When a user's Profile has "Session Security Level Required at Login" set to "High Assurance," asynchronous Apex operations will fail. Asynchronous operations that are blocked include Apex future methods, Apex callouts, and getContentAsPDF().
The "High Assurance" setting in a Profile refers to the requirement configured in Setup > Session Settings > Session Security Levels. This setting may have "Multi-Factor Authentication" or other options set to High Assurance. These High Assurance session settings are intended for synchronous and UI-based processing only — they do not support asynchronous processing contexts such as Apex future jobs, batch jobs, or scheduled jobs.
If Multi-Factor Authentication (MFA) is required, use the "Multi-Factor Authentication for User Interface Logins" system permission on the user's Profile or Permission Set instead of setting "High Assurance" under the Profile's "Session Security Level Required at Login." For this workaround to function correctly, the "Session Security Level Required at Login" must be set to None.
000392426

We use three kinds of cookies on our websites: required, functional, and advertising. You can choose whether functional and advertising cookies apply. Click on the different cookie categories to find out more about each category and to change the default settings.
Privacy Statement
Required cookies are necessary for basic website functionality. Some examples include: session cookies needed to transmit the website, authentication cookies, and security cookies.
Functional cookies enhance functions, performance, and services on the website. Some examples include: cookies used to analyze site traffic, cookies used for market research, and cookies used to display advertising that is not directed to a particular individual.
Advertising cookies track activity across websites in order to understand a viewer’s interests, and direct them specific marketing. Some examples include: cookies used for remarketing, or interest-based advertising.