Easily verify your identity when logging in from outside a trusted IP range. Verifying your identity helps prevent unauthorized access to your Salesforce account.
|Available in: Both Salesforce Classic and Lightning Experience|
Activating Your Computer
When you log in to Salesforce from a browser or application that we don’t recognize, and your IP address is outside a trusted IP range, you’re prompted to verify your identity.
Salesforce asks you to verify your identity using one of the following verification methods.
- Salesforce Authenticator Mobile App
- If you connected the Salesforce Authenticator app (version 2 or later) to your account, use the app to verify your Salesforce account activity. Salesforce sends a push notification to your mobile device. When you get the notification, open the app, verify the activity details, and tap Approve on your mobile device.
- U2F Security Key
- If you registered a U2F security key that is associated with your account, use the security key to verify your Salesforce account activity. Salesforce prompts you to insert the security key into your computer’s USB port.
- One-Time Password Generator App
- If you connected an authenticator app (like Salesforce Authenticator or Google Authenticator) to your account, use the mobile app to generate a verification code. This type of code is sometimes called a “time-based one-time password.” The code value changes periodically.
- SMS Text Message
- If you have a verified mobile number associated with your account, you receive a verification code in a text message sent to your phone. If you don’t have a verified mobile number, you’re prompted to register one when you log in to Salesforce. Registering your mobile phone number verifies it and enables this method when you’re challenged in the future. If your mobile number changes, contact your Salesforce admin.
- Salesforce sends a verification code in an email to the address associated with your account. The code expires after 24 hours.
The identity verification page includes a “Don’t ask again” option, which is selected by default. If you leave the option selected and click Verify
, Salesforce doesn’t ask you to verify your identity again when you log in from the same browser or application. Exceptions are if you manually clear browser cookies, set your browser to delete cookies, or browse in private or incognito mode. In these cases, you’re prompted to verify your identity every time you log in to Salesforce from an IP address that’s not defined as trusted for your org.
When you log in from a public or shared device, deselect Don’t ask again
. Deselecting this option ensures that subsequent users have to verify their identity when they log in from that device.