If you didn’t register a verification method before MFA was turned on for your org, you’re prompted to do so when you log in. Follow the onscreen instructions to select and register an authenticator app, using Steps 1 and Steps 5 - 7 here for extra guidance. If you’re already logged in, you can register an authenticator app from your personal settings in Salesforce by following these steps.
- Install a third-party authenticator app on your mobile device or computer. You can use any authenticator app that supports the TOTP algorithm (IETF RFC 6238).
- From your personal settings, enter Advanced User Details in the Quick Find box, then select Advanced User Details. No results? Enter Personal Information in the Quick Find box, then select Personal Information.
- Find App Registration: One-Time Password Authenticator, and click Connect.
- For security purposes, you’re prompted to log in to your account.
-
For mobile authenticator apps, use the app to scan the QR code displayed by Salesforce.
If you’re using a desktop app or you can’t scan the QR code, click I Can’t Scan the QR Code. Salesforce displays a security key. In the authenticator app, enter your username and the displayed key.
-
In Salesforce, enter the code generated by the authenticator app in the Verification Code field.
The authenticator app generates a new verification code periodically. Enter the current code.
- Click Connect.
Note: To help keep your account secure, Salesforce sends you an email notification whenever a new identity verification method is added to your Salesforce account.
Your authenticator app is now registered as a verification method. When logging in with MFA and Salesforce asks you to verify your identity, enter a code generated by the app and click Verify.