Loading
Salesforce now sends email only from verified domains. Read More
Identify Your Users and Manage Access
Table of Contents
Filter by (0)Add
Select Filters

          No results
          No results
          Here are some search tips

          Check the spelling of your keywords.
          Use more general search terms.
          Select fewer filters to broaden your search.

            Search all of Salesforce Help
            Search all of Salesforce Help
            Enable Security Keys for Identity Verification in Salesforce Orgs

            You are here:

            1. Salesforce Help
            2. Docs
            3. Identify Your Users and Manage Access

            Enable Security Keys for Identity Verification in Salesforce Orgs

            Allow your users to verify their identity for multi-factor authentication (MFA) or device activation with WebAuthn (FIDO2) or Universal Second Factor (U2F) security keys. After you enable this method, users can register a security key so it’s connected to their Salesforce account. Security keys are phishing-resistant. Enabling and requiring them is a security best practice.

            Required Editions

            Available in: both Salesforce Classic and Lightning Experience
            Available in: all editions
            User Permissions Needed
            To enable security keys:

            Customize Application

            AND

            Manage Users

            In orgs created in Summer ’25 and later, this setting is enabled by default.

            1. From Setup, in the Quick Find box, enter Identity Verification, and then select Identity Verification.
            2. Select Let users verify their identity with a physical security key (U2F or WebAuthn).
            3. Save your changes.

            See Also

             
            Loading
            Salesforce Help | Article