What is an Integration User?

Integration Users are service accounts created specifically for integrations, separate from human user accounts.

Why use dedicated integration users?

Dedicated integration users isolate integration access from human user access, improving both security and operational stability.

What's a best practice for integration user permissions?

Least privilege is the security best practice: grant the minimum permissions needed for the integration to function.

Integration User

Platform🟢 Beginner

Definition

A dedicated Salesforce user account created specifically for API integrations with external systems, typically assigned an Integration license and configured with the minimum permissions required for the integration's data access needs.

Real-World Example

At their company, an architect at Skyline Consulting leverages Integration User to extend their Salesforce implementation to meet growing business demands. Integration User provides the additional capability they need without requiring a separate third-party system, keeping everything within the trusted Salesforce ecosystem and reducing integration complexity.

Why Integration User Matters

An Integration User is a dedicated Salesforce user account created specifically for API integrations with external systems. Rather than using a real human user's credentials (which is fragile and a security risk), the integration uses a service account configured with exactly the permissions it needs for its work. Integration users are typically assigned an Integration User license (a special license type for integrations, often included in the org) and configured with a custom profile granting only the necessary object and field permissions.

Using dedicated integration users is a security and operational best practice because it isolates integration access from human user access. If a human user leaves the company, their account can be deactivated without breaking integrations. If an integration is compromised, only its specific permissions are at risk. Salesforce has tightened integration user requirements in recent releases, making the dedicated Integration User license the recommended approach. Mature integrations follow least privilege carefully, granting only the access the integration actually needs.

How Organizations Use Integration User

•TerraForm Tech — Uses a dedicated integration user for each external system integration, with custom profiles granting only the necessary permissions.
•NovaScale — Deactivated several human user-based integrations after a leaver caused production outages, replacing them with proper integration users.
•CodeBridge — Audits integration user permissions quarterly to ensure least privilege is maintained as integrations evolve.