Enhance your Salesforce organization's security by enabling Multi-Factor Authentication (MFA). This guide is divided into distinct sections to help you implement MFA smoothly.
Setting Up MFA
Identity Verification
1. Navigate to Setup:
• Log into your Salesforce account and access the Setup menu.
2. Access Identity Verification Settings:
• In the Quick Find box, type "Identity Verification" and select it from the results.
3. Enforce MFA for UI Logins:
• Look for the option labeled "Require multi-factor authentication (MFA) for all direct UI logins to your Salesforce org."
• Check this option to mandate MFA for all direct user interface logins.
4. Save Changes:
• Scroll to the bottom of the page and click "Save" to apply your settings.
Session Settings
1. Find Session Settings:
• In the Setup menu, use the Quick Find box to search for "Session Settings."
2. Adjust Security Levels:
• Ensure "Multi-Factor Authentication" is added to the "High Assurance" column under "Session Security Levels." This step is crucial for reinforcing MFA in your security protocol.
Changing the Authentication Method
Before we dive into changing the authentication method, let's understand the options available:
• App Registration: One-Time Password (OTP) Authenticator: Use an app like Google Authenticator to generate one-time passwords.
• App Registration: Salesforce Authenticator: Utilize Salesforce Authenticator for convenient mobile-based verification via push notifications.
• Security Key (U2F or WebAuthn): Employ a physical security key for a highly secure login process.
Steps to Change the Authentication Method
1. User Settings:
• Users should click on their user icon at the top right corner of the Salesforce page and select "Settings."
2. Select Authentication Method:
• Navigate to "My Personal Information," then "Advanced User Details."
3. Authentication Options:
• Choose from the methods outlined above based on personal preference.
4. Setup and Verification:
• Follow the instructions for your chosen method, ensuring it's properly configured for future logins.
This adjustment is optional for users who wish to switch to a different authentication method post-initial setup.
For more information, see:
- https://help.salesforce.com/s/articleView?id=sf.add_time-based_token.htm&type=5
- https://help.salesforce.com/s/articleView?id=sf.security_mfa_org_wide_setting.htm&type=5
Was this article helpful?
That’s Great!
Thank you for your feedback
Sorry! We couldn't be helpful
Thank you for your feedback
Feedback sent
We appreciate your effort and will try to fix the article