When you create and store your own key material outside of Salesforce, it’s important
that you safeguard that key material. Make sure that you have a trustworthy place to archive
your key material; never save a tenant secret or data encryption key on a hard drive without a
backup.
Required Editions
Available in both Salesforce Classic (not available in all orgs) and Lightning
Experience.
Available in: Enterprise, Performance, and Unlimited
Editions with the Salesforce Shield or Shield Platform Encryption licenses.
Available for free in Developer Edition.
Back up all imported key material after you upload them to Salesforce. Backing it up ensures
that you have copies of your active key material. See Back Up Your Tenant Secret in Salesforce Help.
Review your company policy on key rotation. You can rotate and update your keys on your own
schedule. See Rotate Your Encryption Keys.
Warning You are solely responsible for making sure
that your data and key material are backed up and stored in a safe place. Also, due to rotation,
over time you will accumulate a number of keys. You should back them up into source control, and
keep an up-to-date registry of your keys outside of Salesforce. Salesforce can’t help you with
deleted, destroyed, or misplaced tenant secrets and keys. Even if you destroy a key in your
Salesforce org, we strongly encourage you to preserve your backup copy in source control.
Did this article solve your issue?
Let us know so we can improve!
Loading
Salesforce Help | Article
Cookie Consent Manager
General Information
Required Cookies
Functional Cookies
Advertising Cookies
General Information
We use three kinds of cookies on our websites: required, functional, and advertising. You can choose whether functional and advertising cookies apply. Click on the different cookie categories to find out more about each category and to change the default settings.
Privacy Statement
Required Cookies
Always Active
Required cookies are necessary for basic website functionality. Some examples include: session cookies needed to transmit the website, authentication cookies, and security cookies.
Functional Cookies
Functional cookies enhance functions, performance, and services on the website. Some examples include: cookies used to analyze site traffic, cookies used for market research, and cookies used to display advertising that is not directed to a particular individual.
Advertising Cookies
Advertising cookies track activity across websites in order to understand a viewer’s interests, and direct them specific marketing. Some examples include: cookies used for remarketing, or interest-based advertising.
