Merge pull request #5713 from DeCohen/WI502000-mda-salesforce-connection

aditisrivastava07 · web-flow · commit ac57cc45db46 · 2025-12-01T10:34:16.000+05:30
Wi502000 mda salesforce connection
diff --git a/defender-for-cloud-apps/protect-salesforce.md b/defender-for-cloud-apps/protect-salesforce.md
@@ -26,6 +26,13 @@ Connecting Salesforce to Defender for Cloud Apps gives you improved insights int
 - Ransomware
 - Unmanaged bring your own device (BYOD)
 
+
+### Prerequisites
+
+- Install and authorize the Salesforce Connected App in the target Salesforce org before you start the connection process. Salesforce enforces usage restrictions on Connected Apps. For more information, see:[Prepare for Connected App Usage Restrictions Change](https://help.salesforce.com/s/articleView?id=005132365&type=1)
+
+- Assign the **Approve Uninstalled Connected Apps** permission to the Salesforce service account used to connect Microsoft Defender for Cloud Apps. Salesforce requires this permission to connect third-party apps via OAuth.
+
 ## How Defender for Cloud Apps helps to protect your environment
 
 - [Detect cloud threats, compromised accounts, and malicious insiders](best-practices.md#detect-cloud-threats-compromised-accounts-malicious-insiders-and-ransomware)
