Contact Us 1-800-596-4880

Security

Anypoint API Community Manager uses the same secure hardware, backup, disaster recovery, and business continuity systems as Salesforce and Anypoint Platform.

API Community Manager is part of Anypoint Platform and each member user of the API Community Manager portal has an identity in Anypoint Platform. This identity is also used as their API Community Manager account.

All connections between API Community Manager and related systems, such as Salesforce and Anypoint Exchange, are encrypted with Transport Layer Security (TLS).

During initial configuration, you can set API Community Manager to use a third party single sign-on (SSO) provider, such as Okta, for member connections to both Anypoint Platform and Salesforce systems.

Anypoint Access Management configures Identity Management for single sign-on (SSO) in MuleSoft, and supports LDAP and other standards.

Anypoint API Manager applies policies to APIs for security, and supports OAuth 2.0 and other standards.

If you discover a security vulnerability, follow the steps in How to Report Vulnerabilities or Security Issues on Mule Products to send a report to security@salesforce.com with detailed steps to reproduce the vulnerability.