Connecting Salesforce Online to Amazon Q Business
Salesforce is a customer relationship management (CRM) tool for managing support, sales, and marketing teams. You can connect Salesforce Online instance to Amazon Q Business—using either the AWS Management Console or the CreateDataSource API—and create an Amazon Q web experience.
The Amazon Q Salesforce Online connector supports the following Salesforce Online editions: Developer Edition and Enterprise Edition.
Topics
- Known limitations for the Salesforce Online connector
- Salesforce Online connector overview
- Prerequisites for connecting Amazon Q Business to Salesforce Online
- Setting up Salesforce Online for connecting to Amazon Q Business
- Connecting Amazon Q Business to Salesforce Online using the console
- Connecting Amazon Q Business to Salesforce using APIs
- How Amazon Q Business connector crawls Salesforce ACLs
- Salesforce Online data source connector field mappings
- IAM role for Salesforce Online connector
- Troubleshooting your Salesforce Online connector
Learn more
-
For an overview of the Amazon Q web experience creation process using IAM Identity Center, see Configuring an application using IAM Identity Center.
-
For an overview of the Amazon Q web experience creation process using AWS Identity and Access Management, see Configuring an application using IAM.
-
For an overview of connector features, see Data source connector concepts.
-
For information about connector configuration best practices, see Connector configuration best practices.
Known limitations for the Salesforce Online connector
The Salesforce Online connector has the following known limitations:
-
While the Salesforce Online connector respects base access controls for Salesforce Online entities, it does not support explicit deny permissions configured in Salesforce Online. Users who have access to an entity through base access controls would still have access to those entities in Amazon Q Business - even if they have been added to the explicit deny list in Salesforce.
-
The Salesforce Online connector does not support field-level access control. If a field-level access control configuration is detected within an entity, Amazon Q Business will utilize the parent level security setting.
-
The Salesforce Online connector does not offer the ability to perform incremental syncs based on new, modified, or deleted files. At this time, it can perform only full syncs.
-
The Salesforce Online API doesn't provide the status of deleted Group, Partner, Profile, and User entities. So, the Salesforce Online connector can't retrieve this information.
-
The Salesforce Online API doesn't provide the status of modified Attachment titles (Lightning Version). So, the Salesforce Online connector can't retrieve this information.
-
The Salesforce Online connector supports custom field mappings only for the following entities: Account, Campaign, Contact, Contract, Case, Product Lead, Pricebook, and CustomEntity.
-
The Salesforce Online API does not provide ACL information for documents with shared access types.
-
By default, Salesforce Online Developer has a maximum limit of 15000 total calls per 24 hour period. If a request exceeds this limit, the API returns a
REQUEST_LIMIT_EXCEEDEDerror. -
Because Amazon Q Business uses email address as unique identifiers, each user must have a unique email address.
