Closed Bug 1716832 Opened 3 years ago Closed 3 years ago

Enable 2-factor authentication for CA Community Licenses

Categories

(CA Program :: Common CA Database, task)

Product:
CA Program
Component:
Common CA Database
Type:
task

Tracking

(Not tracked)

Status:
RESOLVED WONTFIX

People

(Reporter: kathleen.a.wilson, Assigned: poonam)

Details

I received a phone call from someone at Salesforce saying that all Salesforce logins will be required to be 2-factor auth by February 2022. So I did some research...

https://admin.salesforce.com/blog/2021/everything-admins-need-to-know-about-the-mfa-requirement
"Beginning February 1, 2022, Salesforce will require customers to enable multi-factor authentication (MFA) in order to access Salesforce products."
... "Enable MFA for users who log in to Salesforce products (including partner solutions) through the user interface."

https://help.salesforce.com/articleView?id=000352937&type=1&mode=1
See: 'Is MFA required for customer and partner Experience Cloud sites?'
"MFA is not required for your company's Experience Cloud sites, employee communities, help portals, or e-commerce sites/storefronts. You don't have to enable MFA for external users who access these sites. You can identify external users by these types of licenses:

  • Community licenses"

As for CA Community Users, it now sounds like we do have to enable 2-factor authentication for them as well.

https://salesforce.stackexchange.com/questions/70272/two-factor-authentication-for-community-users/113371#113371
"Two-Factor Authentication is not available for users with a Partner Community or Customer Community license. ... However, there is a no-code workaround: you can implement Two-Factor Authentication for Community Users by creating a custom Login Flow. "

Priority: P2 → P4
Summary: Move all CA Community Logins to 2-factor authentication - by Feb 2022 → Enable 2-factor authentication for CA Community Licenses
Whiteboard: [ccadb-enhancement] → [ccadb-roadmap] 2022 - ???
Whiteboard: [ccadb-roadmap] 2022 - ??? → [ccadb-roadmap] TBD
Whiteboard: [ccadb-roadmap] TBD → [ccadb-roadmap] 2022-Q1
Whiteboard: [ccadb-roadmap] 2022-Q1 → [ccadb-roadmap] 2022-Q1 - January
Assignee: nobody → poonam
Status: NEW → ASSIGNED

MFA is required for all internal users by Feb 2022. We already have it enabled for all our internal users. MFA is not required for customer community users.

https://help.salesforce.com/s/articleView?id=000352937&type=1
~~
Is MFA required for customer and partner Experience Cloud sites?
MFA is not required for your company's Experience Cloud sites, employee communities, help portals, or e-commerce sites/storefronts. You don't have to enable MFA for external users who access these sites. You can identify external users by these types of licenses:

  • Community licenses
  • External Identity licenses
  • Employee Community licenses (either a Salesforce Platform license paired with a Company Community for Lightning Platform permission set license or a legacy Company Community license)
    ~~

This is in agreement with Comment #1, so I will close this item as WONTFIX for now.

Status: ASSIGNED → RESOLVED
Closed: 3 years ago
Resolution: --- → WONTFIX
Whiteboard: [ccadb-roadmap] 2022-Q1 - January → [ccadb-roadmap] not currently needed
Product: NSS → CA Program
Priority: P4 → --
Whiteboard: [ccadb-roadmap] not currently needed
You need to log in before you can comment on or make changes to this bug.