![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(192, 7.000000000000001%, 28%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EAC%3C/text%3E%3C/svg%3E)
Microsoft Security | Microsoft Purview
A unified data governance solution that helps manage, protect, and discover data across your organization
Hi Alvaro Costa,
Thanks for your question on the Microsoft Q&A portal!
You're absolutely right to raise this concern Microsoft Purview’s Salesforce connector currently uses the OAuth Username-Password flow for authentication, which Salesforce itself discourages due to security risks and has even blocked by default in orgs created from June 10, 2023 onward.
As of now, the official Microsoft documentation does not list support for more secure alternatives like OAuth 2.0 Client Credentials or JWT Bearer flow for the Purview Salesforce connector, even though those methods are recommended by Salesforce and supported in other integration tools.
To help me give you the most accurate and up-to-date guidance, could you confirm:
- Are you using a newer Salesforce org (created after June 10, 2023)?
- Have you explored using Azure Data Factory as an intermediary, since it supports broader Salesforce auth options and integrates with Purview?
I’ll double-check with internal resources if there’s any upcoming support for alternative auth methods in Purview, but today, the connector appears limited to the username-password OAuth flow.
Thanks
Pratyush