Automation Champion

Automating Salesforce One Click at a Time
Automation Champion
  • Home
  • About Me
    • Testimonials
    • Resources
  • Process Builder
  • Salesforce Flow
  • Pardot
  • Apex
  • Training Details
    • Salesforce Administrator
    • Salesforce Advanced Administrator
    • Platform App Builder
    • Lightning Flow
    • Pardot
    • Sales Cloud
    • Service Cloud
    • Community Cloud
    • Hands-on Excercises
  • My Books
  • Contact Me
  • Tag: Enable clickjack protection

    • View and Manage User Sessions

      Posted at 1:32 PM by Rakesh Gupta, on February 20, 2014

      Manage Session

      Unlike any other application System administrator can cancel users session, In Spring’14 release Salesforce announced same kind of feature. Now users with “View Setup and Configuration” permission can easily view user sessions and, if necessary for security or other reasons, end sessions (It’s required “View All Data” user permission) from the same page.

      The User Session Information page allows you to view active sessions, view session details for an organization, and create different views of the data. You can also view details about a user associated with a specific session, and end suspicious sessions if required.This feature is by default enable for your organization after Spring’14 release. This feature available in Developer, Performance, Enterprise, Professional, Contact Manager, Group, Unlimited and Database.com editions.

      Remove user’s Session

      To remove user’s session follow the below steps

      1) Click on Name | Setup | Administration Setup | Security Controls | Session Management 
      2) On the User Session Information page, you can view existing user session details, like below screen shot

      User Session Information

      User Session Information

      Field Description
      Created The date and time stamp of when the session began.
      Login Type The type of login associated with the session. Some login types include Application, SAML, and Portal.
      Session Type The type of session the user is logged into. For example, common ones are UI, Content, API, and Visualforce.

      UI:- Created when using a user interface page.
      Content:- Created when serving user-uploaded content.
      API:- Created when accessing Salesforce through the API.
      Visualforce:- Created via a Visualforce page.To learn more about Session types browse below mentioned link
      https://help.salesforce.com/apex/HTViewHelpDoc?id=security_session_types.htm&language=en_US

      Source IP The IP address associated with the session.
      User Type The profile type associated with the session.
      Username The username used when logged into the session. You can click the username to go to that person’s profile page.
      Updated The date and time stamp of the last session update because of activity. For example, during a UI session type, users make frequent changes to records and other data as they work. With each change, both the Updated and Valid Until date and time stamps are refreshed.
      Valid Until The date and time stamp of when the session expires if you don’t end it. In my case it’s 2hours From created or updated which ever is earlier) as i set session timeout value to 2hours. To check yours follow the path Name | Setup | Administration Setup | Security Controls | Session Settings

      Session Timeout Value Settings

      Session Timeout Value Settings

      3) To end a session select the check-box for one or more sessions and click Remove button.

      End a session

      End a session

      4) Whenever user with username “abcd@gmail.com” is try to access anything by clicking, Salesforce will redirect a user to login page.

      Salesforce login page

      Salesforce login page

      Note:- Non-administrators can see their own session information while administrators can view all user
      sessions for an organization.

      Default Session Settings Protect Your Organization

      Take advantage of new default session security settings to protect your organization. For improved security, some options on the Session Settings page that administrators could previously disable are now enabled
      by default and no longer editable from the Session Settings page. Fields marked in red are no longer editable for user.

      Fields on Session Settings no longer editable

      Fields on Session Settings no longer editable

      You can  disable these options by contacting salesforce.com via raise a case or call.

      Announcement:- If you like this blog or you have a question please leave your comments, I’ll try to answer it. Thanks for your time to read my article.

      Posted in Spring'14 Release | 5 Comments | Tagged adm 201 certification, adm 201 manuel, adm 201 salesforce, adm 201 student guide, adm 201 training, Enable clickjack protection, Enable CSRF protection on GET requests, Enable SMS—based identity confirmation, Manage session in Salesforce, Require secure connections, salesforce, salesforce chatter, Salesforce login secure, Salesforce Spring14, Salesforce Spring14 release, Salesforce Spring14 release notes, Salesforce.com, Salesforce.com login, Security Controls, Security setting in Salesforce, session management in Salesforce, Session setting in Salesforce, Session Settings, spring 14, spring 14 release, spring 14 release notes, Spring 14 release salesforce, Spring 14 salesforce, Spring14, spring14 enhancement, Spring14 release, User Sessions, View and Manage User Sessions
    • Search

    • Upcoming Trainings

      Salesforce Administrator Certification
      Salesforce Advanced Administrator Certification
      Salesforce Platform App Builder Certification
      Lightning Flow & Process Builder
      Pardot Specialist & Consultant Certification
      Sales Cloud Consultant Certification
      Service Cloud Consultant Certification
      Community Cloud Consultant Certification
    • Sponsor #1

    • Sponsor #2

    • Sponsor #3

    • Sponsor #4

    • Order Now!

    • Buy My Book

    • Buy My Book

    • Recent Posts

      • Getting Started with Salesforce Flow – Part 55 (Add or Remove Followers to a Record with the Help of Salesforce Flow)
      • Getting Started with Salesforce Flow – Part 54 (Auto-follow a Chatter Question After Reply)
      • Getting Started with Salesforce Flow – Part 53 (Clone a User with their associated Public Group, Queue Membership and Permission Sets)
      • Getting Started with Pardot – Part 14 (How to Use Pardot Form Handlers)
      • Getting Started with Salesforce Flow – Part 51 (Add a Flow to a Lightning Page)
    • Salesforce ID Converter Build on Lightning Flow

      Converting 15 digit ID to 18 digit Salesforce ID
    • Blog Archives

    • Categories

  • Information

    • About Me
    • Affiliate Disclaimer
    • Contact Me
    • Privacy Policy
  • Top Posts

    • Salesforce Spring’21 Release Quick Summary
    • Learning Flow
    • Getting Started with Salesforce Flow – Part 53 (Clone a User with their associated Public Group, Queue Membership and Permission Sets)
    • Top Ten Gems of Salesforce Lightning Experience Spring’21 Release!
    • Learning Process Builder
    • Getting Started with Salesforce Flow – Part 11 (Count Number of records in a Record Collection Variable)
    • Getting Started with Salesforce Flow – Part 55 (Add or Remove Followers to a Record with the Help of Salesforce Flow)
    • Getting Started with Process Builder – Part 30 (Auto-generate Renewal Opportunity With Line Items)
    • Getting Started with Salesforce Flow – Part 33 (Prior Value of a Record in Record-Triggered Flows)
    • Learning Pardot
  • Social Media

    • View Automationchampion’s profile on Facebook
    • View Automationchamp’s profile on Twitter
    • View Rakeshistom’s profile on GitHub