T4S Server IIS Web App Configuration

Owned by William Boyd
Last updated: Feb 19, 2024
1 min read

To secure the T4S Web Application, the office firewall should only allow external access from the target Salesforce Org domain.
Or from the Orgs cloud IP range

https://help.salesforce.com/s/articleView?id=000384438&type=1

 

  • The T4S Web Site should have SSL Settings → Require SSL

  • The T4S Web Site should have SSL Settings → Client Certificate → Require

    • All - except the Web Apps “CSS“ folder, “IMG“ folder

  • The T4S Web Site can have Authentication set only to “Windows Authentication“

    • All except the Web Apps “CSS“ folder, “IMG“ folder, and “T4SExecuteService.asmx” file which should have “Anonymous“ authentication enabled.