salesforce_security_impl_guide
salesforce_security_impl_guide
salesforce_security_impl_guide
Create successful ePaper yourself
Turn your PDF publications into a flip-book with our unique Google optimized e-Paper software.
Configuring Salesforce Security Features<br />
Setting Session Security<br />
Setting Session Security<br />
You can modify session <strong>security</strong> settings to specify connection type, timeout settings, and more.<br />
1. From Setup, click Security Controls > Session Settings.<br />
2. Customize the session <strong>security</strong> settings.<br />
Field<br />
Timeout value<br />
Disable session timeout<br />
warning popup<br />
Description<br />
Length of time after which the system logs out inactive<br />
users. For Portal users, the timeout is between 10<br />
minutes and 12 hours even though you can only set it<br />
as low as 15 minutes. Select a value between 15 minutes<br />
and 12 hours. Choose a shorter timeout period if your<br />
organization has sensitive information and you want<br />
to enforce stricter <strong>security</strong>.<br />
Note: The last active session time value isn’t<br />
updated until halfway through the timeout<br />
period. That is, if you have a 30 minute timeout,<br />
the system won’t check for activity until 15<br />
minutes have passed. For example, assume you<br />
have a 30 minute timeout value. If you update<br />
a record after 10 minutes, the last active session<br />
time value won’t be updated because there was<br />
no activity after 15 minutes. You’ll be logged out<br />
in 20 more minutes (30 minutes total) because<br />
the last active session time wasn’t updated.<br />
Suppose you update a record after 20 minutes.<br />
That’s five minutes after the last active session<br />
time is checked, so your timeout resets and you<br />
have another 30 minutes before being logged<br />
out, for a total of 50 minutes.<br />
Determines whether the system prompts inactive users<br />
with a timeout warning message. Users are prompted<br />
30 seconds before timeout as specified by the<br />
Timeout value .<br />
EDITIONS<br />
The Login IP Ranges<br />
setting is available in:<br />
Personal, Contact<br />
Manager, Group,<br />
Professional, and<br />
Database.com Editions<br />
(Valid IP addresses can be<br />
set at the profile level for<br />
Enterprise, Performance,<br />
Unlimited, Developer, and<br />
Database.com Editions)<br />
The Lock sessions to<br />
the IP address from<br />
which they<br />
originated setting is<br />
available in: Enterprise,<br />
Performance, Unlimited,<br />
Developer, and<br />
Database.com Editions<br />
All other settings available<br />
in: Personal, Contact<br />
Manager, Group,<br />
Professional, Enterprise,<br />
Performance, Unlimited,<br />
Developer, and<br />
Database.com Editions<br />
USER PERMISSIONS<br />
To set session <strong>security</strong>:<br />
• “Customize Application”<br />
Force logout on session<br />
timeout<br />
Requires that when sessions time out for inactive users,<br />
current sessions become invalid. Browsers are<br />
automatically refreshed and return to the login page.<br />
To access the organization again when this occurs, users<br />
must log in again.<br />
Note: Do not select Disable session<br />
timeout warning popup when enabling<br />
this option.<br />
83