Loading
Salesforce now sends email only from verified domains. Read More
Identify Your Users and Manage Access
Table of Contents
Filter by (0)Add
Select Filters

          No results
          No results
          Here are some search tips

          Check the spelling of your keywords.
          Use more general search terms.
          Select fewer filters to broaden your search.

            Search all of Salesforce Help
            Search all of Salesforce Help
            See How Your Users Verify Their Identity

            You are here:

            1. Salesforce Help
            2. Docs
            3. Identify Your Users and Manage Access

            See How Your Users Verify Their Identity

            To see who's using which identity verification methods, customize a list view of your users or create an Identity Verification Methods report.Use custom reports to spot patterns in identity verification behavior for your org or Experience Cloud site.

            Required Editions

            Available in: Essentials, Contact Manager, Group, Professional, Enterprise, Performance, Unlimited, and Developer Editions
            User Permissions Needed
            To monitor user identity verification methods and to view and customize the Identity Verification Methods report: Manage multi-factor authentication in User Interface
            To access the Identity Verifications Methods report from the Administrative Reports folder in Reports: View Setup and Configuration
            To create custom reports and dashboards about identity verification history: Manage multi-factor authentication in API

            Use this information to track your users’ identity verification methods and the level of trust for those methods. For example, an admin or an end user can register a mobile number. Information about these methods is exposed in the Salesforce user interface, the API, identity services, and so on. Salesforce uses information about identity verification methods in various services, such as passwordless login.

            To see identity verification methods in the Identity Verification Methods report:

            1. From the App Launcher, enter Reports, and then select Reports.
            2. Click New Report.
            3. For the report type, select Identity Verification Methods from the Administrative Reports group.
            4. Customize the report as needed.

            For more insight into the identity verification history of your org or Experience Cloud site, create custom reports and dashboards. For example, create a report that shows the identity verification method registration by profile. Or create a dashboard with charts that show method registration and verification challenges by the org policy that triggered them. For more information, see Reports and Dashboards.

            See Also

            Create or Edit Registered Identity Verification Method in a Users List View

            1. From Setup, in the Quick Find box, enter Users, and then select Users.
            2. Create or edit a view, and add one or more of these fields.
              Field description
              Admin Trusted Mobile Number

              Indicates whether the user has a mobile phone number that a Salesforce admin added or the user self-registered. Salesforce can text a verification code to that number if verifying identity for authenticator apps but not for passwordless login.

              As a security measure, if users add or update a mobile number in Advanced User Details, they must log in again to verify their identity. As a result, unsaved changes in the app are lost. To disable this security measure, contact Salesforce Support.
              Built-In Authenticator Indicates whether the user has registered a built-in authenticator such as Touch ID, Face ID, or Windows Hello. The user can verify identity with a biometric reader, such as a fingerprint, iris, or facial recognition scanner built into their device. Or in some cases, built-in authenticators confirm a user’s identity with a PIN or password set up on their device.
              One-Time Password App Indicates whether the user has connected an authenticator app that generates temporary verification codes, also known as time-based one-time passwords (TOTP). The user can verify identity by entering a code generated by the app.
              Salesforce Authenticator Indicates whether the user has connected to the Salesforce Authenticator mobile app. The user can verify identity by approving a notification sent to the app.
              Temporary Code Indicates whether the user has a temporary verification code. Admins or non-admin users with the Manage multi-factor authentication in User Interface permission generate temporary codes and set when the code expires.
              U2F Security Key Indicates whether the user has registered a U2F-compatible security key. The user can verify identity by inserting the security key into a USB or Lightning port.
              User Verified Email Indicates whether the user's email address is verified. See User Email Verification for more information.
              User Verified Mobile Number Indicates whether the user self-registered and verified a mobile phone number. Salesforce can text a verification code to the user at that number.

            You can also see a user's registered identity verification methods by using the TwoFactorMethodsInfo object.

             
            Loading
            Salesforce Help | Article