Subject:

This article addresses possible steps to take with SFDC admins when users receive the 'OAuth_Approval_Error_Generic' error when attempting to log into Orum using SalesForce. If the suggested steps below do not resolve, please contact the Orum Support team.

Potential Steps to Resolve:

• Confirm that the minimum permissions related to Orum's operation have been enabled

  • These recommendations are listed in detail below

• For OAuth orgs, please ensure that they have Orum allowed in the 'Connected Apps OAuth Usage' shown below.

  • This may require a user to make an attempt to log into Orum using SalesForce prior to the admin being able to see Orum appear

Orum's Recommended Minimum Permissions - SFDC

Orum leverages OAuth 2 to authenticate to Salesforce. Reps will be directed to Salesforce's website to log in with their credentials, and they'll grant Orum the following permissions:

Access and manage your data (api) - We need this to read your reports and contacts/accounts. We also write back to call activities and contacts/accounts using this permission.

Access your basic information (id, profile, email, address, phone) - We use this to get your id, name, username, and email, so we can ensure you're a valid user accessing our system and so we can keep logs of user activity as per GDPR regulations.

Perform requests on your behalf at any time (refresh_token, offline_access) - After we ask for your permissions once, we don't need to keep re-asking every few hours. Without this, we'd have to keep re-prompting you, and there could be interruptions in the middle of dialing a list. You can always revoke access through Salesforce directly if you no longer want to use Orum.