Step 1: Create a Permission Set
1.1 In Salesforce, log in as an Admin and go to Setup.
1.2 In the Quick Find search bar, type Permission Sets.
1.3 Click New to create a new Permission Set.
1.4 Enter a Label (e.g., Tesorio API Integration).
1.5 For User License, select Salesforce API Integration.
1.5 Click Save.
Step 2: Configure Object Settings for Accounts
2.1 Open the Permission Set you just created.
2.2 Go to Object Settings.
2.3 Find Accounts and click Edit.
2.4 Check the boxes for:
Read
View All Records
View All Fields
2.5 (Optional): If you do not want to share all fields, scroll down and select only the fields you want Tesorio to access.
The following fields are required for the integration:
Account Name
Account Number
Account Owner
Step 3: Configure Object Settings for Contacts
3.1 From the same Object Settings screen (or using the dropdown next to Accounts), select Contacts and click Edit.
3.2 Check the boxes for:
Read
View All Records
View All Fields
3.3 (Optional): If you do not want to share all fields, scroll down and select only the fields you want Tesorio to access.
The following fields are required for the integration:
Account Name
Email
Name
Step 4: Create a Profile
4.1 In Setup, search for Profiles.
4.2 Click New Profile.
4.3 Clone an existing profile, but assign it the license Salesforce Integration.
4.4 Save the profile.
Step 5: Create an Integration User
5.1 In Setup, search for Users and click New User.
5.2 Assign the Profile created in Step 4.
5.3 Enter a valid email address that you can access.
5.4 Save the user.
5.5 After saving, click Reset Password to assign a password to the user.
5.6 On the user info page, scroll down and assign the Permission Set created in Step 1.
Step 6: Add External Client App in Salesforce
A Connected App is a framework that enables an external application to integrate with Salesforce using APIs and standard protocols.
The following steps will lead you through the process of creating a connected app in Salesforce, and then connecting this information to Tesorio to start your data import.
6.1 Navigate to “Setup” in Salesforce
6.2 Search and select “External Client Apps”
6.3 Select “New External Client App”
6.4 Enter the App’s Basic Information
Connected App name: This displays in the “App Manager”
API Name: Only letters, numbers, and underscores are allowed. Spaces are not allowed.
Contact email: for Salesforce to use in case Salesforce wants to contact you or your support team. This will typically be your Salesforce Admin’s email address.
6.5 Configure API (Enable OAuth Settings)
Select the “Enable OAuth Settings” checkbox
Enter a Callback URL
Select OAuth Scope - OAuth scopes define permissions for the connected app, which are granted as tokens after the app is authorized. Select the following items and move them over to the Selected OAuth Scopes column:
“Manage User data via API (API)” and
"Perform requests at any time (refresh_token, offline_access)"
Select the following boxes:
Require Secret for Web Server Flow
Require Secret for Refresh Token Flow
💡 Only check the three settings per the screen shot below. Any other checked boxes may cause issues connecting your Salesforce account to Tesorio.
Click “Save”
Step 7: Gather Required Salesforce Information
7.1 Log in with this user to ensure that you can see Accounts and Contacts per the profile in Step 4.
7.2 Find your Salesforce Domain URL
Navigate to My Domain > My Domain Details > Current My Domain URL in Salesforce.
Copy this URL — you’ll need it to complete the integration.
7.3 Find and Save your Consumer Key and Secret
Navigate to Apps -> External Client Apps -> External Client App Manager
Select the External Client App created previously
Under Settings -> OAuth Settings, click on Consumer Key and Secret
Copy and save both Consumer Key and Consumer Secret — you’ll need these in Tesorio.
