In today’s world, organizations more concentrate on increase in security measures to protect their systems and data, which is one of the important reason behind two-factor authentication development. Using two-factor authentication, organizations not only can prevent against security hacks but also from unauthorized access. It give more secure and reliable organizations system. Businesses are also need to consider key factors that could impact user adoption for it. In this blog we will take a look at how organizations can do this into an effective user experience as well security practices.
-> Two Factor Authentication:-
Two-factor authentication (also known as 2FA) is a method of confirming a user’s claimed identity by utilizing a combination of two different components (Password + security token). When a user logs in from outside a trusted IP range and uses a browser or app we don’t recognize, the user is challenged to verify identity. To verify identity different methods are available with user wise priority. The methods are:
-> Push notification or location-based automated verification with the Salesforce Authenticator mobile app (version 2 or later) which are connected to the user’s account.
-> Verification via a U2F security key registered with the user’s account.
-> Verification code generated by a mobile authenticator app connected with user’s account.
-> Verification code sent via SMS or email to the user’s verified mobile phone or email address respectively.
Once the user is logged in from a browser or app it will not prompt again for verification code, unless
-> User manually deselect ‘Don’t ask again’ at time of log-in.
-> User not manually delete or clear cookies of browser.
-> User Experience:-
To make user log-in experience a seamless one. It firstly, allow users to authenticate with credentials they already know (user name and password). Then as per the method implemented for two-factor authentication, user will receive security token through email, SMS, push notification on mobile or other channels.
-> Security Token:-
Token can be complex or simple depending upon the business policy defined by Salesforce admin at time of implementation. Salesforce provide a time and user based code that is more secure. If organizations want they can put validity/ expiration date for token, after that user need to re-authenticate the code. Email and SMS are cost effective solution to generate code. But if organization wants they can go with hard or soft token which need IT development and maintenance budget.
-> Policy:-
We can set policies that require two-factor authentication not only for every log-in and every log-in through the different API for developers and client applications separately but also for accessing specific features or reports.
Two factor authentication is available in both Salesforce classic and lightning experience with Group, Professional, Enterprise, Performance, Unlimited, Developer, and Contact Manager Editions.
Organizations have many options and choices, they have to decide how they need to implement the security approach. This balance will greatly help organizations to protect customer information and provide them an experience that promotes trust as well drive greater adoptions.
Ref:-
Salesforce Article
About Us
Greytrix as a Salesforce Product development partner offers a wide variety of integration products and services to the end users as well as to the Partners across the globe. We offers Consultation, Configuration, Training and support services in out-of-the-box functionality as well as customizations to incorporate custom business rules and functionalities that requires apex code incorporation into the Salesforce platform.
Greytrix has some unique solutions for Cloud CRM such as Salesforce integration with Sage Enterprise Management (Sage X3), Sage Intacct, Sage 100 and Sage 300 (Sage Accpac). We also offer best-in-class Cloud CRM Salesforce customization and development services along with services such as Salesforce Data Migration, Integrated App development, Custom App development and Technical Support to business partners and end users.
Greytrix GUMU™ integration for Sage ERP – Salesforce is a 5-star app listed on Salesforce AppExchange.
For more information, please contact us at salesforce@greytrix.com. We will be glad to assist you.
Related Posts