Increased risk of cyber attacks and hacking attempts
With the substantial increase of working from different locations in the covid pandemic and the increased risk of cyber attacks and hacking attempts, Salesforce has chosen a path towards a mandatory login protocol to improve safety.
What is Multi-factor authentication?
Multi-factor authentication (MFA) is a powerful secure authentication method that has two steps (or factors) to prove users’ identities when they attempt to log in. The first factor is information known to users, like username and password. The second is a verification method that the user has in their possession, like an authenticator app or a security key. So multi-factor authorization makes it a lot harder for fraudsters to get access to your Salesforce data.
How to enable MFA in Salesforce
If your company doesn’t use SSO then the admin has to configure the following steps below:
- Navigate to Setup -> Session Settings -> add the Multi-factor Authentication to the right column -> click Save.
- Go to Setup -> Permission Sets -> click New -> enter the Permission Set name -> click Save.
- Find System Permissions in the System section -> click Edit -> enable the “Multi-Factor Authentication for User Interface Logins” checkbox -> click Save.
- Assign the Permission set to the appropriate users.
Once you have Salesforce MFA, your users’ data will be protected and even if the login credentials are stolen, fraudsters still won’t be able to log in because of the additional protection level.