I received a phone call from someone at Salesforce saying that all Salesforce logins will be required to be 2-factor auth by February 2022. He said that this includes the community licenses.
Bug 1716832 Comment 0 Edit History
Note: The actual edited comment in the bug view page will always show the original commenter’s name and original timestamp.
I received a phone call from someone at Salesforce saying that all Salesforce logins will be required to be 2-factor auth by February 2022. So I did some research... https://admin.salesforce.com/blog/2021/everything-admins-need-to-know-about-the-mfa-requirement "Beginning February 1, 2022, Salesforce will require customers to enable multi-factor authentication (MFA) in order to access Salesforce products." ... "Enable MFA for users who log in to Salesforce products (including partner solutions) through the user interface." https://help.salesforce.com/articleView?id=000352937&type=1&mode=1 See: 'Is MFA required for customer and partner Experience Cloud sites?' "MFA is not required for your company's Experience Cloud sites, employee communities, help portals, or e-commerce sites/storefronts. You don't have to enable MFA for external users who access these sites. You can identify external users by these types of licenses: - Community licenses" So it looks like we already meet the requirement, and just need to double-check that all of our internal users are actually using 2-factor auth (which they are supposed to be doing). As for CA Community Users, we should enable them to use 2-factor auth if they want to. (not sure if Salesforce provides this ability)
I received a phone call from someone at Salesforce saying that all Salesforce logins will be required to be 2-factor auth by February 2022. So I did some research... https://admin.salesforce.com/blog/2021/everything-admins-need-to-know-about-the-mfa-requirement "Beginning February 1, 2022, Salesforce will require customers to enable multi-factor authentication (MFA) in order to access Salesforce products." ... "Enable MFA for users who log in to Salesforce products (including partner solutions) through the user interface." https://help.salesforce.com/articleView?id=000352937&type=1&mode=1 See: 'Is MFA required for customer and partner Experience Cloud sites?' "MFA is not required for your company's Experience Cloud sites, employee communities, help portals, or e-commerce sites/storefronts. You don't have to enable MFA for external users who access these sites. You can identify external users by these types of licenses: - Community licenses" So it looks like we already meet the requirement, and just need to double-check that all of our internal users are actually using 2-factor auth (which they are supposed to be doing). As for CA Community Users, it would be good to enable them to use 2-factor auth if they want to. https://salesforce.stackexchange.com/questions/70272/two-factor-authentication-for-community-users/113371#113371 "Two-Factor Authentication is not available for users with a Partner Community or Customer Community license. ... However, there is a no-code workaround: you can implement Two-Factor Authentication for Community Users by creating a custom Login Flow. " So, this sounds like a bigger project that would need to be considered as a Roadmap item.
I received a phone call from someone at Salesforce saying that all Salesforce logins will be required to be 2-factor auth by February 2022. So I did some research... https://admin.salesforce.com/blog/2021/everything-admins-need-to-know-about-the-mfa-requirement "Beginning February 1, 2022, Salesforce will require customers to enable multi-factor authentication (MFA) in order to access Salesforce products." ... "Enable MFA for users who log in to Salesforce products (including partner solutions) through the user interface." https://help.salesforce.com/articleView?id=000352937&type=1&mode=1 See: 'Is MFA required for customer and partner Experience Cloud sites?' "MFA is not required for your company's Experience Cloud sites, employee communities, help portals, or e-commerce sites/storefronts. You don't have to enable MFA for external users who access these sites. You can identify external users by these types of licenses: - Community licenses" As for CA Community Users, it now sounds like we do have to enable 2-factor authentication for them as well. https://salesforce.stackexchange.com/questions/70272/two-factor-authentication-for-community-users/113371#113371 "Two-Factor Authentication is not available for users with a Partner Community or Customer Community license. ... However, there is a no-code workaround: you can implement Two-Factor Authentication for Community Users by creating a custom Login Flow. "