Require TLS 1.2 for HTTPS Connections (Critical Update)
Where: This change applies to Lightning Experience, Salesforce Classic, and all versions of the Salesforce app in all editions.
When: This critical update is enforced on October 25, 2019. Orgs created after this date require TLS 1.2 by default.
How: We recommend that you test this update in a sandbox or Developer Edition org to verify end-to-end compatibility before enabling it in your production org.
To activate this critical update before October 25, 2019, from Setup, enter Critical Updates in the Quick Find box, then select Critical Updates. For Require TLS 1.2 for HTTPS Connections, click Activate.
Manage Access to Certificates and Event Log Files with Session-Security-Level Policies
Where: This change applies to Salesforce Classic and Lightning Experience in all editions.
- Manage Certificates (1)—Controls access to the Certificate and Key Management Setup page, Single Sign-On Settings Setup page, and the Certificate object.
- Manage Connected Apps (2)—Controls access to the Connected Apps Setup pages and to creating connected apps through the App Manager Setup page.
- Manage Two-Factor Authentication in API (3)—Controls access to the VerificationHistory, TwoFactorInfo, and TwoFactorTempCode objects.
- Manage Two-Factor Authentication in User Interface (4)—Controls access to the Identity Verification History Setup page and the VerificationHistory, TwoFactorInfo, and TwoFactorTempCode objects.
- View Event Log Files (5)—Controls access to the EventLogFile object.
How: From Setup, enter Identity Verification in the Quick Find box, then select Identity Verification. Locate the Session Security Level Policies section, and update the Manage Sharing setting.