Links

Managing Violations & Remediation Guide

Please use this page as a reference on managing violations and to see the options available to you for remediation within Salesforce.
Nightfall supports both manual and automated remediation on Salesforce violations.
Note however, that Salesforce DLP policy violations are not available within the Nightfall dashboard and violations monitoring page.
You may take remediation action via Slack or Email alerts.
Also note that the Redact and delete action is unsupported on "picklist" field types.

Remediating Policy Violations from Slack or Email

Navigate to the Slack or email alerts once policy violations are generated.
Take a remediation action from within the Slack or email alert sent by Nightfall. You will have the option to either Notify or Redact.
An example screenshot of an alert can be seen below, with remediation actions seen at the end of the alert.
See remediation options above

Options:

Acknowledge
Acknowledge and ignore the violation as it is not a high priority.
Redact
Sensitive token is replaced with this message in Salesforce:
“[This content was redacted as it contained potential sensitive information.]”
Delete
In case of attachments, Nightfall deletes the entire file. In case of sensitive tokens within text of a relevant field, the text is replaced with this message in Salesforce.
“[This content was deleted as it contained potential sensitive information.]”
You also have the option to automate these actions, which can be done directly from the Nightfall console, as shown below:
Automated Actions can be set from the policies directly
You should now be all set to start using the Salesforce integration, as well as to manage your alerts as they start to come in.
For any support questions, please feel free to continue to explore the Help Center, specifically the Salesforce FAQs section below, or to reach out to [email protected]: