Multi-Factor Authentication for Salesforce


  • Feature: Multi-Factor Authentication for Salesforce
  • When Required: February 1, 2022
  • Requires Configuration: Yes
  • Difficulty: Easy
  • Benefit: Increased Salesforce data security
Causeview and akaCRM


With the exponential growth into remote work environments and uptick in hacking and pfishing, it is critical for you to enhance the security of your Salesforce deployment. Salesforce aims to protect your data with the requirement of Multi-Factor Authentication (MFA). 

When is the MFA Deadline?

Salesforce is set to make MFA mandatory on February 1, 2022 and most organizations are preparing to make the move now. You won’t want to wait until the last moment to get MFA setup. Get MFA set up now to avoid the mad dash at the deadline. See Salesforce announcement.

Who does the MFA requirement affect? 

All internal users who log into Salesforce or Salesforce partner solutions will need to begin using MFA by the February 1, 2022 deadline. This will not affect your external users, such as those on your Experience Cloud sites (communities) or help portals. 

We already use Single Sign-On (SSO). Do we need MFA?


To put it simply, you will still be obligated with Salesforce to implement MFA by the 2/1/2022 deadline. However, Salesforce is allowing SSO clients to implement their own MFA outside of Salesforce.  

What this means is: Salesforce is allowing you to implement your SSO provider’s MFA solution, without also requiring a separate Salesforce MFA implementation. 

Keep in mind that if you have a combination of users - some using SSO and others not - you will still need to implement Salesforce MFA for those who do not use SSO.

Why Multi-Factor Authentication?

You may be most familiar with 2 Factor Authentication, or 2FA, which is actually a subset of Multi-Factor Authentication (MFA). While this does increase security, MFA focuses on two or more METHODS of authentication… more methods = more security. 

What verification methods are approved for MFA?

These methods DO work for MFA:

  1. Salesforce Authenticator mobile app
  2. Time-based one-time passcode (TOTP) authenticator apps
  3. Security keys that support WebAuthn or U2F
  4. Built-in authenticators (think: fingerprint or facial recognition)

These familiar methods DO NOT work for MFA:

  1. One-time passcodes sent via phone, text or email
  2. Security questions

What do you need to do?

All Salesforce clients should make sure MFA is enabled before the Feburary 2022 deadline. Refer to the 36 page Multi-Factor Authentication Quick Guide for Admins for details on how to enable.

How can akaCRM help?

If you don't have the time or experience to implement MFA on your own (see Quick Guide above), don't worry -- akaCRM is an experienced Salesforce partner. We’re ready to help you beat the rush to set up Multi-Factor Authentication! We have plans starting at $799 to take care of this for you. Check out our MFA PowerStart™ offerings!

Supporting your Salesforce and Conga success.

Find Us

akaCRM, a division of Strata Information Group (SIG)
3935 Harney Street, Suite 203
San Diego, CA  92110

Let's Talk

  • This email address is being protected from spambots. You need JavaScript enabled to view it.
  • (877) 928-3337
  • Schedule Free Call

PrivacyTerms of Use | Brand Guidelines | Login
Copyright © Strata Information Group, Inc. - All Rights Reserved