Skip to content
English
Nexus Website
  • There are no suggestions because the search field is empty.

Salesforce-Nexus Data Exchange Handshake Procedure Using External Client App (OAuth)

Step-by-Step Guide for Configuring the Handshake Between Salesforce (SF) and Engagement Hub for Data Integration using an External Client App.

NOTE: For the handshake procedure using a Connected App, please use this link.

Step 1: Create the Salesforce Integration User

Create a dedicated Salesforce user that Nexus will run as.

👉 Follow this guide: Salesforce Integration User Setup

Step 2: Create the External Client App for Nexus Integration

  1. Go to Setup

  2. Search for External Client Apps

  3. Open External Client App Manager

  4. Click New External Client App

    2026-02-03_14-41-16-1

  5. Enter the External Client App Name (example: Nexus Integration), Contact Email (valid email address) and Distribution State: ‘local’, API Name will auto-populate. Rest other information is optional. Hit ‘Create’.

    2026-02-03_14-43-14

Step 3: Configure OAuth Settings

Within the External Client App:

  1. Expand OAuth Settings and check for ‘Enable OAuth’
    2026-02-03_14-46-55

  2. In App Settings:

    1. Add Callback URLs
      Add both of the following:       
      https://w17.briefingedge.com/MVC2/Admin/SFDC/Authenticate?sfdcInstance=1
      https://w17.briefingedge.com/MVC2/Account/OauthSuccess

      If you have multiple Salesforce instances, confirm the correct sfdcInstance value with Nexus.

  3. Add OAuth Scopes

    1. Add:
      api
      web
      refresh_token, offline_access

      2026-02-03_14-53-52

Step 4: Enable Client Credentials Flow

  1. In the Flow Enablement section, enable Client Credentials Flow

  2. In Security section:

    1. Disable ‘Require Proof Key for Code Exchange (PKCE) extension for Supported Authorization Flows’.

    2. Disable ‘Require secret for Web Server Flow’.

    3. Disable ‘Require secret for Refresh Token Flow’.

  3. Set Run As User to the Salesforce Integration User created in Step 1

    1. Within External Client App: Edit ‘OAuth policies’

      2026-02-03_14-59-49
    2. Enable Client Credentials Flow
    3. Enter the Username of Salesforce Integration User created in Step 1 

      2026-02-03_15-01-07
  4. Under App Authorization: ‘Refresh Token Policy’ and ‘IP Relaxation’ can be set.

  5. Hit ‘Save’

Step 5: Retrieve Client ID and Client Secret

From the External Client App, under OAuth Settings retrieve:

  • Consumer Key

  • Consumer Secret

    2026-02-03_15-05-19

Step 6: Retrieve Org Details

  1. Go to Setup → Company Information

  2. Copy:

    • Salesforce Organization ID

  3. Copy your My Domain / Custom Domain
    (example: mydomain.my.salesforce.com)

Step 7: (Optional) Validate Credentials

You can validate the connection using a token request through Postman.

POST
https://<your-custom-domain>/services/oauth2/token

Body (x-www-form-urlencoded):
grant_type=client_credentials
client_id=<Consumer Key>
client_secret=<Consumer Secret>

A successful response returns an access_token.

Step 8: Send Details to Nexus

Provide Nexus with:

  • Consumer Key

  • Consumer Secret

  • Salesforce Org ID

  • Salesforce Custom Domain (example: mydomain.my.salesforce.com)


Step 9: Almost Done!

The Salesforce team will be informed once the Nexus team completes the integration.