About this document
This document provides a step-by-step guide on how to get started with the legacy package supporting the trigger-based replication model.
Before installing the package, you need to check and enable the following prerequisites:
- This is a required feature for the package installation. It is used in the InCountry debugging tool.
- Enable Orders only if you need to regulate this object.
- Enhanced Email should be enabled at all times and for all regulation models. This functionality is used by the InCountry platform to send system emails.
For the details on package installation, please 📃 check our documentation.
Log in to your Salesforce instance.
Create the installation URL for the InCountry Data Residency for Salesforce package by combining the following:
Address of your Salesforce instance:
Package URL path:
Install the InCountry Data Residency for Salesforce package for Salesforce administrators.
Contact your Technical Account Manager to get the installation URL to the latest package version.
The resulting URL address for package installation should be similar to the following pattern:
Assigning permission sets
For the details on management of permission sets, please 📃 check our documentation.
Navigate to Setup > Administration > Users > Permission Sets.
InCountry Adminpermission sets to appropriate Salesforce users.
Enabling Identity Provider
If you encounter the Data Not Available error, please check whether the Identity Provider is enabled in your Salesforce organization.
Navigate to Setup > Settings > Identity > Identity Provider.
Click Enable Identity Provider. This action will generate a self-signed certificate.
Click the same button one more time.
Select the recently created self-signed certificate and click Save.
Upon confirmation in the prompted dialog box, you will see details of the identity provider setup.
Now you can proceed with the registration of the certificate.
Please do not share details of the identity provider setup with InCountry or any third party.
Configuring Remote Site settings
Navigate to Setup > Security > Remote Site Settings.
Click New Remote Site.
Enter the provided REST endpoint (for example,
https://sa-restapi-mt-01.api.incountry.io/) into the Remote Site URL box.
Please consider that the REST endpoint differs depending on the country where your regulated data is stored.
Setting up OAuth2 authentication and authorization
Before configuring OAuth2 authorization for the package, you need to create an account on the InCountry Portal.
Please follow these steps:
Create an integration of the Salesforce type.
Configure an authentication provider for a Salesforce organization.
Create a custom metadata type for a REST API endpoint.
Register named credentials in a Salesforce organization.
Configure a custom metadata type for a Salesforce organization.
Configuring data regulation policies
For the details on configuration of data regulation policies, please 📃 check our documentation.
Select the Salesforce object.
Select the data regulation policy.
Select the restriction type for the Salesforce object.
Specify the country for storing regulated data of the current Salesforce object.
Configuring protected fields
For the details on the configuration of protected fields, please 📃 check our documentation.
Select the Salesforce object.
Click Add Field.
Select the field that will be treated as protected, select the hash function, and adjust optional parameters if needed.
Create Apex triggers for each Salesforce object having protected fields with regulated data.
Add the Poller component on Detail View.
Using the application
Once you have configured the application correctly, you can proceed with the management of records containing regulated data in Salesforce.
If you use the replication data regulation policy, your user experience will not differ from the native user experience in Salesforce.