Loading
Salesforce now sends email only from verified domains. Read More
Identify Your Users and Manage Access
Table of Contents
Filter by (0)Add
Select Filters

          No results
          No results
          Here are some search tips

          Check the spelling of your keywords.
          Use more general search terms.
          Select fewer filters to broaden your search.

            Search all of Salesforce Help
            Search all of Salesforce Help
            Monitor Access to Your Salesforce Orgs and Experience Cloud Sites

            You are here:

            1. Salesforce Help
            2. Docs
            3. Identify Your Users and Manage Access

            Monitor Access to Your Salesforce Orgs and Experience Cloud Sites

            Monitor access to your Salesforce orgs and Experience Cloud sites by reviewing and managing who’s logging in and how they're verified. View SAML and OpenID Connect authentication request errors and success. And track and monitor which devices are accessing your orgs and sites.

            Required Editions

            Available in: All Editions
            • Monitor Login History
              As an admin, you can monitor all attempts to log in to Salesforce and to your Experience Cloud sites. The Login History page shows up to 20,000 records of user logins for the past 6 months. To see more records, download the information to a CSV or GZIP file.
            • Login History Report Codes
              The Login History Report includes a Login Status Column that displays codes. Each code identifies a unique event that happens during login. The following list describes what each code means.
            • Identity Verification Overview
              Identity verification is when a user provides evidence, called a verification method, to confirm they’re the true owner of an account. Users verify their identity to gain certain access privileges in Salesforce, such as logging in, activating a new device, or viewing a sensitive resource. Depending on the use case, identity verification is referred to as multi-factor authentication (MFA), device activation, or step-up authentication.
            • SMS Identity Verification
              Understand how and when users can verify their identity with one-time passcodes sent via text messages (SMS).
            • Device Activation
              By adding extra verification to unfamiliar login attempts, device activation keeps your orgs and Experience Cloud sites secure.
            • Enable Salesforce to Send Email
              Before Salesforce can send email on behalf of your users, domain-level and user-level verification is required. Salesforce admins verify the domains that you own, and users verify their email and return email addresses. To help users, admins can identify users with unverified emails and initiate the verification process.
            • Customize the Welcome Email for Internal Users
              For more control over branding, customize the welcome email that internal users, such as employees and contractors, receive when they first access your Salesforce org. To help users meet the email verification requirement, include a verification link in your template.
            • Define Identity Verification Settings for Your Orgs and Experience Cloud Sites
              Define how and when users verify their identity for an entire org or Experience Cloud site.
            • Monitor Identity Verification History
              Use Identity Verification History to monitor and audit up to 20,000 records of your org users’ identity verification attempts from the past 6 months. For example, when a user successfully provides a time-based, one-time password (TOTP) as proof of identity during multi-factor authentication (MFA), that information is recorded in Identity Verification History.
            • See How Your Users Verify Their Identity
              To see who's using which identity verification methods, customize a list view of your users or create an Identity Verification Methods report.Use custom reports to spot patterns in identity verification behavior for your org or Experience Cloud site.
            • Use the Identity Provider Event Log
              When you're using Salesforce as an identity provider, use the identity provider event log to see information about login attempts. For example, see why login attempts failed so you can troubleshoot problems with your single sign-on (SSO) configuration. The log shows you the 50 most recent login attempts. To view more, create a custom report.
            • Mobile Device Tracking
              Mobile Device Tracking gives you greater control over your data security. You can track and monitor which mobile devices access your Salesforce org. You can revoke access from lost and stolen devices. And you can build processes and policies to define how devices access your org, such as requiring an approval request from the device before authorizing a login.
            • Monitor Apps with Reports
              After you set up connected apps for your Identity users, you can run reports to monitor the usage of connected apps throughout your org.
            • Platform Integration User
              The Platform Integration User, sometimes called the System User, is an internal, API-only user that integrates features across Salesforce. This user allows Salesforce applications to securely access data on different properties.
             
            Loading
            Salesforce Help | Article