Configuring Authorization Providers: LinkedIn
The Authorization Provider page allows staff users to configure alternate means to register for or log in to a Community Portal.
Salesforce will only allow one email per user. Therefore, a unique email must be used for each federated login. Otherwise an Error page will display notifying the user that the authentication attempt has failed.
Enable the Is Default checkbox on the Community Portal's default Site.
The System will not automatically assign a default Site, even if there is only one Site related to the Community Portal.
Configure LinkedIn as an Authorized Provider:
Navigate to https://developer.linkedin.com.
Click the My Apps tab in the menu bar.
Click Create Application.
Populate the fields to register a new application:
Application Logo URL
Click Submit when done.
Check the r_emailaddress and r_basicprofile checkboxes.
Open up a new tab and navigate to Salesforce environment.
The next step will be to create an Authorized Provider in Salesforce. Click Setup.
Under the Administer heading, expand Security Controls and click Auth. Providers.
On the Auth. Providers page, click the New button.
From the Provider Type picklist, select LinkedIn.
Populate the desired fields below:
Name- Enter a unique, identifying name for the Auth. Provider.
URL Suffix- Enter a value to use in the callback URL. This field will default to the value entered in the Name field.
Consumer Key- Paste the Client ID returned in earlier in the process.
Consumer Secret- Paste the Client Secret returned in earlier in the process.
Default Scopes- Enter the level of access that this user has to that profile, i.e., read-only access or profile email openid. Otherwise, the field will default to Salesforce.
Custom Error URL- Enter a URL to display a custom error message.
Custom Logout URL- Enter a URL to display a logout error message
Registration Handler- Enter "LinkedInAuthRegHandler" into the lookup.
Execute Registration As- Enter the name of a full user in the system associated to a Role. Cannot be a Community Portal User.
Portal- Leave as "None."
Icon URL- Enter a secure URL to the icon, or choose from among Google's sample icons.
The Auth. Provider record populates the Client Configuration fields:
Test-Only Initialization URL
Single Sign-On Initialization URL
Existing User Linking URL
OAuth-Only Initialization URL
Copy the Callback URL and navigate to the LinkedIn Developers Console tab in the browser window.
Paste the Callback URL into the Authorized Redirect URL field and click Add.
Next step is to Enable Social Login. Click Setup.
In the Quick Find Field, search Sites.
Under the Digital Experiences heading, select All Sites.
Click Workspaces link next to the intended Community Portal. This will open a new Community Portal Workspaces tab.
The the My Workspaces section, click Administration.
From the left nav, click Login & Registration.
From the Login & Registration page, check the Google checkbox and click Save.
Open a new tab, navigate to the Communities app in Salesforce, and select the Sites tab.
Navigate to the Community Portal's related Site record and click Edit.
Select the Auth Provider Default Account using the lookup.
Copy the Single Sign-On Initialization URL generated during the Auth. Provider configuration and paste it into the LinkedIn Login URL field.
Authenticated and unauthenticated users can log in to the Community Portal through their LinkedIn accounts.