OneLogin Salesforce MFA

Secure your Salesforce deployment

Salesforce is at the core of your business - protect your investment

OneLogin Salesforce MFA

Password spray, or “brutespray,” attacks are commonly used by hackers to penetrate systems and gain unauthorized access to accounts. Multi-factor authentication and single-sign on using SAML are critical first steps in securing your Salesforce deployment against these attacks.

Protect Salesforce with Multi-factor authentication

Salesforce recommends two-factor authentication (2FA), or Multi-Factor Authentication (MFA), as the #1 thing you can do to protect user accounts. OneLogin’s strong, risk-based MFA provides an added layer of security that won’t slow down your business or burden your users.


Eliminate passwords

Move beyond the password

Passwords are the weak link in your security chain. Reinforce traditional passwords with more secure authentication factors.

Adaptive authentication

Contextual security won’t slow you down

Adaptive Multi-Factor Authentication uses risk analysis powered by machine-learning and customizable access policies to require MFA only in high-risk situations.

Biometric authentication

Biometrics authentication for ultimate security

Login to Salesforce using biometric factors including fingerprints and Apple Face ID.


Easy IT

Simple user administration

Administrate from anywhere with our responsive, web-based admin portal. Built-in automation, best practices, and training are provided — no servers or computer science degrees required.

Deploy MFA

Deployments measured in minutes, not months

Implement and roll out to users rapidly with templatized solutions.

Authentication factors

Flexible factors for easy authentication

Use authentication factors including OneLogin Protect, one-time SMS codes, and phone call-based voice authentication.

End User Experience

SaaS updates

Always up-to-date

Delivered as a service, OneLogin MFA is continuously updated so you always have the latest and greatest security.

Machine learning

Login less, work more

Machine-learning evaluates risk factors including typical user behavior, and only challenges users for MFA in risky situations.

Password resets

Self-serve support

Minimize cost and disruption. Intuitive self-serve device enrollment and management streamlines deployment, accelerates adoption, and reduces helpdesk support.

The OneLogin Protect advantage

OneLogin Protect is an enterprise-grade one-time password (OTP) authentication app that delivers unparalleled usability. Available on iOS and Android, OneLogin Protect lets users perform multi-factor authentication for multiple accounts with the click of a button.

Protect offers administrators additional access control by preventing risky devices, including jailbroken phones and devices without a device lock, from accessing applications.

Resolve your security challenges

The data that lives in Salesforce represents the core of your business, including sensitive customer and prospect information.

Weak passwords

Account Takeover

Passwords alone are not enough - you need MFA to prevent brute spray or password replay attacks.

Cloud security

Security vs. Usability

Unlock the benefits of the cloud without sacrificing security.

Security compliance


Protect in-scope data and maintain an audit trail of access.

IT complexity


Add security without complex IT-dependant projects, or interrupting current workflows.

The recommended security strategy

Salesforce recommends MFA as the primary means of protecting accounts against compromise: “In order to keep your business running and your data safe it is important that each of your users' credentials are used only by those authorized users. Implementing two-factor authentication is one of simplest and most effective actions your company can take to improve security of your Salesforce deployment.”

OneLogin seamlessly integrates with Salesforce to provide an additional layer of security when accessing company data anytime, anywhere.

Secure authentication for Salesforce

Simplify and protect Salesforce access with a single, secure authentication path for users.


Replace weak, text-based passwords with SAML, the best-in-class authentication method.

Centralized access: Funnel login attempts to one, central tollgate for comprehensive visibility and a central policy enforcement point.

Enforce security controls: MFA, password complexity requirements, password rotation frequency.


Single destination for users to access Salesforce on any device, from any location.

Simplify management and reporting: know who accessed Salesforce with a complete audit trail of all login activity.

OneLogin’s out-of-the-box Salesforce connector takes just minutes to set up.

Painless Implementation

Get started with our expert professional services staff and implementation resources.


1. Prioritize your most critical applications.
2. Configure a solution tailored to your needs.
3. Streamline the change management process to deploy rapidly and simplify user adoption.

Secure your Salesforce deployment

Simplify and protect Salesforce access with a single, secure authentication path for users.

Get Started Today

Contact us to learn how you can protect critical applications and data today.

contact sales