MFA Requirement - Enabling MFA at your SSO Provider

Issue

How will Heroku know that we’ve enabled MFA for our SSO identity provider and that we satisfy the requirement?

Resolution

When you use a third-party identity provider (IdP) to log in to Heroku using Single sign-on (SSO), Salesforce currently has limited visibility into your MFA implementation.

In the future, Heroku may add support for AuthnContext attributes in SAML protocol to determine if MFA was used for a SSO login.

Ask on Stack Overflow

Engage with a community of passionate experts to get the answers you need

Ask on Stack Overflow

Heroku Support

Create a support ticket and our support experts will get back to you

Contact Heroku Support