Key Management Permission Not Granted by Default

Admins must now actively assign the ability to perform key management roles. The "Manage Encryption Keys" permission is no longer assigned to the standard admin profile.

Custom profiles that include the Manage Encryption Keys permission are not affected. Any user who has the permission via a custom profile or permission set will still have the permission.

This change is one of the Critical Updates for this release.