Overview of Salesforce Multi-Factor Authentication (MFA)

Share this article...

Over the past year, we have seen an increase in security breaches. The main cause? Reused, or weak passwords. To combat this cybersecurity threat, Salesforce has decided that all orgs must enable Multi-Factor Authentication (MFA) to access their products.

Salesforce Admins must enable MFA from February 1st, 2022, this change will help prevent cybersecurity risks. In this blog, we will go through the benefits of MFA, and how you can get started today!

Remote Working Increases Volume of Cyber Attacks

Cybersecurity issues are not new and can come from anywhere; your compromised home networks or attackers using your weak passwords. These attackers can enter your work systems if you already have reused or weak passwords. The volume of cyber-attacks has increased in the past year since we switched from office to work-from-home.

Greg Poirier, Founder of Salesforce Partner CloudKettle and an expert in business security tech, explains the trend. “That security issue is not new,” he said. “What is new is that the volume of attacks and resources and efforts going into security attacks on-at-home employees has increased significantly. What’s happening is people are working way harder in the last year to exploit it. And that’s what makes it more important.”

These Cyber attacks seek to exploit increasingly connected systems. Large companies, especially those who have shifted to multiple cloud-based solutions, have connected systems. However, this has become a new place that cybercriminals love to exploit.

How Salesforce Multi-factor Authentication (MFA) Help

Salesforce MFA helps in addressing cyber challenges, as it adds a layer of security to your Salesforce log-in process. Just how apps such as Google, Instagram, and Facebook make you pass through different security modules to access your account. Similarly, Salesforce will make you clear different levels of security to gain access to Salesforce products.

Now, MFA in Salesforce will become a key part of their security strategy and will help in safeguarding your Salesforce user accounts. As you might already know, your Salesforce usernames and passwords no longer provide you full protection against phishing attacks.

Above all, MFA will cater to evolving cybersecurity threats in Salesforce and will keep your accounts protected.

What Types of Verification Methods Do Salesforce Products Support for MFA?

You might be wondering what types of verification methods you can use to access your Salesforce accounts? Well, Salesforce has come up with three different ways for Multi-factor Authentication. Here are the ways you can use to clear the MFA to log in to your accounts.

  1. Salesforce Authenticator Mobile App: If you use Salesforce Authenticator App for MFA, it will show you notifications whenever someone tries to log in to your account along with their location. So, this way, you can choose to approve or deny login attempts just with a tap. Salesforce Authenticator App is available for iOS and Android users.
  2. Third-Party Authenticator Apps: This method for MFA would allow you to verify your identity with unique temporary codes called Time-Based One-Time Password. If you want to choose this method for MFA then, you have several options like Google Authenticator, Microsoft Authenticator, or Authy.
  3. Security Keys: This is a small, physical device that is easy to use. Also, It is the best way of authentication if you don’t have a mobile device or aren’t allowed to bring cell phones to your work premises. It requires nothing to install and no codes to enter.

You can choose security keys like Yubico’s Yubikey or Google’s Titan Security Key.

Things to keep in mind when preparing for Salesforce MFA rollout

  1. Know if an app or hardware authenticator works for your team: When you prepare for the Salesforce MFA rollout, you should know what kind of authentication process works best for your teams.
    Here, you will have to see whether the Salesforce Authenticator app or hardware authenticators like Yubikey work for your business or not.
  2. Time Factor: Global companies will have to know the time constraint before allowing the Salesforce security updates. By following this, you will ensure that your employees aren’t locked out during business hours.
  3. Cost Factor: If you choose the route of the physical key as an authentication method, then know that it can cost you an amount of money. Hence, you will have to make a budgetary plan as there’s going to be an initial purchase of the device and probably an annual cost.

Wrap Up

MFA is one of the easiest and effective ways to combat security issues. Businesses are going back to offices and workplaces; it is important to make sure that people and the data are safe. We hope that you liked this interesting article. We will be back with another blog that will help you succeed with Salesforce!

4 thoughts on “Overview of Salesforce Multi-Factor Authentication (MFA)

  1. Thanks for the article. Can you confirm that the listed Third-Party Authenticator Apps are all of the given choices, or would it possible to use an other one like Octa MFA?

  2. I am interested in learning more about the option to implement MFA through our SSO solution. The documentation provided by Salesforce is pretty sparse ->https://help.salesforce.com/articleView?id=sf.mfa_sso_logins.htm&type=5.

    We already use Ping in our SSO solution for people connecting off site am wondering what we need to change to comply with Salesforce MFA how to test – i.e. would be nice if we could set one sandbox environment to the conditions that will exist when this becomes mandatory and thoroughly test our SSO, and all integrations.

Add Comment