Managing Violations & Remediation Guide
Please use this page as a reference on managing violations and to see the options available to you for remediation within Salesforce.
Nightfall supports both manual and automated remediation on Salesforce violations.
Note however, that Salesforce DLP policy violations are not available within the Nightfall dashboard and violations monitoring page.
You may take remediation action via Slack or Email alerts.
Also note that the Redact and delete action is unsupported on "picklist" field types.
Navigate to the Slack or email alerts once policy violations are generated.
Take a remediation action from within the Slack or email alert sent by Nightfall. You will have the option to either Notify or Redact.
An example screenshot of an alert can be seen below, with remediation actions seen at the end of the alert.
See remediation options above
Acknowledge and ignore the violation as it is not a high priority.
Sensitive token is replaced with this message in Salesforce:
“[This content was redacted as it contained potential sensitive information.]”
In case of attachments, Nightfall deletes the entire file. In case of sensitive tokens within text of a relevant field, the text is replaced with this message in Salesforce.
“[This content was deleted as it contained potential sensitive information.]”
You also have the option to automate these actions, which can be done directly from the Nightfall console, as shown below:
Automated Actions can be set from the policies directly
You should now be all set to start using the Salesforce integration, as well as to manage your alerts as they start to come in.