MFA vs. SSO: What’s better for my org(s)? with Mat Hamlin

By

On this episode of the Salesforce Admins Podcast, we hear from Mat Hamlin, Senior Director of Product Management at Salesforce. We’ll dive into multi-factor authentication (MFA), and why all Salesforce users will be using it by February 1st, 2022.

Join us as we talk about multi-factor authentication, single sign-on, tracking and adoption, and a little bit about barbeque.

You should subscribe for the full episode, but here are a few takeaways from our conversation with Mat Hamlin.

How should you manage MFA in your org?

So should you use an existing single sign-on (SSO) implementation or roll out a standalone MFA? “As a general rule,” Mat says, “if your organization does have a centrally-managed single sign-on solution that can or does support multi-factor authentication for its login processes, that’s the recommended solution.” Your internal IT department already thinks about managing identity and security risks all day long, so letting them have control over your authentication and verification processes helps them centralize and apply policies.

For some organizations, however, it might make more sense for you as the Salesforce admin to manage MFA on the platform. You can even configure it to handle all of your Salesforce products in one place: Sales Cloud, Marketing Cloud, and more. Think about it as a great excuse to start a conversation with your IT folks about what works best for your org.

A helping hand to monitor adoption and more.

There are also some great tools to monitor adoption and general usage baked-in to Salesforce. You can generate reports with the login history fields to get a picture of what’s going on. There’s also the new Security Command Center feature to help you keep track, and there will be even more login metrics coming in Spring ‘21with the Lightning Usage App.

MFA Assistant will be with you every step of the way, giving you suggestions and references to make things simple. That said, MFA will add a step to the login process. “As administrators, as you start rolling out MFA, it’s good to be very communicative about the process but also the reasons,” Mat says. You want to explain why it’s so important to reduce the risk of data loss and protect your organization.

Finally, it’s helpful to show your users exactly what the changes to their login process look like. “Fear of the unknown can cause people to be anxious,” Mat says, but if you can show them how easy it is and what to expect you’ll find a lot more success. As you’re showing them, make sure to emphasize that you’ll be there to support them whenever they need help.

Links

Social

Love our podcasts?

Subscribe today on iTunes, Google Play, Sound Cloud and Spotify!

Make a Cybersecurity Plan with Garry Polmateer

Today on the Salesforce Admins Podcast, we talk to Garry Polmateer, CEO of Red Argyle, a Salesforce Consulting agency, and a member of the Salesforce MVP Hall of Fame. Join us as we chat about why admins need to be involved with cybersecurity at their organization and how to start planning. You should subscribe for […]

READ MORE

Being a Security Advocate with Laura Pelkey

Today on the Salesforce Admins Podcast, we talk to Laura Pelkey, Senior Manager of Customer Security Awareness & Engagement at Salesforce. Join us as we chat about how to be a security-minded advocate within your organization and what it could do for your career. You should subscribe for the full episode, but here are a […]

READ MORE