Security Updates in Summer ’17 Release


Calling all Salesforce Admins! Let’s take a minute to get real about security. As a Salesforce Admin, security is an essential part of your job, just like it is for us — in fact, security is our number 1 priority at Salesforce. Now that the Summer ’17 release is here, there are even more ways for Admins to become Security Ambassadors for their organizations! Let’s dig into some of our security updates in Summer ’17 that will help you stand out as a security-minded Admin.

Embedded logins for customers & more

We talked about the enhanced security value of Lightning Login in Spring ’17. Now with our new Embedded Login feature, Salesforce authentication extends to your websites, making it possible for Admins to require customers to log in to access web pages. To enable this, your web developers can easily add login capabilities to the website with just a few lines of HTML. Bonus: this feature works for communities created with either our Communities or Salesforce Identity products!

Are your users tired of getting logged out due to expired sessions? They’ll be happy to know that starting with Summer ’17, users can now enable browser notifications so that when their session is about to expire, a browser notification pops up in the foreground! Wait, there’s more…

In addition, you now have the option to require identity verification for 2FA and email address changes. We’ve also added Single Logout (SLO) as a beta feature, enabling you to export profile definitions to reduce compliance burden, as well as the ability to track blocked apps more easily by enabling the API whitelisting feature.

Updates to Security Health Check

We’ve talked about how Security Health Check can make you a security champion for your company and allows you to keep tabs on your org’s security settings even as business needs change. Health Check does this by measuring your security settings against our suggested baseline standards. The Health Check page now has four risk categories and new names for risk statuses, so it’s even easier to use.

In addition to those updates, we’ve introduced a cool new feature that allows you to manage the unique needs of your company by importing custom baseline standards to Health Check. Admins have the ability to customize their own security baseline to compare your org’s security settings with your individual industry standards. This change applies to both Lightning Experience and Salesforce Classic, so have at it Admins!

Can’t wait to become a security rockstar? Check out some additional security content for Admins below.

More resources

Get Ready for MFA: Tips to Help Users Recover Access

Get Ready for Multi-Factor Authentication: Tips to Help Users Recover Access

As an #AwesomeAdmin, part of your role is managing and maintaining user access. So when multi-factor authentication (MFA) goes into effect for your org–whether you’re turning it on yourself or waiting for Salesforce to auto-enable it for you–it’s important to know how to resolve MFA-related access issues that users may encounter. Access issues typically fall […]

Permissions Updates

Permissions Updates | Learn MOAR Spring ’23

Follow and complete a Learn MOAR Spring ’23 trailmix for admins or developers by March 31, 2023, 11:59 p.m. PT to earn a special community badge and be automatically entered for a chance to win one of five $200 USD Salesforce Certification vouchers. Restrictions apply. Learn how to participate and review the Official Rules by […]

Release Highlights for Admins

Release Highlights for Admins | Learn MOAR Spring ’23

Join us and discover the new Spring ’23 release features for admins and developers. We know each release brings with it lots of amazing new functionality and there can be a lot to digest. With Learn MOAR, we’re packaging the release and bringing it to you in an easy-to-digest format with blogs, videos, and more. […]


Have an Idea for a Story?

We are all about the community and sharing ideas.
Do you have an interesting idea or useful tip that you want to share?