How to view all TLS 1.1 Logins

Download Login History 

1. Navigate to Setup
2. Search for 'Login history' in Quick Find search
3. Click 'Login History'
4. Click 'Download Now'
5. Filter the data using the "TLS Protocol" column

Create a Report

1. Click Reports
2. Click New report
3. In Select Report type, expand administrative reports and click Users
4. Click Create
5. Change the Date field from 'Last Login' to 'Login Date / Time'
6. In the fields column on the left side, use the quick find box to find 'TLS Protocol'
7. Drag this field into the filters section
8. Using the lookup icon, check only TLS 1.1, and click 'Insert Selected'
9. Click 'Ok' to finish the filter criteria
10. Adjust your timeframe as needed. We recommend starting with a month's worth of data and then expanding to 3 months if needed.
11. Using the quick find box, add in columns as needed by dragging them from the left column into the preview window. You can drop these columns anywhere you prefer in the report. We recommend adding as a minimum the Browser, Client Type, and Username fields as this will allow you to identity specific applications, users, and browsers that are still using TLS 1.1.

Workbench (Workaround if Login History download times out ) 

1. Login to Workbench
2. Under Jump to: Select SOQL Query
3. For object, click 'LoginHistory'
4. Click 'Select'
5. Ensure that the "LoginHistory" is still selected under Object and paste the following query under "Enter or modify a SOQL query below":

   • SELECT ApiType,ApiVersion,Application,AuthenticationServiceId,Browser,CipherSuite,ClientVersion,CountryIso,Id,LoginGeoId,LoginTime,LoginType,LoginUrl,Platform,SourceIp,Status,TlsProtocol,UserId FROM LoginHistory WHERE TlsProtocol = 'TLS 1.1'

6. Click Query

Using and following up on the results

• Identity which users and applications these logins are coming from.
• Take the necessary actions to upgrade or configure the application to support TLS 1.2.
• Reach out to affected end users to ensure they are aware of any out of date browsers or clients they are using.

Additional methods for advanced users

• API Users can obtain this data via the API using the Login History Object.
• Customers who have purchased Event log files or Shield can also obtain this information via event log files. See our Download and Visualize Event Log Files Trailhead Module.