The Tableau CRM Analytics connector is a Palantir-provided driver for Tableau CRM Analytics.
To create a new Tableau CRM Analytics source, follow the standard setup flow for Palantir-provided drivers, then use the sections below for Tableau CRM Analytics-specific configuration and networking. For the complete property reference, see the official Tableau CRM Analytics driver documentation ↗.
The properties below are mandatory or recommended.
| Property | Required? | Description | Default |
|---|---|---|---|
UseSandbox ↗ | Mandatory | A boolean determining if the connection should be made to a Tableau CRM sandbox account. | FALSE |
AuthScheme ↗ | Recommended | The type of authentication to use when connecting to Tableau CRM. | OAuthJWT |
InitiateOAuth ↗ | Recommended | Specifies the process for obtaining or refreshing the OAuth access token, which maintains user access while an authenticated, authorized user is working. | GETANDREFRESH |
InstanceURL ↗ | Recommended | The URL of the Salesforce instance you want to use. | — |
OAuthClientId ↗ | Recommended | Specifies the client Id that was assigned when the custom OAuth application was created. (Also known as the consumer key.) This ID registers the custom application with the OAuth authorization server. | — |
OAuthClientSecret ↗ | Recommended | Specifies the client secret that was assigned when the custom OAuth application was created. (Also known as the consumer secret). This secret registers the custom application with the OAuth authorization server. | — |
OAuthJWTCert ↗ | Recommended | The JWT Certificate store. | — |
OAuthJWTCertPassword ↗ | Recommended | The password for the OAuth JWT certificate used to access a certificate store that requires a password. If the certificate store does not require a password, leave this property blank. | — |
OAuthJWTCertType ↗ | Recommended | The type of key store containing the JWT Certificate. | PFXBLOB |
OAuthJWTIssuer ↗ | Recommended | The issuer of the Java Web Token. | {OAuthConsumerKey} |
The table below lists the domains that the source needs to be able to access in order to successfully run.
For each domain, add a corresponding egress policy. If the source is hosted on-premises and not directly reachable from Foundry, use an agent proxy egress policy instead; the agent host itself must also be able to reach the listed domains. See using an agent as a proxy for details.
| Domain | Required |
|---|---|
| <InstanceURL> | Always. Returned by Salesforce when authenticating; can be set with InstanceURL property when InitiateOAuth=OFF |
| login.salesforce.com | If UseSandbox=FALSE and Subdomain blank |
| test.salesforce.com | If UseSandbox=TRUE |
| <Subdomain>.cloudforce.com | Subdomain connection property is used for custom branded authentication pages |