Fight Spam—Reject Cases Without reCAPTCHA Verification

Stop spammers from sending you bogus cases. Reject cases from Web-to-Case that don’t use reCAPTCHA verification.

Where: This change applies to Salesforce Classic and Lightning Experience in Essentials, Professional, Enterprise, Performance, Unlimited, and Developer editions.

How: In Setup, go to the Web-to-Case Settings page, and look for the Require reCAPTCHA Verification setting. Enabling this setting turns on the Include reCAPTCHA in HTML setting on the Web-to-Case HTML Generator page. Then make sure that the HTML on your website includes the reCAPTCHA code.Screen shot of the Web-to-Case Setting page.

In new orgs, Require reCAPTCHA Verification is enabled by default.



If your org already uses reCAPTCHA, manually enable Require reCAPTCHA Verification. After enabling this setting, it’s important that you ensure the code on your website includes the reCAPTCHA validation code. You might need to regenerate your HTML code and update it on your website. If your website doesn’t include the reCAPTCHA code, customers can’t submit cases.