Changes to certificate lifespans

Note Salesforce updates are subject to change beyond our control. Sage People attempts to maintain our content in alignment: for the most up to date information, refer to Salesforce documentation.

Latest Salesforce email: Prepare for Upcoming Changes to Salesforce Certificate Management (sent March 7, 2026)

What's happening?

Salesforce are increasing the frequency of expiration for TLS certificates in line with industry standards. Sage People rarely uses TLS certificates, but it can use them as part of custom APIs.

Will this affect you?

You're only impacted if you have a custom API that uses a TLS certificate. You can check your certificates within Sage People in the certificate and key management section in Setup. If you're unsure if you use TLS certificates, we recommend checking with your IT support.

Salesforce are phasing down the maximum lifespan of certificates, meaning you'll need to renew them on the new intervals.

Until March 15, 2026, the maximum lifespan is 398 days
As of March 15, 2026, the maximum lifespan is 200 days
As of March 15, 2027, the maximum lifespan is 100 days
As of March 15, 2029, the maximum lifespan is 47 days

Recommended action

Check if you're using TLS certificates. Go to the certificate and key management section. Check the type of your certificates to see if any say TLS.

If you're using TLS certificates, check within your company who updates these certificates and notify them of the change.

You can set up a reminder to inform specific users when a certificate is due to expire.

For more details, see Salesforce's article: Certificates in Salesforce.