Multi-Factor Authentication

Multi-factor authentication (MFA) is a secure authentication method that requires users to prove their identity by supplying two or more pieces of evidence (or factors) when they log in. One factor is something the user knows, such as their username and password. Other factors include something the user has, such as an authenticator app or security key. By tying user access to multiple types of factors, MFA makes it much harder for common threats like phishing attacks and account takeovers to succeed.
Available in: both Salesforce Classic (not available in all orgs) and Lightning Experience
Available in: Essentials, Group, Professional, Enterprise, Performance, Unlimited, Developer, and Contact Manager Editions

MFA was formerly called two-factor authentication or 2FA.

Note

As an admin, you enable MFA through permissions or profile settings. Users register verification methods for MFA through their own personal settings. Registering more than one method is recommended.

As of February 1, 2022, Salesforce is requiring MFA for all users who log in to the Salesforce UI. For more information about this requirement, see Announcement of the Future Requirement to Enable Multi-Factor Authentication (MFA) and Salesforce Multi-Factor Authentication FAQ.

For more information about configuring MFA, see these Help articles: How to Roll Out Multi-Factor Authentication, the Admin Guide to Multi-Factor Authentication, and the Trailhead Module Secure Your Users’ Identity.

You can also watch these MFA-related videos:

Watch Video Demo Journey to MFA: Launch Multi-Factor Authentication | Salesforce

Watch Video Demo Lightning Login Overview (English Only)