Salesforce “How To” ABCs: T

How to turn off Multi-Factor Authentication (MFA)

Another Dreamforce is in the books, a new release is on the horizon, and admins everywhere may find themselves with so much new Salesforce info in their heads that they’re googling things they “swore they knew how to do, just last month”!

That makes this the perfect time for another installment of our Salesforce “How to” ABCs! The series where we tackle the most commonly Googled Salesforce questions, letter by letter, to help trailblazers find the answers they’re looking for fast!

Today’s letter is “T” as in, “How to turn off Multi-Factor Authentication”. Let’s dive in!

Why would anyone want to turn off MFA and remove their security protocols? Well… sometimes you may be working on a project that requires you to log in from multiple devices and those one-time password (OTP) requests start firing away as the MFA protocols kick in. It becomes more of a necessity to turn them off instead of having to enter those OTPs each and every time.

The process is simpler than you think but can only be implemented if you have full access to the org. Let us proceed.

Make sure to contact your Admin to provide work arounds on customer orgs as this is mostly recommended for orgs you have full access.

Start by heading to Setup by heading over to the Gear icon on the homepage.

Use the Home search bar and type in Identity, locate the Identity Verification, and click on it.

Within the Identify Verification screen start by locating the MFA section and deselect the following checkboxes.

-Require multi-factor authentication (MFA) for all direct UI logins to your Salesforoce org
-Require identity verification during multi-factor authentication (MFA) registration

Next, scroll over to the General section and deselect the following checkboxes.

-Require security tokens for API logins from callouts (API version 31.0 or earlier)

Lastly, scroll down to the Session Security Level Policies and change the dropdown options from Raise session to high assurance to None for the following.

-Manage Multi-Factor Authentication in API
-Manage Multi-Factor Authentication in User Interface

Scroll the to end and click on Save to apply the changes.

A pop-up will appear once the changes are successfully applied. Now verify that MFA has been disabled by attempting to log in from various devices without experiencing those constant OTP prompts.

And you’re all set! (Just don’t forget to turn MFA back on when you’re ready.)

Until next time, keep working hard, smart, and happy. And we’ll see you in the cloud!