salesforce_security_impl_guide

More documents

Recommendations

Info

CHAPTER 3 Configuring Salesforce Security Features Review the following sections for detailed instructions and tips on setting up and configuring Salesforce <strong>security</strong> features. Setting Password Policies For your organization’s <strong>security</strong>, you can set various password and login policies. Note: User passwords cannot exceed 16,000 bytes. Logins are limited to 3,600 per hour per user. This limit applies to organizations created after Summer ’08. 1. From Setup, click Security Controls > Password Policies. 2. Customize the password settings. Field User passwords expire in Enforce password history Description The length of time until all user passwords expire and must be changed. Users with the “Password Never Expires” permission are not affected by this setting. The default is 90 days . This setting is not available for Self-Service portals. Save users’ previous passwords so that they must always reset their password to a new, unique password. Password history is not saved until you set this value. The default is 3 passwords remembered . You cannot select No passwords remembered unless you select Never expires for the User passwords expire in field. This setting is not available for Self-Service portals. EDITIONS Available in: • Contact Manager • Group • Professional • Enterprise • Performance • Unlimited • Developer • Database.com USER PERMISSIONS To set password policies: • “Manage Password Policies” Minimum password length The minimum number of characters required for a password. When you set this value, existing users aren’t affected until the next time they change their passwords. The default is 8 characters . 78
Configuring Salesforce Security Features Setting Password Policies Field Password complexity requirement Password question requirement Maximum invalid login attempts Lockout effective period Description The requirement for which types of characters must be used in a user’s password. Complexity levels: • No restriction—allows any password value and is the least secure option. • Must mix alpha and numeric characters—requires at least one alphabetic character and one number. This is the default. • Must mix alpha, numeric, and special characters—requires at least one alphabetic character, one number, and one of the following characters: ! # $ % - _ = + < > . • Must mix numbers and uppercase and lowercase letters—requires at least one number, one uppercase letter, and one lowercase letter. • Must mix numbers, uppercase and lowercase letters, and special characters—requires at least one number, one uppercase letter, and one lowercase letter, and one of the following characters: ! # $ % - _ = + < > . The values are Cannot contain password , meaning that the answer to the password hint question cannot contain the password itself; or None , the default, for no restrictions on the answer. The user’s answer to the password hint question is required. This setting is not available for Self-Service portals, Customer Portals, or partner portals. The number of login failures allowed for a user before they become locked out. This setting is not available for Self-Service portals. The duration of the login lockout. The default is 15 minutes. This setting is not available for Self-Service portals. Note: If users are locked out, they must wait until the lockout period expires. Alternatively, a user with the “Reset Passwords and Unlock Users” permission can unlock them from Setup by clicking Manage Users > Users, selecting the user, then clicking Unlock. This button is only available when a user is locked out. 79
Page 1 and 2:
Security Implementation Guide Versi
Page 3 and 4:
CONTENTS Chapter 1: Security Overvi
Page 5 and 6:
Contents Editing Lead Sharing Rules
Page 7 and 8:
CHAPTER 1 Security Overview Salesfo
Page 9 and 10:
Security Overview User Security Ove
Page 11 and 12:
Security Overview Custom Permission
Page 13 and 14:
Security Overview CAPTCHA Security
Page 15 and 16:
Security Overview Auditing • Role
Page 17 and 18:
Securing and Sharing Data Revoking
Page 19 and 20:
Securing and Sharing Data Viewing P
Page 21 and 22:
Securing and Sharing Data Cloning P
Page 23 and 24:
Securing and Sharing Data App and S
Page 25 and 26:
Securing and Sharing Data Working w
Page 27 and 28:
Securing and Sharing Data Enable Cu
Page 29 and 30:
Securing and Sharing Data Assigning
Page 31 and 32:
Securing and Sharing Data Creating
Page 33 and 34: Securing and Sharing Data Editing P
Page 35 and 36: Securing and Sharing Data Searching
Page 37 and 38: Securing and Sharing Data Enable Cu
Page 39 and 40: Securing and Sharing Data Object Pe
Page 41 and 42: Securing and Sharing Data Comparing
Page 43 and 44: Securing and Sharing Data Setting F
Page 45 and 46: Securing and Sharing Data Working w
Page 47 and 48: Securing and Sharing Data Setting L
Page 49 and 50: Securing and Sharing Data Restricti
Page 51 and 52: Securing and Sharing Data Managing
Page 53 and 54: Securing and Sharing Data External
Page 55 and 56: Securing and Sharing Data Disabling
Page 57 and 58: Securing and Sharing Data Creating
Page 67 and 68: Securing and Sharing Data Editing L
Page 69 and 70: Securing and Sharing Data Editing C
Page 71 and 72: Securing and Sharing Data Editing C
Page 73 and 74: Securing and Sharing Data Sharing R
Page 75 and 76: Securing and Sharing Data User Shar
Page 77 and 78: Securing and Sharing Data Sharing U
Page 81 and 82: Securing and Sharing Data Viewing A
Page 83: Securing and Sharing Data Granting
Page 87 and 88: Configuring Salesforce Security Fea
Page 95 and 96: CHAPTER 4 Enabling Single Sign-On S
Page 97 and 98: Enabling Single Sign-On • Before
Page 99 and 100: Monitoring Your Organization's Secu
Page 107 and 108: Security Tips for Apex and Visualfo
Page 113 and 114: INDEX A Access about 10 revoking 11
Page 115 and 116: Index Profiles (continued) object p
show all

salesforce_security_impl_guide

You also want an ePaper? Increase the reach of your titles

Delete template?

Save as template?