Loading

Disconnect MFA & Generate Temporary Codes (Essentials/Starter)

Publiceringsdatum: Nov 18, 2025
Beskrivning

This article explains how system administrators for Salesforce Essentials Edition and Salesforce Starter can perform two key operations:

  • Disconnecting a user's MFA (multi-factor authentication) verification method 
  • Generating a temporary verification code.

Use these steps if a user loses their device or needs access.

Lösning

▼To Disconnect an MFA Verification Method

 

Note: If a user accidentally deletes their MFA authenticator app or changes their smartphone, their MFA connection must be disconnected in Salesforce. This guide outlines the steps for a system administrator to disconnect a user's MFA.

Examples of when this disconnection is necessary include:

  • The user accidentally deleted the MFA authenticator app.

  • The user removed the Salesforce account registration from the MFA authenticator app.

  • The user wants to change their multi-factor authentication (MFA) verification method.

  • The user changed mobile devices without enabling the backup feature in Salesforce Authenticator.

  • The user wants to switch to a new mobile device (e.g., lost device, old device is broken).

  • The "Verify Your Mobile Device" screen appears, but the user does not know or has forgotten which authenticator app was connected.

 

  1. Log in to Salesforce as a system administrator.

    1. If using Salesforce Essentials Edition: Click the gear icon in the upper right, then click [Setup].

    2. If using Salesforce Starter: Click the gear icon in the upper right, then click [Open Advanced Setup].

  3. In the Quick Find box on the left, enter "Users" and click [Users].

  4. Identify the target user's "Name". In the Setup search box at the top, enter the user's "Name" to search, and click the user's link when it appears.

  5. On the user's detail page, the MFA connection status is displayed on the left side. In the sample below, Salesforce Authenticator is connected. Click [Disconnect] to remove the MFA registration.

    • Note: If other MFA methods are registered, click [Disconnect] or [Remove] as needed.

 

If using an Built-in Authenticator, the registration status is listed in the "Built-in Authenticator" section at the bottom of the user detail record. Click [Del] to disconnect MFA.

 

▼To Generate a Temporary Verification Code

 

  1. Log in to Salesforce as a system administrator.

    1. If using Salesforce Essentials Edition: Click the gear icon in the upper right, then click [Setup]. 

    2. If using Salesforce Starter: Click the gear icon in the upper right, then click [Open Advanced Setup].

  3. In the Quick Find box on the left, enter "Users" and click Users.

  4. Identify the target user's "Name". In the Setup search box at the top, enter the user's "Name" to search, and click the user's link when it appears.

  5. On the user's detail page, click [Generate] next to "Temporary Verification Code (Expires in 1-24 hours)" on the left side.

    • Note: Authenticate if prompted for identity verification.

  6. Select the code's expiration time and click [Generate Code].

  7. Share the "Temporary Code" displayed on the screen with the user, then click [Done].

    • Note: The generated temporary verification code will not be emailed or otherwise automatically sent to the user.

Knowledge-artikelnummer

005228222

 
Laddar
Salesforce Help | Article