Loading
Feature degradation | Gmail Email delivery failureRead More
Set Up and Maintain Your Salesforce Organization
Table of Contents
Filter by (0)Add
Select Filters

          No results
          No results
          Here are some search tips

          Check the spelling of your keywords.
          Use more general search terms.
          Select fewer filters to broaden your search.

            Search all of Salesforce Help
            Search all of Salesforce Help
            CredentialStuffingEventStore Policies

            You are here:

            1. Salesforce Help
            2. Docs
            3. Set Up and Maintain Your Salesforce Organization

            CredentialStuffingEventStore Policies

            Credential stuffing event policies monitor when a user successfully logs into Salesforce during an identified credential stuffing attack. Credential stuffing refers to large-scale automated login requests using stolen user credentials.

            Required Editions

            Available in both Salesforce Classic (not available in all orgs) and Lightning Experience.

            Available in: Enterprise, Unlimited, and Developer Editions

            Requires Salesforce Shield or Salesforce Event Monitoring add-on subscriptions.

            Policy at a Glance

            Object Conditions Available in Condition Builder Actions
            CredentialStuffingEventStore AcceptLanguage, LoginUrl, Score, SourceIp, UserAgent, UserId, Username Notifications

            What You Can Do with It

            Create a policy that can:

            • Send you an email when Salesforce detects that a user from a specific IP address successfully logged into your org during a credential stuffing attack.
            • Generate an in-app notification when Salesforce detects a login from a specific page, such as login.salesforce.com or MyDomainName.my.salesforce.com, during a credential stuffing attack.
             
            Loading
            Salesforce Help | Article