MFA ENABLEMENT IN SALESFORCE
Ciklum India
We develop Digital Solutions for Fortune 500 and fast-growing organisations alike around the world.
The Context:
Multi-factor authentication (MFA) is a powerful secure authentication method that has two steps (or factors) to prove users’ identities when they attempt to log in. The first factor is information known to users, like username and password. The second is a verification method that the user has in their possession, like an authenticator application or a security key. So multi-factor authorization makes it a lot harder for fraudsters to get access to your Salesforce data.?
Approach:
Salesforce has several very convenient and innovative solutions for MFA:
Salesforce Authenticator mobile application
When someone tries to log in to your account, you get a notification on the phone with the details of the activity, such as location, device, user, and service.
If everything looks good and you have no worries – tap the Approve button. If you don’t recognize this activity – tap the Deny button and the login attempt will be blocked.
Third-party time-based one-time passcode (TOTP) authenticator apps.
These apps generate random, temporary verification codes based on the appropriate algorithm. The user gets this code on the phone or email and then they need to type it into a specific field while logging in.
Once Customer registers, when they login below screen is displayed:
Universal Second Factor (U2F) security key.
Instead of entering one-time passwords or using the Salesforce Authenticator application, users can insert their U2F security key into the appropriate port on their computer (usually their USB port) to complete verification.
How to enable MFA in Salesforce
Below are the steps to enable and assign MFA to appropriate users.
领英推荐
Prepare Your Users for Multi-Factor Authentication
Engage Users with Communication and Promotional Campaigns
a. On-Demand Training: Create resources, such as a video, that users can access on their own time. Or, ask users to complete the User Authentication module in Trailhead.
b. In-Person Training: Set up real-time training opportunities, like webinars or lunch-and-learn sessions.
a. Deflect calls to your support team by creating self-help materials, including troubleshooting information for the most likely problems that users might encounter on your launch day.
b. Plan to hold office hours or to set up a dedicated, onsite help desk for the day. Make sure the people who staff these resources are trained and can access your MFA troubleshooting documentation. If you do a dry run simulating your launch day, the actual event should go more smoothly.
c. Consider establishing an SOS process for execs and business users who need priority help if they run into problems.
?
References:
Author: Prasant Satpathy
Visit Us:?corp.infogen-labs.com?