Newer Version Available

This content describes an older version of this product. View Latest

Multi-Factor Authentication

Multi-factor authentication (MFA) is an effective way to increase protection for user accounts against common threats like phishing attacks, credential stuffing, and account takeovers. As a Salesforce admin, amplify your org’s security by requiring an extra level of authentication for every user login. You can also require MFA when a user meets certain criteria, such as attempting to view reports or access a connected app.
Available in: both Salesforce Classic (not available in all orgs) and Lightning Experience
Available in: Essentials, Group, Professional, Enterprise, Performance, Unlimited, Developer, and Contact Manager Editions

Multi-factor authentication was formerly called two-factor authentication or 2FA.

Note

With MFA, users are required to prove they’re who they say they are by providing two or more pieces of evidence—or factors—when they log in. One factor is the user’s username and password combination. The requirement for additional factors is satisfied through the use of a verification method that the user has in their possession, such as an authenticator app or a Universal Second Factor (U2F) security key. As an admin, you enable MFA through permissions or profile settings. Users register verification methods for MFA through their own personal settings. Registering more than one method is recommended.

For more information, see the following Help articles, the Admin Guide to Multi-Factor Authentication, and the Trailhead Module Secure Your Users’ Identity.

You can also watch these MFA-related videos:

Watch Video Demo Set Up a Multi-Factor Authentication Requirement for Your Org

Watch Video Demo Lightning Login Overview (English Only)