What SalesForce expects from Multi Factor Authentication

SalesForce recently mandated that all SalesForce logins be achieved with Multi Factor Authentication. There are two main reasons behind this decision that SalesForce made.

The first reason is to make sure that all SalesForce customers are protected from vicious cyber attacks. Federal agencies have been pushing for such measures for years, however, CISA recently issued a very clear framework for all companies and organizations. Passwords are inherently insecure due to their static nature, thus having Multi Factor Authentication, provides a secure layer to mitigate that threat vector. The most secure way to secure your SalesForce account, is to adopt Passwordless Multi Factor Authentication.

The second motive that SalesForce has with this measure was to prevent account sharing. Many SalesForce customers would buy seats that would have credentials shared across many users. The way to deal with this new situation so as to avoid extra license fees would be to utilize products like the SAASPASS Sharing Center. The cost savings generated can be very significant for any organization with more than 10 users, however there are no limitations regarding the number of seats that a Salesforce and SAASPASS customer has.

Overall, this measure that SalesForce has instituted is a positive step towards securing digital assets, yet it’s not enough. Cyber criminals and hackers usually go for the “lowest hanging fruit” meaning that if an organization has secured their SalesForce but left another product like their AWS or Email unprotected, they will try to infiltrate through those services carrying out an “island hop” attack. It’s important that organizations secure all of their services with Passwordless Multi Factor Authentication, making sure that they are safe from such attacks.