# Configure Scope for Salesforce

The Scope stage allows you to select the Salesforce org in which the policy can be created. 

To configure Policy Scope:

1. Click **+ Add Org** and select a Salesforce org.
2. Select the Salesforce object that must be scanned by Nightfall. Currently, Nightfall only displays the standard Salesforce objects.
3. Select the check box for the Salesforce fields that must be scanned by Nightfall. Nightfall displays a list of Salesforce fields (from the selected Salesforce Object) that are vulnerable to data leaks (including custom fields). This includes fields whose data type is Number, Name, Description, and so on. 

{% hint style="info" %}
You must select the **Select all** check box to include all the displayed fields for scanning.
{% endhint %}

4. (Optional) Click the **<-** arrow to navigate back to the Object list, select another object, and subsequently the fields of the objects to be scanned.&#x20;

You can view the number of Objects and fields selected for scanning in the top right corner. See [High Risk Objects](/salesforce/policies/high-risk-salesforce-objects-and-fields-for-data-loss-prevention-dlp.md) for recommendations on objects and fields to be scanned.&#x20;

<figure><img src="/files/PHOgfnDhqraiOtBSCAP0" alt=""><figcaption></figcaption></figure>

Certainly! Here's a more concise version with grammatical accuracy and short sentences:

## **Apply Filters**

After selecting Salesforce Objects and Fields, you can refine your policy scope. Filters allow you to scan files owned or shared by specific users, groups, or profile members. You can also exclude files owned or shared by them.

Filters are optional. If you want to scan all users, groups, and profiles, you can skip this step.

To apply a filter, click **Add Filter** and select an option. Nightfall provides the following filters:

### **Internal Users**

Scan files owned or shared by specific internal users. You can also exclude files owned or shared by them.

### **Internal Groups**

Scan files owned or shared by specific internal groups. You can also exclude scanning of files owned or shared by members of internal groups.

**Note**: This filter cannot be used with the Salesforce Profiles filter.

### **Salesforce Profiles**

Scan files owned or shared by members with specific Salesforce profiles.&#x20;

**Note**: This filter cannot be used with the Internal Groups filter.


---

# Agent Instructions: Querying This Documentation

If you need additional information that is not directly available in this page, you can query the documentation dynamically by asking a question.

Perform an HTTP GET request on the current page URL with the `ask` query parameter:

```
GET https://help.nightfall.ai/salesforce/policies/scope.md?ask=<question>
```

The question should be specific, self-contained, and written in natural language.
The response will contain a direct answer to the question and relevant excerpts and sources from the documentation.

Use this mechanism when the answer is not explicitly present in the current page, you need clarification or additional context, or you want to retrieve related documentation sections.