Security Updates in Summer ’17 Release


Calling all Salesforce Admins! Let’s take a minute to get real about security. As a Salesforce Admin, security is an essential part of your job, just like it is for us — in fact, security is our number 1 priority at Salesforce. Now that the Summer ’17 release is here, there are even more ways for Admins to become Security Ambassadors for their organizations! Let’s dig into some of our security updates in Summer ’17 that will help you stand out as a security-minded Admin.

Embedded logins for customers & more

We talked about the enhanced security value of Lightning Login in Spring ’17. Now with our new Embedded Login feature, Salesforce authentication extends to your websites, making it possible for Admins to require customers to log in to access web pages. To enable this, your web developers can easily add login capabilities to the website with just a few lines of HTML. Bonus: this feature works for communities created with either our Communities or Salesforce Identity products!

Are your users tired of getting logged out due to expired sessions? They’ll be happy to know that starting with Summer ’17, users can now enable browser notifications so that when their session is about to expire, a browser notification pops up in the foreground! Wait, there’s more…

In addition, you now have the option to require identity verification for 2FA and email address changes. We’ve also added Single Logout (SLO) as a beta feature, enabling you to export profile definitions to reduce compliance burden, as well as the ability to track blocked apps more easily by enabling the API whitelisting feature.

Updates to Security Health Check

We’ve talked about how Security Health Check can make you a security champion for your company and allows you to keep tabs on your org’s security settings even as business needs change. Health Check does this by measuring your security settings against our suggested baseline standards. The Health Check page now has four risk categories and new names for risk statuses, so it’s even easier to use.

In addition to those updates, we’ve introduced a cool new feature that allows you to manage the unique needs of your company by importing custom baseline standards to Health Check. Admins have the ability to customize their own security baseline to compare your org’s security settings with your individual industry standards. This change applies to both Lightning Experience and Salesforce Classic, so have at it Admins!

Can’t wait to become a security rockstar? Check out some additional security content for Admins below.

More resources

light blue background with navy text "Security Center" and underneath Astro is holding a large key

Security Center: A Single View Into Your Security Controls Across All Your Orgs

In a world with heightened security awareness and digital risks at every corner, Security Center makes it easier than ever to truly understand your Salesforce security posture. With native support for both single and multi-org environments, Security Center provides a single-pane view of the security configuration and controls in place across your entire Salesforce implementation. […]


Multi-Factor Authentication: As Easy as Washing Your Hands!

How many times a day do you wash your hands? If you think this seems like an absurd question, and totally unrelated to security, you’re wrong… kind of. How are security and health connected? Both require good personal hygiene, a concept as familiar as washing your hands or (you guessed it!) brushing your teeth. So, […]


Critical Update: Ensure Users Have Access to @AuraEnabled Methods

Winter ’21 is just around the corner and will include a critical update that could impact any page leveraging a custom component. As a Salesforce Admin, you’ve probably noticed this alert in your Security Alerts (Setup | Security | Security Alerts) and might have overlooked this. But because it involves permissions and user management, we […]


Have an Idea for a Story?

We are all about the community and sharing ideas.
Do you have an interesting idea or useful tip that you want to share?