SalesFix is committed to helping you maintain the security of your data, we’re sharing an important update from Salesforce regarding Connected Apps. These changes are being implemented to enhance your security and will affect how some applications connect to your Salesforce environment.
What's Changing?
Starting in early September 2025, Salesforce will be restricting the use of “uninstalled” Connected Apps. A Connected App is any application that connects to Salesforce. An “uninstalled” app is one that has not been explicitly installed in your Salesforce org by an administrator.
Here's a breakdown of the key changes:
Blocking Uninstalled Apps: End users will be blocked from using uninstalled Connected Apps unless they have previously authorized the app.
New User Restrictions: Any new user attempting to access an uninstalled app will be blocked.
OAuth 2.0 Device Flow Blockage: All uninstalled apps that use the OAuth 2.0 device flow will be blocked, even for users who have previously authorized the app.
Why is this Happening?
These changes are a proactive measure to protect your Salesforce environment from unauthorized access and potential security vulnerabilities. By requiring apps to be explicitly installed and approved by an administrator, Salesforce is making it more difficult for malicious applications to gain access to your data.
What Do You Need to Do?
SalesFix recommends all Salesforce administrators to take the following steps:
Review Your Connected Apps: Identify all Connected Apps currently in use within your Salesforce org. You can find this information in your Salesforce Setup menu.
Install Trusted Apps: For any legitimate, uninstalled Connected Apps that your team or customers rely on, you will need to “install” them. This action marks them as trusted within your Salesforce environment.
Block Untrusted Apps: If you discover any unfamiliar or untrusted Connected Apps, you should block them immediately.
Manage User Access: Once an app is installed, you can control which users have access to it through the “Permitted Users” setting. For the highest level of security, we recommend using the “Admin approved users are pre-authorized” option.
For highly trusted users, such as administrators and developers, two new user permissions are being introduced to allow access to uninstalled apps when necessary: “Approve Uninstalled Connected Apps” and “Use Any API Client.”
SalesFix is Here to Help
We understand that these changes may require some adjustments to your current processes. Our team is here to support you through this transition. If you have any questions or need assistance with reviewing and managing your Connected Apps, please don’t hesitate to reach out to our team.
By taking these proactive steps, we can work together to ensure the continued security and integrity of your Salesforce data.
If you need a hand understanding and implementing the latest changes, our SalesFix team is here to help guide you through the process and ensure your Salesforce environment is secure.
Learn more about how we can help you manage your Salesforce solution with our Customer Success Program, if you would like to speak to one of our team about getting assistance, you can email us at [email protected]