When a system asks for more than one way for authentication, it's called Multi-Factor Authentication. Multi-factor authentication (MFA) is a secure authentication method that requires users to prove their identity by supplying two or more pieces of evidence (or factors) when they log in.
One factor is something the user knows, such as their username and password. Other factors include something the user has, such as an authenticator app or security key. By tying user access to multiple types of factors, MFA makes it much harder for common threats like phishing attacks and account takeovers to succeed. Note: MFA was formerly called two-factor authentication or 2FA.
How to enable MFA?
Enabling MFA is too simple and you can follow the below steps for that. You can enable “Manage Multi-Factor Authentication in User Interface” on your profile or permission set under system permission.
Create a permission set called “MFA Permission Set”.
Go to the “FMA Permission set” and go to system permission and click “Manage Multi-Factor Authentication in User Interface”.
Assign the permission set to the user.
What will happen when a user will log in to salesforce who has MFA enabled?
When a user login to salesforce org, system will prompt to have verification code, there are different verification methods as below:
Salesforce Authentication app
3rd Party authentication app like google authentication, Microsoft authentication app
Security Key like Yubico's yubikey, Goggle's Titan Security Key
You can refer below link for more understanding:
https://salesforce.vidyard.com/watch/O3rQLAtVX0Z4lLjdOvVFYQ
No comments:
Post a Comment