CloudAnswers

Salesforce is preparing to enable <a href="https://help.salesforce.com/s/articleView?id=005321566&amp;type=1" rel="nofollow noopener noreferrer" target="_blank">Step Up Authentication for Report Actions</a>. Right now, this feature breaks so many things with the Reports and Dashboards that we are putting together an article with the issues and recommendations. Not just for Report Sender, but for all the ways you use Reports and Dashboards in your org.

June 2nd, 2026: Thanks to everyone reporting issues with this, Salesforce has delayed enforcement. 

- Previous enforcement dates:
 - Sandboxes: Starting June 3, 2026
 - Production: Starting June 10, 2026
- New enforcement dates: 
 - Sandboxes: Starting June 22, 2026
 - Production: Starting July 13, 2026

- June 2nd, 2026: Thanks to everyone reporting issues with this, Salesforce has delayed enforcement. 
 - Previous enforcement dates:
 - Sandboxes: Starting June 3, 2026
 - Production: Starting June 10, 2026
 - New enforcement dates: 
 - Sandboxes: Starting June 22, 2026
 - Production: Starting July 13, 2026

If you want to see how this change affects your organization, here's how to test. 

Currently, we have only found this feature in sandboxes on the Preview servers.  To check which server your sandbox is on, go to your production org. Then go to Setup, Sandboxes. Under the Release Type column, see if any say "Preview."

Under Session Security Level Policies, change Reports and Dashboards to “Require periodic step-up authentication.”

At the bottom, you can set the period (default is 120 minutes)

It will only let you enter between 1 and 120

1. Go to Setup, Identity Verification
2. Under Session Security Level Policies, change Reports and Dashboards to “Require periodic step-up authentication.”
3. 
4. At the bottom, you can set the period (default is 120 minutes)

5. It will only let you enter between 1 and 120

6. Save your changes

Make sure MFA is set as a high assurance setting

Make sure your preferred MFA method is in the right column

The reporting API returns a 403 error: high assurance session required.

Report Sender gets the dashboard export via browser emulation, and it will no longer work. The dashboard API endpoint is only available to companies with CRM Analytics licenses, which currently fails due to issue #1. 

Embedded dashboards on the home page or other lightning pages throw a JavaScript error unless the user has recently completed the step-up authentication from the Reports or Dashboards tab. <a href="https://help.salesforce.com/s/issue?id=a02Ka00000mGk04" rel="nofollow noopener noreferrer" target="_blank">See Known Issue</a>

Reports &amp; Dashboards disappear from the mobile app. See <a href="https://help.salesforce.com/s/issue?id=a02Ka00000mGqXwIAK" rel="nofollow noopener noreferrer" target="_blank">Known Issue</a>

Standard Salesforce Reports &amp; Dashboards subscriptions deliver an email with an error. <a href="https://help.salesforce.com/s/issue?id=a02Ka00000mGqVkIAK" rel="nofollow noopener noreferrer" target="_blank">See Known Issue</a>

Users must complete MFA validation when they go to the Reports or Dashboards tab, even if they've just validated MFA at login seconds ago. Salesforce considers this working as expected. 

If you use Lightning Experience Sites, then users can't see any reports or dashboards, just a JavaScript error. 

If you use a Visualforce Site, then users now see a message that Classic Reports &amp; Dashboards will expire on March 31, 2027. 

1. The reporting API returns a 403 error: high assurance session required.
2. Report Sender gets the dashboard export via browser emulation, and it will no longer work. The dashboard API endpoint is only available to companies with CRM Analytics licenses, which currently fails due to issue #1. 
3. Embedded dashboards on the home page or other lightning pages throw a JavaScript error unless the user has recently completed the step-up authentication from the Reports or Dashboards tab. <a href="https://help.salesforce.com/s/issue?id=a02Ka00000mGk04" rel="nofollow noopener noreferrer" target="_blank">See Known Issue</a>
4. Reports &amp; Dashboards disappear from the mobile app. See <a href="https://help.salesforce.com/s/issue?id=a02Ka00000mGqXwIAK" rel="nofollow noopener noreferrer" target="_blank">Known Issue</a>
5. Standard Salesforce Reports &amp; Dashboards subscriptions deliver an email with an error. <a href="https://help.salesforce.com/s/issue?id=a02Ka00000mGqVkIAK" rel="nofollow noopener noreferrer" target="_blank">See Known Issue</a>
6. Users must complete MFA validation when they go to the Reports or Dashboards tab, even if they've just validated MFA at login seconds ago. Salesforce considers this working as expected. 
7. If you use Lightning Experience Sites, then users can't see any reports or dashboards, just a JavaScript error. 
8. If you use a Visualforce Site, then users now see a message that Classic Reports &amp; Dashboards will expire on March 31, 2027.

Log a case with Salesforce to request an extension on the enforcement of this feature. 

1. Test these changes in a preview sandbox.
2. Log a case with Salesforce to request an extension on the enforcement of this feature. 

Subject: Issues with Step Up Authentication for Report Actions

We request that you do not enforce Step Up Authentication for Report Actions in our org. If you force us to have it, we ask that you delay enforcement for as long as possible.

We do not find that it increases the security of our org. If someone has access to a Salesforce session, they can already run SOQL queries and export any data their permissions allow.

We have also tested the feature in our sandbox and have found the following issues:

1. It breaks an app that we rely on to distribute reports to our customers and partners: CloudAnswers Report Sender.
2. [Fill out with other issues that affect your org. See the list above for issues that have already been identified.]

Important updates about the Salesforce security change for Reporting

Salesforce Security Change: Step Up Authentication for Report Actions

Find answers and get help from Intercom Support and Community Experts

Conversations you've started through the messenger will appear here.

No conversations created by you

Try using different keywords or checking for typos.

No conversations found

Title

This site employs cookies and other technologies that we and our third party vendors use to monitor and record personal information about you and your interactions with the site (including content viewed, cursor movements, screen recordings, and chat contents) for the purposes described in our Cookie Policy. By continuing to visit our site, you agree to our {websiteTermsLink}, {privacyPolicyLink} and {cookiePolicyLink}.

This site uses cookies and similar technologies ("cookies") as strictly necessary for site operation. We and our partners also would like to set additional cookies to enable site performance analytics, functionality, advertising and social media features. See our {cookiePolicyLink} for details. You can change your cookie preferences in our Cookie Settings.

We use cookies to make our site work and also for analytics and advertising purposes. You can enable or disable optional cookies as desired. See our {cookiePolicyLink} for more details.

Advertising cookies are set by our advertising partners to collect information about your use of the site, our communications, and other online services over time and with different browsers and devices. They use this information to show you ads online that they think will interest you and measure the ads' performance. Social media cookies are set by social media platforms to enable you to share content on those platforms, and are capable of tracking information about your activity across other online services for use as described in their privacy policies.

These cookies enable the website to provide enhanced functionality and personalisation. They may be set by us or by third party providers whose services we have added to our pages. If you do not allow these cookies then some or all of these services may not function properly.

These cookies are necessary for the website to function and cannot be switched off in our systems.

These cookies allow us to count visits and traffic sources so we can measure and improve the performance of our site. They help us to know which pages are the most and least popular and see how visitors move around the site.

You have the right to opt out of the sale of your personal information. See our {cookiePolicyLink} for more details about how we use your data.

Your Privacy Choices

We use cookies to enhance your experience. You can customize your cookie preferences below. See our {cookiePolicyLink} for more details.

Cookie Settings

Empty Help Center

Uh oh. That page doesn’t exist.

Home

Search results

Disappointed

Neutral

Smiley

Thinking...

Searching through sources...

Analyzing...

Tickets submitted through the messenger or by a support agent in your conversation will appear here.

Salesforce Security Change: Step Up Authentication for Report Actions

Updates

How to Test

Known Issues

Recommended Actions