Loading
Salesforce now sends email only from verified domains. Read More
Identify Your Users and Manage Access
Table of Contents
Filter by (0)Add
Select Filters

          No results
          No results
          Here are some search tips

          Check the spelling of your keywords.
          Use more general search terms.
          Select fewer filters to broaden your search.

            Search all of Salesforce Help
            Search all of Salesforce Help
            Support Your Multi-Factor Authentication Implementation for Salesforce Orgs

            You are here:

            1. Salesforce Help
            2. Docs
            3. Identify Your Users and Manage Access

            Support Your Multi-Factor Authentication Implementation for Salesforce Orgs

            After multi-factor authentication (MFA) is enabled, it introduces some new admin responsibilities to support users and maintain operations. Common tasks involve helping users solve verification method or authentication issues, including account lockouts. It’s also valuable to monitor MFA usage patterns over time for insights such as the most and least used verification methods, or recurring login problems. And consider MFA optimizations that can improve the user experience. Need help? You can assign MFA management permissions to trusted users.

            Required Editions

            Available in: both Salesforce Classic and Lightning Experience
            Available in: all editions
            • Delegate MFA Management Tasks for Salesforce Orgs
              Set up Salesforce admins, and trusted users who aren’t admins, to provide support for your org’s multi-factor authentication (MFA) implementation. For example, suppose you want your company’s Help Desk staff to assist admins by generating temporary verification codes for users who have lost or forgot their MFA verification methods. Assign the Manage Multi-Factor Authentication in User Interface user permission to all admins and anyone else who is supporting MFA, so they can generate codes and help end users with other MFA tasks.
            • Resolve MFA Access Issues for Your Users (Salesforce Orgs)
              As a Salesforce admin, part of your role is managing and maintaining user access. With multi-factor authentication (MFA) in effect for your org, it’s important to know how to resolve MFA-related access issues that users can encounter. There are three likely scenarios. A user doesn’t have access to their MFA verification method and can’t log in. A user loses or replaces a verification method and must register a new one. And the connection between a user’s registered verification method and their Salesforce account stops working. Use temporary verification codes to allow users to regain access immediately. When dealing with a broken connection or a missing verification method, revoke the connection and help the user set up a new method.
            • Monitor MFA Usage in Your Salesforce Org
              Monitor multi-factor authentication (MFA) usage patterns and metrics to get a good understanding of your users’ experiences. There are several tools for monitoring and reporting on MFA usage patterns in your org. Options include the Lightning Usage App, MFA list views and the Identity Verification Methods report, and an MFA dashboard from Salesforce Labs
            • Refine the MFA User Experience for Salesforce Orgs
              Plan periodic reviews of your multi-factor authentication (MFA) implementation to verify it’s meeting your users’ needs. Consider enhancing the MFA user experience by enabling Lightning Login.
             
            Loading
            Salesforce Help | Article