SMS Identity Confirmation. Enablement Plan for System Administrators February 2013



Similar documents
Business Banking Customer Login Experience for Enhanced Login Security

Welcome (slide 1) Welcome to the Florida Department of Education Single Sign-On tutorial for federated user login and navigation.

mbank Introduces Personal Security Image MFA* for Consumer on-line banking *Multi-Factor Authentication

Instruction Guide. People First Dependent Certification Process

MULTI-FACTOR AUTHENTICATION SET-UP

Guide for Setting Up Your Multi-Factor Authentication Account and Using Multi-Factor Authentication. Mobile App Activation

Provider Express Obtaining Login Access. Information for Network Providers

Personal and Small Business Login Guide

GETTING STARTED WITH QUICKEN with Online Bill Pay for Windows

IIS, FTP Server and Windows

Enhanced Login Security Frequently Asked Questions

Telesystem Visual Voic ios/apple User Guide

What s the difference between my Home Banking password and my Enhanced Login Security?

WHMCS LUXCLOUD MODULE

Guarantee Trust Life Insurance Company. Agent Portal Agent Portal Guide

Initial DUO 2 Factor Setup, Install, Login and Verification

DPH TOKEN SELF SERVICE SITE INSTRUCTIONS:

STEPS TO REGISTER YOUR PROFILE AND BOOK THE COUPON

Telesystem Visual Voic Android User Guide

myschoolbucks Parents Getting Started Guide

Trauma/Recon Sales. Step by step guide to using the Smith & Nephew User Gateway (SNUG) Global Remote Access

Secure Mail Message Retrieval Instructions

7. In the boxed unlabeled field, enter the last 4 digits of your Social Security number.

For details about using automatic user provisioning with Salesforce, see Configuring user provisioning for Salesforce.

Ciphermail Gateway PDF Encryption Setup Guide

Guide for Setting Up Your Multi-Factor Authentication Account and Using Multi-Factor Authentication

TimeTrade Salesforce Connector Administrator Guide

QuickBooks Mac 2014 Getting Started Guide

Managing policies. Chapter 7

Configuring Salesforce

Table of Contents. Part I Introduction 2. Part II Keyboard Monitor 2. Part III Console Viewer 4. Part IV FAQ 5. Part V Support 6. Index 0.

Synchronize with Salesforce

New Participant Digital Certificate Enrollment Procedure

Encryption Recipient Guidelines

for Salesforce CRM INSTALLATION GUIDE February

Microsoft Office 365 Exchange Online Cloud

EMR Link Server Interface Installation

GETTING STARTED WITH QUICKEN 2010, 2009, and for Windows. This Getting Started Guide contains the following information:

SmartConnect User Credentials 2012

Creating a generic user-password application profile

Charter Business Hunt Group Administrator Start-up and Quick Reference Guide

Genius in Salesforce.com Pre- Installation Setup

Client Security Guide

Cloud Authentication. Getting Started Guide. Version

WATERS Water Act TDL Electronic Review System

Creating and Modifying PVAAS Accounts for Your School District

RingCentral for Salesforce. User Guide

Network Load Balancing

Quick Start Guide. TELUS Business Connect

CRM Connector Installation & Integration USER GUIDE

Press Continue. Salesforce App Installation Instructions Page 1 of 26

DocuSign Connect for Salesforce Guide

SecureAnywhereTM Web Security Service

How to configure the TopCloudXL WHMCS plugin (version 2+) Update: Version: 2.2

Integrating LivePerson with Salesforce

Online Check Stub Enrollment. from Dominion Payroll Services

BUSINESS ONLINE BANKING QUICK GUIDE For Company System Administrators

QAS Small Business for Salesforce CRM

Salesforce Integration

Installation Troubleshooting Guide

Single Sign-On Implementation Guide

Configuration Guide - OneDesk to SalesForce Connector

Instructions on accessing your journal s content on your new app

MIGRATING TO AVALANCHE 5.0 WITH MS SQL SERVER

How do I share a file with a friend or trusted associate?

Your Archiving Service

Multi-Factor Authentication Job Aide

Reference Document. SedonaOnline Support

Two Factor Authentication - USER GUIDE

How To Add Security Roles On Banner Har Account On A Pc Orca (For A Free Download) On A Microsoft Powerbook (For Free) On An Ipa 2.5 (For An Ipad) On Pc Ora (For

Setup and configuration for Intelicode. SQL Server Express

Remote Access End User Reference Guide for F5 Edge VPN Client Access

How To Create An Easybelle History Database On A Microsoft Powerbook (Windows)

FAQ: UFS Password Self Service System

Portal Administration. Administrator Guide

[COGNOS DATA TRAINING FAQS] This is a list of frequently asked questions for a Cognos user

Exam Self-Registration

Vodafone multitxt Outlook Mobile Services (OMS)

DEP S REMOTE ACCESS USER GUIDE

Yealink Softphone Credentials Setup

Remote Access Services Apple Macintosh - Installation Guide

Frequently Asked Questions

Charter Business Phone Individual Voic Quick Reference Guide

New Online Banking Guide for FIRST time Login

Security Upgrade FAQs

How do I use Citrix Staff Remote Desktop

The Initial Registration Process. During the initial registration process, this guide assumes the user has been provided a login ID.

StarWind SMI-S Agent: Storage Provider for SCVMM April 2012

2-FACTOR AUTHENTICATION WITH

License Management and Support Guide

Note: With v3.2, the DocuSign Fetch application was renamed DocuSign Retrieve.

Connecting to Manage Your MS SQL Database

USERS GUIDE. How to acquire an Associate Digital Identity Certificates from the ica Identity Authority and Configure MAS

Self-serve Incentive Program (SIP) User Guide Version 3.0. For use by Industrial Customers for Lighting System and Compressed Air projects

Registration & Payment FAQs

We hope that you ll find the setting up of your account easy and fun to do!

Credit Card Payment Procedure

Two-Factor Authentication

CONTENTS. SETUP SECURITY ENHANCEMENTS Existing User New User (Enrolled by Employer or Self)... 21

User Guide Microsoft Exchange Remote Test Instructions

Transcription:

SMS Identity Confirmation Enablement Plan for System Administrators February 2013

Key Summary Salesforce.com constantly innovates to ensure our service is as secure as possible, and we re dedicated to helping our customers be more secure in their own environments. Today, one of the security features available for our customers is identity confirmation to validate users logging in from an unverified source. Salesforce offers both email and SMS-based identity confirmation. SMS adds an extra layer of protection in case email credentials are compromised. SMS will become the default identity confirmation feature for all verified mobile users 30 days from a Critical Update Console (CRUC) posting. System administrators can re-enable email identity confirmation for verified mobile users at the profile or permission set level.

What is identity confirmation? Identity confirmation is a salesforce.com administered security feature enforced when the system recognizes that an unauthorized source (i.e. new IP address) is trying to access an account. Users are given an identity confirmation challenge to retrieve a verification code before they can log into their account. Salesforce uses several methods to verify an authorized source: Cookie that is cycled on each login Org-approved networks IP-restricted profiles User-verified IP address

What is SMS identity confirmation and why is it recommended as a default? SMS identity confirmation challenges users to confirm their identity through a verification code sent via SMS vs. email. SMS adds a layer of protection, as there is less potential for a third party to compromise multiple user devices simultaneously. For example: Sam the Salesforce User Unauthorized Party 1 Sam s email credentials are compromised. 2 The unauthorized party tries to use Sam s email and password to access his Salesforce account, but the system recognized that Sam s account is being accessed by an unverified source. 3 SMS identity confirmation requires a verification code be sent to Sam s mobile device before logging in. 4 Unauthorized party doesn t have Sam s phone and therefore Sam s Salesforce data is secure!

What happens to email identity confirmation? For customers with verified phone numbers, SMS will be enabled as the default option and email will be automatically turned off based on the auto-activation date posted in CRUC. For customers without verified phone numbers, they will be prompted to enter in a mobile number on login. System Administrators have the option to re-enable email and may choose to do so if all their users do not have mobile devices. Today: Email and SMS is offered based on preferences After CRUC: SMS only unless email is re-enabled

Verified vs. Unverified Mobile Number A verified mobile number means that the mobile field is populated in the User detail screen. +1 4155551234 An unverified mobile number means that the mobile field is not populated in the User detail screen. +1 4155551212

What is the process to verify a mobile number? Login page admin@orgname.com Prompted to submit a mobile number +1 4155551234 User s mobile number is populated in details page

What will an identity confirmation challenge look like for verified mobile users once the feature is activated? Login page admin@orgname.com User will only see SMS as an option for identity confirmation. User receives a verification code via text (SMS). user@org.com User must enter in the verification code before accessing their account.

What if my user does not have a mobile number? Login page admin@orgname.com User elects not to enter in a mobile number. User will continue to see email identity confirmation

Top 3 FAQs 1. Can I activate the CRUC before the auto-activation date? Yes and we encourage you to do so. Click the Activate button in the CRUC which will activate SMS identity confirmation as the default and turn off email identity confirmation. 2. What if I want my users to have both email and SMS-based identity confirmation? As a system administrator, you can select Allow email-based identity confirmation at the permission set or profile level to allow both email and SMS identity confirmation options. 3. I have a Professional Edition license. Am I able to re-enable the email identity confirmation for verified mobile users? You can contact support to turn off Force SMS-based identity confirmation for your org.

Resources *FAQs: https://help.salesforce.com/apex/htviewsolution?urlname=sms- Based-Identity-Confirmation&language=en_US Contact Support: User Name 1 Visit the Help & Training Portal 2 Click on Contact Support *Available in English only at this time.

Back to key summary What is CRUC? CRUC stands for the Critical Update Console and is found on the setup page. CRUC is used to message and at times enable or disable important updates for our customers. Sue the Salesforce User

2024 © DocPlayer.net Privacy Policy | Terms of Service | Feedback  | Do Not Sell My Personal Information