View and Address Security Risks Using Health Check

At a glance, you can now see and fix security risks in your Session Settings, Password Policies, and Network Access settings. A new health check dashboard shows how well your org measures against the Salesforce-recommended baseline. Health Check lets you understand and proactively remediate your org’s security risks and vulnerabilities from a single page. This feature is available in both Lightning Experience and Salesforce Classic.
Available in: Professional, Enterprise, Performance, Unlimited, and Developer Editions

The Salesforce Baseline standard contains recommended values for the Session Settings, Password Policies, and Network Access setting groups. If you change all of a group’s settings to be less restrictive than what’s in the Salesforce Baseline standard, your health check score decreases.

From Setup, enter Health Check in the Quick Find box, then select Health Check.

Security Health Check page showing 50% score and high risk settings

The dashboard shows high and medium risk settings and how they compare against the standard. To remediate a risk, click the edit link next to the setting. All of your settings that meet the standard are listed at the bottom.

Example

Suppose that you changed your password minimum length from 8 (the default value) to 5, and changed other Password Policies settings to be less restrictive. These changes make your users’ passwords more vulnerable to guessing and other brute force attacks. As a result, your overall score decreases, and the settings are listed as risks.