What Salesforce integration architecture and permissions do you recommend?

For Salesforce integration, we recommend using an integration user.

Recommended Permission Set

The integration user should have a permission set that includes the following Salesforce scopes:

• api_token

• refresh_token

• offline_access

This configuration provides the minimal recommended permissions needed for our out-of-the-box Salesforce CRM integration to function properly while maintaining security best practices through a dedicated service user account.