Astro and Cloudy on a mountain next to text that says "#4 Security Center Enhancements."

Learn MOAR in Winter ’22 with Security Center Enhancements ?


Follow and complete a Learn MOAR Winter ’22 trailmix for admins or developers by October 31 to earn a special community badge and enter for a chance to win one of five $200 USD Salesforce Certification vouchers. Restrictions apply. Learn how to participate and review the Official Rules by visiting the Trailhead Quests page.

Security Center updates

With Trust as our #1 value, the security and protection of the information you store in Salesforce is always top of mind around here. As an admin, you already know how important it is to learn about security-related issues as quickly as possible so you can address them when they arise.

Security Center enables admins to simplify security, compliance, and data governance, especially in a multi-org world. With Security Center, you can view key security metrics across all of your orgs in one place, such as Security Health Check scores, how users are logging in, and even which permissions your users have. You can easily analyze trends over time, and gain insights to quickly identify and mitigate security risks.

If you’re a Security Center user, then you’ve already learned how great it is to have all of the security information gathered for all of your orgs, presented all in one place. But you might forget to come in and check on your security posture regularly (we’re all busy building awesome, new stuff on Salesforce for our users — I get it!). That’s why, in Winter ’22, we’ve added configurable security alerts in Security Center. Now, you can visit the new Alert Settings tab in the Security Center app and create your own email or in-app alerts based on the security information Security Center collects for you!

Here are a couple of examples of alerts you might want for your orgs:

1. Let’s say your company doesn’t allow users to log in directly to Salesforce with a username and password; you require either multi-factor authentication (MFA) or single sign-on (SSO) to be used for all logins. No problem! Create a security alert to let you know when users log in with a Salesforce username and password. If it gets triggered, you’ll get an email and/or in-app notification. That way, you can quickly reach out to the user and update any configuration you might need to ensure it doesn’t happen going forward.

How to set up a security alert.

2. Let’s say you want to make sure that only approved apps get installed in any of your company’s orgs. You got it! Just create another alert. Set the Metric to Managed Packages, and the Operator to “increases,” and you’ll be notified any time a new managed package gets installed in any of your orgs. Optionally, feel free to do the same for unmanaged packages and connected apps!

How to set an alert so that only approved apps get installed in any of your company's orgs.

3. Finally, if you’re an Event Monitoring customer, we’re excited to announce that we’ve integrated the powerful Threat Detection capabilities from Event Monitoring into Security Center. Don’t you sometimes wish you had a central place to monitor what’s going on, especially if you have multiple orgs (even if that’s just sandboxes in addition to your Production org)? That’s why we’re here. Now, in Security Center, the four most requested threats detected by Event Monitoring (Report Anomaly, API Anomaly, Session Hijacking, and Credential Stuffing) are all captured and presented in an intuitive UI with an easy-to-understand timeline view, including all the details you need to understand what’s happened and take action quickly!

Example of threat detection settings.

So, now you’ve seen how you can easily centralize Threat Detection information for all of your Salesforce orgs in one place. You’ve also learned how easy it can be to allow Security Center to monitor your security posture and notify you when things don’t seem right.

On behalf of the entire Security Center team, we really hope you enjoy these features! We’re hard at work for the next batch of exciting things around here, so stay tuned for more in the next release and visit the Security Center website to learn more!

Don’t forget to watch the Winter ’22 Admin Preview on September 10 during Release Readiness Live to see demos of a subset of these new, exciting features. And be sure to check out the Learn MOAR Winter ’22 for Admins Trailmix and follow along on the blog this week for more Learn MOAR!

More Learn MOAR

Introducing Files and Attachments Backup in Salesforce Backup.

Introducing Files and Attachments Backup in Salesforce Backup | Spring ’24

What is Salesforce Backup? Salesforce Backup is our native backup and restore solution designed to safeguard customers’ valuable data. Geared for user-friendly operation, Salesforce Backup automatically creates backup copies of business data, empowering organizations to effortlessly restore data and recover from even the most challenging scenarios. With the Spring ’24 Release, we’re thrilled to announce […]

Introducing Salesforce Backup.

Introducing Salesforce Backup: Your Data’s Safety Net

What is Salesforce Backup? On August 15, Salesforce announced the general availability of Salesforce Backup, a native backup and restore solution designed to safeguard customers’ valuable data. Built with ease of use in mind, Salesforce Backup automatically creates backup copies of business data, empowering any organization to restore data and recover from even the worst-case […]

Permissions Updates

Permissions Updates | Learn MOAR Spring ’23

Author’s note: You likely noticed that the official announcement about the End of Life (EOL) of permissions on profiles was never sent out. We’ve decided to no longer enforce the End of Life of permissions on profiles for Spring ’26. We realized, thanks to all the Awesome Admin feedback we’ve received, that we first have […]