection should be made to a Salesforce sandbox account. | FALSE |
The table below lists the domains that the source needs to be able to access in order to successfully run.
For each domain, add a corresponding egress policy. If the source is hosted on-premises and not directly reachable from Foundry, use an agent proxy egress policy instead; the agent host itself must also be able to reach the listed domains. See using an agent as a proxy for details.
| Domain | Required |
|---|---|
| test.salesforce.com | If UseSandbox=TRUE |
| <Site>.my.salesforce.com | Returned by Salesforce when authenticating |
| login.salesforce.com | Default LoginURL, overridden by LoginURL property. LoginURL used when AuthScheme=Basic, OAuth, OAuthPassword, OAuthJWT, OAuthPKCE |
| <LoginURL> | Used in place of login.salesforce.com |
| <SSOLoginURL> | If AuthScheme=Okta, PingFederate, ADFS |
| <Subdomain>.onelogin.com | If AuthScheme=OneLogin. <Subdomain> is set in SSOProperties |
| <SSOExchangeURL> | If AuthScheme=Okta, PingFederate, ADFS, OneLogin, AzureAD |
| <Resource> | If AuthScheme=AzureAD. <Resource> is set in SSOProperties |
| <RelyingParty> | If AuthScheme=ADFS. <RelyingParty> set in SSOProperties |