Our company has been reading the list of upcoming security changes being enforced in June and July. While we appreciate Salesforce taking these measures to protect their customers, we feel like we were given very little notice about the upcoming changes. For the phishing-resistant MFA, none of our laptops have biometrics capabilities. We are working with our IT department to setup passkeys. For the discontinuation of the waive MFA permission, we have several bot users that are tied to an external app. I am really curious how many other customers out there are trying to figure out what to do? Will Salesforce be offering any kind of guidance or support given the very short amount of time all customers have?
Yes. Myself and my team have read through this. For Admin users, we are working with our IT department on getting YubiKeys set. The issue we are facing is that we have several bots that use a Salesforce license and the admin profile. We are waiting to hear from Salesforce on those final details regarding the waive MFA permission.
