Security Question (MFA)

To sign in, users must enter the correct response to a security question that they select from a list of possible questions.

Configure Security Question authentication

The first time users sign in to their orgs after you configure this factor, they see the Extra verification is required for your account page and must perform the following steps:

  1. Select Setup.
  2. Choose a security question, enter an answer, and then click Save.

The next time your users sign in, they are prompted to answer their security question.

Security Question guidelines

All the following guidelines are required for security questions:

  • The answer to a security question must be at least four characters long; however, a longer length can be specified for recovery flows in a Group Password Policy.
  • The answer to a security question cannot be the user's password or user name.
  • The answer to the security question cannot be included in the question.