Looking for help?
< All Topics
Print

Salesforce new permissions for connected apps

September 12, 2025

Salesforce has new security settings for Connected Apps. Starting August 28, 2025 for new orgs, and early September 2025 for existing orgs, all apps that integrate with Salesforce will need to be explicitly installed in the org by an administrator.
This means that every connected app, including Xappex apps, must be installed in the Salesforce org. Users will no longer be able to connect to apps that are not installed.

If you’re a user, reach out to your Salesforce admin and ask him to install the Xappex app. 

If you’re an admin, please follow these steps: 

How to install a Connected App

  1. Install the app in your Excel or Google Sheets and login to Salesforce within the app.
  2. Click the Aloww button that appears on the next screen.
  3. After this, go to your Salesforce org to Setup → Connected Apps OAuth Usage.
  4. Locate the Xappex app you want to use.
  5. Click Install next to it.

 

6. Confirm the installation.

🤝Feel free to share this information with colleagues who are new to Xappex apps or testing them for the first time — it will help them get set up smoothly.

We’re here to support you. If you need assistance assigning the new permission or installing Xappex apps in your org, please contact our support team at support@xappex.com or access our chat on the website.

 

How to limit access to Salesforce connected apps only to certain users and profiles.

Salesforce offers a flexible way to limit  access to the connected app only to certain users and profiles via permission sets, allowing more control on the access to information.

1. Open the Connected App in Setup
  1. In Salesforce Setup, search for App Manager.
  2. Find your connected app in the list.
  3. Click the  arrow on the right and choose View (or Edit if already set up).
2. Enable Profile-Based Access Control
  1. On the connected app page, click Manage.
  2. Under OAuth policies or Profiles, look for Permitted Users.
  3. Change Permitted Users from:
    • All users may self-authorize :flecha_a_la_derecha: Admin approved users are pre-authorized.
  4. Save the change.
3. Assign the App to Specific Profiles
  1. After saving, you’ll see a Profiles or Manage Profiles button (or a related list).
  2. Select only the profiles you want to have access to the app.
  3. Save.
4. Assign the App to Specific Permission Sets (Optional)
If you prefer more granular control:
  1. Create a Permission Set with the needed Connected App Access.
  2. Assign this permission set to the desired users.
  3. Keep Permitted Users set to Admin approved users are pre-authorized.
5. Verify Access
  • Log in as an allowed user to confirm they can authorize the app.
  • Log in as a non-allowed user to ensure access is blocked.
Tip:
Using permission sets is generally better than profile-only restriction because it’s more flexible and doesn’t require changing users’ main profiles.