Multi-Factor Authentication (MFA) Enforcement Roadmap

Per the Salesforce Trust and Compliance Documentation, Salesforce customers are contractually required to use multi-factor authentication (MFA) when accessing Salesforce products, whether by direct logins or single sign-on (SSO). This requirement went into effect on February 1, 2022. To help customers satisfy the MFA requirement, Salesforce automatically enabled and enforced MFA for users who log in directly with a username and password. These actions were carried out on a product-by-product basis between 2021 and 2024. The Salesforce program to drive MFA adoption concluded with the Summer '24 release. This roadmap is complete and closed to further updates.

For full details about the contractual MFA requirement, see the Salesforce MFA FAQ.

MFA Enforcement Schedule

Product	MFA Auto-Enablement Date	MFA Enforcement Date	Notifications and Details
Products built on the Salesforce Platform	Auto-enablement was completed in Spring '24 (January-February 2024)	The MFA non-compliance notification model was released in Summer '24. See the footnote for more details.	Article Release Note Email Notification
B2C Commerce Cloud	Enforcement is in effect as of May 2022		Email Notification Release Note
ClickSoftware— Field Service Edge (FSE)	Enforcement is in effect as of June 2022		Email Notification
ClickSoftware— Service Optimization V8 Cloud	Enforcement is in effect as of June 2022		Email Notification
Heroku	Enforcement is in effect as of January 2023		Email Notification
Marketing Cloud Engagement (powered by Email, Messaging, and Journeys)	Enforcement is in effect as of June 2022		Email Notification Release Note
Marketing Cloud Intelligence (powered by Datorama)	Enforcement is in effect as of October 2022		Email Notification
Marketing Cloud Social	Enforcement is in effect as of November, 2022		Email Notification
MuleSoft Anypoint Platform	Enforcement is in effect as of August 2023		Email Notification Article
Quip products	Enforcement is in effect as of May 2022		Email Notification
Tableau Cloud	Enforcement is in effect as of July 2023		Email Notification

* MFA enforcement for products built on the Salesforce Platform

Thanks to the partnership of our customers, the program to automatically enable MFA for products built on the Salesforce Platform has resulted in a high rate of MFA adoption across Salesforce orgs. Because of this success, and wanting to be respectful of our customers’ valuable time and resources, we have shifted to a non-compliance notification model instead of technically enforcing MFA for production orgs. For more information, see Salesforce Admins Get In-App Reminders If MFA is Turned Off in the Salesforce Summer '24 Release Notes.

Date	Revisions
June 3, 2024	Refactored this document to reflect that MFA is now a default part of the login experience for all Salesforce Clouds. With the completion of Summer '24 MFA auto-enablement actions for products built on the Salesforce Platform, the MFA adoption program is concluded.
2021 - 2024	The revision history for this article has been archived.

Multi-Factor Authentication (MFA) Enforcement Roadmap

* MFA enforcement for products built on the Salesforce Platform

Revision History

General Information

Required Cookies

Functional Cookies

Advertising Cookies

General Information

Required Cookies

Functional Cookies

Advertising Cookies

Cookie List