Over the past year, cyber security incidents have risen across the globe with the move to remote work. You may have noticed continued notifications from Salesforce about the new security requirement to use Multi-Factor Authentication by the 1st of February 2022. With the year already flying by, it will be here sooner than you think!
Days Until Salesforce MFA Update
EXPIRED
Security updates can be a little daunting if you are unsure about how they will impact your end users, as well as trying to figure out exactly what you need to do to enable MFA to secure your Salesforce environment. This post will outline what Multi-Factor Authentication (MFA) is, the things to consider for your organisation and what your options are to meet Salesforce’s new security requirements.
MFA also known as Multi-Factor Authorisation/Authentication helps to protect user accounts from cyber security threats by adding an additional layer of security to the login process. You may have come across two-factor authentication (2FA) on many other platforms, requiring an additional sign-in step with an authenticator app or by entering an SMS code. The difference between the two methods is the number of factors that are required for login. MFA requires two or more authentication mechanisms, while 2FA requires just two factors.
MFA makes it significantly harder for common cyber-attack threats such as phishing attempts and account takeovers to be successful. Data exploitation and cyberattacks can cripple a business. With many businesses operating in remote work environments, strong security measures are now more important than ever to protect your business and your customer’s data. By using MFA it is one of the easiest tools to safeguard your business and data against security threats.
SSO or Single Sign-On is an authentication method that allows users to log into multiple applications and systems with a single ID and password. An example of SSO you may be familiar with is web platforms that utilise email or social media accounts to grant access to sign in. It’s that “Sign in with Google/Facebook” button.
If you are using SSO for your Salesforce organisation, you’ll need to consider the impact of enabling MFA. You’ll need to determine whether your SSO can authenticate via an external identity provider (IdP) or if Salesforce is being used as the IdP. If you are using a third-party identity provider, the IdP must use MFA validation that is in compliance with Salesforce.
Traditional login access is using Salesforce’s login page with a conventional username and password instead of using SSO. When making the switch to MFA, there are many options including physical keys and third-party applications such as Salesforce Authenticator, Google Authenticator, Microsoft Authenticator, Okta Verify, etc.
All internal users who log into Salesforce products through the user interface (web browser) must use MFA by February 1st, 2022. To ensure that MFA is enabled you can turn it on directly in your Salesforce products or use your SSO provider’s MFA service.
MFA can be enabled at any time for the following Salesforce products:
More information around implementation and frequently asked questions can be found via this Salesforce help article.
Contact us today if you need some help getting ready for MFA or if you’d like to discuss a specific use case.
Salesforce Winter '25 Release: Enforced Updates
As you are aware Salesforce are continually making improvements to the platform, with regular releases for these changes. We have completed a review of the Release Updates for Salesforce Winter '25 release. To learn about some of our favourite features for business users and Salesforce admins, check out our latest blog. Enforced Updates in Salesforce Winter […]
Enrite Solutions Appoints New CEO in Executive Leadership Transition
Enrite Solutions is excited to announce key changes to our executive leadership team. As one of Australia’s most experienced Salesforce Partners and technology advisors, we continually strive to position ourselves for future growth and success. Stepping into the role of Chief Executive Officer is Patrick DeRuvo, who has been an integral member of our executive […]
Top 8 Standout Highlights in the Salesforce Winter '25 Release
The Salesforce Winter '25 release is here, and it's a significant one! There's a focus on AI, Flows, and enhancing setup tools, aimed at improving the configuration experience for Salesforce instances across the board. Depending on your instance, you'll be upgraded on one of the following dates: If you want to find out exactly which […]