Answers - Salesforce Trailblazer Community
Trailblazer Community
Ask Search:
Best Answer chosen by ASIF ALI
This is because of storage, Limit exceeded.
Nobady answered, I figured myself.
Eboni BlakeEboni Blake 
Hello, we're running into an issue with certificate management in Salesforce.  We would like to add a custom certificate to Salesforce (currently trying in a developer sandbox environment) that we will use in Apex code to sign a JWT for authenticating our Salesforce UI with a microservice we're developing. We are trying to import the certificate from a JKS keystore, but we're running into an error:

 Keystore file is corrupted."
Best Answer chosen by Jayson ( 
Jerry HenzelJerry Henzel
Hi Eboni - Not sure if you are still having this issue.  We do the same thing but instead of self-signed certs we use ones from Let's  Encrypt.  Downside is expiration every 3 months.  We have a script that is almost but not quite identical to what Deepali notes, i.e. just a bash shell script.  One thing we found out was that if we ran on Java 8 there was no problem.  We have multiple Java sdk's installed via SDKMan and initially tried this on Java 12 - where we got a corruption error.  Once we toggled back to Java 8 it went fine.  Good Luck

Kent ManningKent Manning 
I was trying to set up Lightning Login on my personal developer account.  I went in to the dev account and disconnected the Salesforce Authenticator from my account. I then deleted the account in the authenticator on my mobile device.  I then clicked the link enroll next to the lightning login on my user detail page.  I was asked to login to my dev org again, but now it keeps asking me for the verification code.  I can't get the verification code because the authenticator is disconnected. How am I going to get back into my developer account? This is bad, this is really bad because so much is in this developer account. Anybody have any ideas how I can get the verification code?
Best Answer chosen by Miglena ( 
Kent ManningKent Manning
I was able to resolve my locked out problem on my developer org.  I had remembered that I had a second user account in this dev org and after resetting the password on the second account, I was able to log in.  Once I logged in, I reset the profile on my primary account to not require two-factor authentication.  That allowed me to log back in with the primary account and have my verification come via text message.  If I would not have had the second log in with Administrator level access I would have probably lost everything in this org.  

Two valuable lessons here:  
  1. Always create a second administrator account on your dev org as a backup login.
  2. Use a newly created, secondary developer org to test security features as Geoffrey Flynn recommends. 
Frank MamoneFrank Mamone 
I installed shield on a dev org and it shows in the statistics that my data is encrypted, yet when querying with dev console I still see the data unencrypted.

I proceeded to generate a new key, backing up the old, and then destroying the old one. Yet, I still see the data.   To be clear, I created a new record to test this.

thank you,
Best Answer chosen by Frank Mamone
Guy KeshetGuy Keshet
Hi Frank
that is the expected behaviour!
Shield encypts data at rest to rpotected from being viewed by an unautherised user. as the docuemtnation states:
"Encryption prevents outsiders from using your Salesforce data even if they manage to get it. It is not a way to hide data from authenticated users. User permissions are the only way to control data visibility for authenticated users. Encryption at rest is about logins, not permissions."
"With Shield Platform Encryption, if a user is authorized to see a given set of data, that user sees that data whether it’s encrypted or not."
so when quering via dev console, if the user is allowed to acess the data , they will see it!

read more here:

IF you want to hide data from users who have access to it, use classic encyption

On that note - @Sakshi: view encryption is a permission for classic enncryption, not shield!
Karthik TKKarthik TK 
Are the Profile Names displayed in the User Interface (UI) and API Names of these Profile Names the same ?

For Example 

Stanadard Profiles
Profile Name in UI : System Administrator
  1. Profile API Name: System Administrator (Is this correct? OR
  2. Profile API Name: System_Administrator (Is this correct?)
Custom Profiles:
Profile Name in UI : Custom Profile A
  1. Profile API Name: Custom Profile A (Is this correct? OR
  2. Profile API Name: Custom_Profile_A__c (Is this correct?)
Best Answer chosen by Karthik TK
Patrick SullivanPatrick Sullivan
What are you using this for? The easiest way to get to your answer is to do an export with the Data Loader to see how it is saved. 

User-added image
Alice LeAlice Le 
Hi guys,

Quick clarification question. I keep thinking I can/should use Permission Sets to open up access to a specific group of people - eg, allow my Contracting team read/write permission on Opportunities so they can update some document status fields. However, this doesn't work - I need to open up permission to edit opps via Sharing Rules.

So... when would I use a permission set if it doesn't actually enable access to a field or object? 
Best Answer chosen by Alice Le
Chris EdwardsChris Edwards
Permission sets add the same kind of permissions as profiles give - access to apps, objects, fields, system functions etc - but the only settings that control access to other people's records are OWDs, roles and sharing rules. 

Am I right in thinking the Contracting team do not own the opportunities? If so, this will be why permission sets aren't working for you and why sharing rules are.
Jo DengJo Deng 
I know under Security Controls -> Session Settings, there is a setting: Disable session timeout warning popup

The Salesforce documentation says: Determines whether the system prompts inactive users with a timeout warning message. Users are prompted 30 seconds before timeout as specified by theTimeout value.

I have never seen the timeout warning popup. I tend to use Firefox or Chrome to access my Salesforce orgs. Is there a trick to getting this popup to display?
Best Answer chosen by Jo Deng
Deepak AnandDeepak Anand
May be that your Browser isn't showing pop-ups since it is blocked by default. Since this pretty small it's often overlooked, do you see/look out for an icon like this(User-added image) at the end of the Address Bar ?

Ken TallmanKen Tallman 
I have a user who cannot delete contacts even though she has Modify All permissions on Contacts and Accounts. When she tries to delete a contact, she gets this Visualforce error:

npsp__util_pagemessages: You do not have sufficient privileges to access the controller: UTIL_HtmlOutput_CTRL 

Note that she gets this error in both Lightning and Classic, so it's not a problem with the button (as suggested in another post).

Any advice would be much appreciated.
Best Answer chosen by Ken Tallman
Ankush DurejaAnkush Dureja
Check if user profile has permission to access apex class 'UTIL_HtmlOutput_CTRL'
Shivam GuptaShivam Gupta 
Hello everyone
I am facing login issue in my salesforce developer account because of Two-Factor Authentication, my salesforce mobile authenticator app got deleted and i am unable to recover my account. Please guide me a way to unlock it.

Thank You
Best Answer chosen by Jayson ( 
Ankit KumarAnkit Kumar
Hi Shivam!

When a user enable "Two-Factor Authentication", a permission set get attached to your user record. If you remove that permission set from your user record, system should allow you to log in. 

Only one mobile authenticator app that generates verification codes (one-time passwords) can be connected to a user’s account at a time. If your user loses access to the app by replacing or losing the mobile device, disconnect the app from your user’s account. The next time your user logs in with two-factor authentication, Salesforce prompts the user to connect a new authenticator app.

1.From Setup, enter Users in the Quick Find box, then select Users.
2.Click the user’s name.
3.On the user’s detail page, click Disconnect next to the App Registration: One-Time Password Generator field.
Your users can disconnect the app from their own account. In personal settings, they go to the Advanced User Details page and clickDisconnect next to the App Registration: One-Time Password Generator field.

In case you are the Admin of your account and cannot login (Try logging in using SSO in Trailhead>Challenge>Select the same Org from dropdown), then raise a case with Salesfroce
Rob GrangerRob Granger 
Hello, Are there any trainings, Trailhead or otherwise, for Salesforce Setup Audit Trail?
Best Answer chosen by Jayson ( 
Vanisha GuptaVanisha Gupta

Setup audit trail is just used to track changes made or any actions performed in your org. With it you can see actions of last 6 months. You can also download it to look in more detail.
You can read the documentation of it here : to know more :)