Archives for January 2022

What Salesforce Customers Need to Know About Multi-Factor Authentication

It’s a new year and a new opportunity to strengthen your Salesforce org’s security. As it turns out, Salesforce agrees. On February 1st, Salesforce is requiring every customer to enable Multi-Factor Authentication for users accessing any Salesforce product interface. 

The good news is you and most users are probably already familiar with the security measure. Maybe your company was ahead of the curve and enabled Salesforce MFA for your org last year. If not, you probably already use MFA to access your bank account, social media accounts, and more in your day-to-day life. Implementing changes to your org isn’t always fun or easy, but this one is important. Digital security is an evolving threat that we all face, and MFA is an effective way to enhance login security and protect your data. 

What does Multi-Factor Authentication look like?

MFA increases protection for users against phishing attacks, credential stuffing, and account takeovers. During the login process, MFA requires users to enter two or more pieces of evidence (or factors) to prove their identity. In addition to a username and password to log in – the most common form of identity factors – MFA requires a device the user has in their physical possession, such as an authenticator app or security token. A familiar example of how MFA works is withdrawing money from an ATM – your pin is your known password and your debit card is the physical key. 

Why enabling MFA is important for your Salesforce org

Cyber-attacks and the exploitation of consumers are on the rise, and it’s more important than ever for businesses to understand evolving global security risks. The widespread transition to remote work environments and, consequently, the sharing of user logins, have only exacerbated these risks. MFA is a simple and effective way to protect Salesforce users and strengthen data security. 

How MFA will impact Salesforce customers working with Salesforce partners 

Sharing user login information has always been the easiest way for Salesforce partners to access an org, but the enforcement of MFA will soon make that a thing of the past. This change may sound like a nuisance, but sharing logins creates more opportunities for unauthorized account access that puts your data at risk. MFA will only more your org more secure. 

As a Salesforce partner, we consider the MFA requirement to be an excellent opportunity for customers to reassess data security and strengthen security measures. As a best practice, we recommend all customers provide every person who touches your org with their own license. 

Is your org ready to enable MFA on February 1st? If you’re looking for more clarity on how your partners should be navigating MFA, please contact us today.