Get Ready for Multi-Factor Authentication Enforcement in May

The requirement to use multi-factor authentication (MFA) when accessing Salesforce products went into effect on February 1, 2022. To help customers satisfy this requirement, MFA will soon be a permanent part of the B2C Commerce login experience. Starting May 1, 2022 and continuing on a rolling basis through the end of May, Salesforce is enabling and enforcing MFA for all users who log in directly to B2C Commerce applications.

Where: This change applies to Business Manager, Account Manager, Log Center, Control Center, and On-Demand Sandboxes for Salesforce B2C Commerce.

When: May 1 through 31, 2022

How: Here's what to expect:
Note: If you use SSO to access B2C Commerce, Salesforce won't enable or enforce MFA for your SSO identity provider. However, you are contractually required to implement MFA for all your users who access B2C Commerce through SSO. To satisfy this requirement, you can use your SSO provider’s MFA service.
There are some use cases that are exempt from the MFA requirement. If any of these situations apply to your implementation, take the following steps before MFA is enforced to avoid potential disruption to your business.
X Privacy Update: We use cookies to make interactions with our websites and services easy and meaningful, to better understand how they are used. By continuing to use this site you are giving us your consent to do this. Privacy Policy.