You might have heard Salesforce have announced a future requirement for all customers to enable MFA (Multi-Factor Authentication). This will take effect from February 1, 2022 and Salesforce are encouraging customers to start planning for this change now.
What is MFA?
MFA stands for Multi-Factor Authentication which means that to access a system, the user must present two or more pieces of evidence that proves they are who they say they are.
So when a user logs in, they must provide their username and password (which combined, count as one) and then verify this using something they have in their possession such as the Salesforce Authenticator app, where once set up, the user would just press a button to acknowledge the attempted login.
Protection of its customer’s data is of the Utmost importance to Salesforce and differing types of attacks are on the rise. On their own, Usernames and Passwords no longer provide sufficient protection to threats such as phishing attacks, especially as the number of remote workforces increase. This combined with the ease at which attackers can intercept Email and SMS authentication messages (which 2-Factor Authentication was based around), means that now is the time for MFA.
How do I Implement MFA?
Salesforce have released a Trailhead module detailing how to set up MFA functionality here, or if you require some assistance, you can book an appointment with one of our consultants here to help you plan the roll-out and make the introduction of MFA as seamless as possible.