* Salesforce Platform *

💻 Recap of True to the Core Deep Dive: Lightning Design System 2 (SLDS 2)  

Thank you to everyone who joined True to the Core Deep Dive today, and to Salesforce Product Managers @Adam Doti, @Cliff Seal, and @Fiona Tang for sharing updates and answering your questions on SLDS 2. 

🎥 Missed the session? 

You can watch the full session on demand here. 

💬 Still have questions? 

Drop them in the comments below. We’ll do our best to get you answers! 

📝 Vote on future TTTC Deep Dive topics! 

Please take a moment to fill out this quick survey here to help shape future sessions. 

🔗 Resources shared during the session: 

🔹 Blog: The Admin Guide to Preparing Your Org for Dark Mode with SLDS 2

🔹 SLDS Linter Information

🔹 Design Systems on the RoadmapExchange

🔹 Trailhead Module: Dark Mode in SLDS 2: Quick Look

Have feedback on SLDS 2? Complete this survey to join the Salesforce Research Program and participate in SLDS 2 research. #True To The Core @IdeaExchange #AwesomeAdmins #Salesforce Developer #Architects #DreamDesigners #DesignersMind

@Salesforce Admins Live Sessions, @* Release Readiness Trailblazers *, @* Salesforce Platform *, @* Trailhead Official *, @Trailblazer Community Cove, @Admin Addicts, @* Salesforce Developers *, @TDX for Admins, @Architect Trailblazers

💬 Have a question about DevOps Center? Bring it to our next True to the Core Deep Dive on June 16. 

Join Salesforce product experts @John Belo, @Gilson Canario, @Karen Fidelak, and @Srikrishna Padmannagari for a Q&A-focused conversation on the future of Salesforce DevOps and what it means for admins. 

Here’s what you can expect: 

💬 Open Q&A with Salesforce product experts 

🚀 Insight into upcoming features and enhanced delivery experiences 

⚙️ Practical guidance for evolving your deployment strategy 

💡 A chance to share feedback directly with the product team 

➡️ RSVP and join the conversation. ⬅️ #True To The Core @IdeaExchange #AwesomeAdmins #Salesforce Developer #Architects

@Salesforce Admins Live Sessions, @* Release Readiness Trailblazers *, @* Salesforce Platform *, @* Trailhead Official *, @Trailblazer Community Cove, @Admin Addicts, @* Salesforce Developers *@TDX for Admins, @Architect Trailblazers

*** Important change for: All Core Org Admins & Security Contacts ***This update is limited to Salesforce Platform. 

In Progress Enhancements: Immediate Action Required

Salesforce is enforcing these controls now. To avoid service disruption, verify your configuration. 

• Email Domain Verification: Email domain verification is now required to send emails from Salesforce. Learn more about the change and the enforcement timeline.
• High-Risk Connection Blocking: Ensure that your users aren’t connecting to Salesforce via anonymizing VPNs, proxies, or high-risk IP addresses. Salesforce monitors for and blocks high-risk connections through Connected App or API usage and anomaly detection for login activity.

Upcoming Enhancements: Take Action Now

Detailed enforcement dates for each control are available in the linked resources.

• Phishing-Resistant Multi-Factor Authentication (MFA) for Privileged Users, including Admins: Phishing-resistant MFA will be enforced for System Administrators and users who have certain privileged permissions when they log in to any org, including sandboxes. This requirement applies to direct UI and Single Sign-On (SSO) logins. Learn more about how to set up this feature and the enforcement timeline.
• MFA for All: MFA will be enforced for all employee license users who log in via the Salesforce UI or Single Sign-On (SSO) to all orgs, including sandboxes. Learn more about how to set up this feature and the enforcement timeline.
• Step-Up Authentication: Salesforce will enforce identity verification challenges for all users (including those using SSO) when they perform high-sensitivity actions, starting with UI report exports and viewing, and for anomalous behavior while accessing reports. This change applies across all orgs, including sandboxes. To prepare for this change, ensure that your users each have one of the following registered: Salesforce MFA, a current email address, or a mobile phone number. To learn more about how to prepare for this change, see Prepare for the upcoming Step-up Authentication requirements on Report Actions and Prepare for Step-up Authentication in Anomalous Report Export.
• Upcoming Transaction Security Policy (TSP) Enhancements (Shield & Event Monitoring customers): Salesforce will automatically deploy a default TSP for ReportEvent. When enabled, this policy triggers a step-up authentication challenge for UI report exports that exceed 10,000 records. Additionally, a new "Manage Transaction Security Policy" permission will be required, in addition to the "Customize Application" permission, to manage any TSP. Review and assign this new permission to authorized users before enforcement. Learn more about how to set up this feature and the enforcement timeline.

Strongly Recommended but Not Required at This Time

This control is recommended but not mandatory as previously announced.

• IP Address Restriction: Salesforce isn’t enforcing the IP address restrictions in profiles or the “Enforce login IP ranges on every request” session setting at this time. However, we continue to strongly recommend that you adopt IP address restrictions and enable the setting, and we may require that configuration in the future. To learn more about how to configure your IP Allowlist permissions, see Restrict Login IP Addresses in Profiles and Set Trusted IP Ranges for Your Org.
• Phishing-Resistant MFA for Non-Admin Users: To ensure the highest level of protection against identity-based threats, Salesforce strongly recommends that you implement phishing-resistant MFA for all users. See Prepare for MFA Enforcement for All Employee Users.

More Information

Join one of these webinars where Salesforce experts will discuss these changes.

• Platform Security Enhancements Webinar Option 1 | May 13 15:00-16:00 UTC
• Platform Security Enhancements Webinar Option 2 | May 13 23:00-24:00 UTC

The Salesforce Architecture Blog: Community Author Program is now accepting submissions. 🐘 

Share the real-world architectural decisions, implementation lessons, and practical patterns that shaped your solutions and help other architects learn through experience. 

Submit your blog for consideration by June 19: sforce.co/ArchitectBlogSubmissions

Learn more about the program: sforce.co/ArchitectCommunityAuthorProgram@Architect Trailblazers @Trailblazer Community Cove @* Salesforce Developers * @* Salesforce Administrators * @Salesforce Certified Professionals @Salesforce Military & Trailhead Military @* Trailhead Academy * @* Salesforce Platform *

Dotmark Vault — free offline browser for Salesforce exports 

Hi all — sharing something I built that I think fits squarely in the "tools" category here, and genuinely want community feedback on.

If anyone here has clients in a post-migration or org-reduction scenario, I'd genuinely appreciate your take on whether this addresses the real problem — or if I'm missing something about how these situations actually play out.

Link:

📣 Introducing the Salesforce Architecture Blog: Community Author Program, a new opportunity for Salesforce Architects to share real-world implementation expertise, architectural insights, and lessons learned with the broader community. 🐘 

Real architects. Real insights. Real impact. 

➡️ Learn more before submissions open June 1: 

https://www.salesforce.com/blog/salesforce-architecture-blog-community-author-program/ @Architect Trailblazers@Trailblazer Community Cove@* Salesforce Developers *@* Salesforce Platform *@* Release Readiness Trailblazers *@Salesforce Certified Professionals@Salesforce Military & Trailhead Military@* Salesforce Administrators *