Skip to main content

MyDomainDiscoverableLogin

Bill Appleton
  • Updated

Metadata Type: MyDomainDiscoverableLogin

Introduction

MyDomainDiscoverableLogin is a Salesforce metadata type that represents the configuration settings for the My Domain login page when it is set to Discovery mode. This metadata type extends the base Metadata type and inherits its fullName field. Login Discovery provides an identity-first login experience, where the login page initially contains only an identifier field. Based on the identifier entered, a handler determines how to authenticate the user, creating a more streamlined and user-friendly login process.

Key Features and Functionality

The MyDomainDiscoverableLogin metadata type allows Salesforce administrators to customize and configure the login experience for their organization's My Domain. Some of the key features and functionalities include:

  • Enabling an identity-first login flow
  • Customizing the appearance and behavior of the login page
  • Configuring authentication handlers based on user identifiers
  • Integrating with external identity providers
  • Enhancing security through adaptive authentication methods

Configuration Options

When working with the MyDomainDiscoverableLogin metadata type, administrators have several configuration options at their disposal:

  1. ApexHandler: Specifies the Apex class that handles the login discovery process.
  2. ExecuteApexHandlerAs: Defines the user context under which the Apex handler runs.
  3. UsernameLabel: Customizes the label for the username field on the login page.
  4. UsernameTooltip: Sets a tooltip for the username field to provide additional guidance.
  5. ShowCommunityNicknameEnabled: Determines whether to display community nicknames on the login page.

Deployment Considerations

When deploying changes related to MyDomainDiscoverableLogin, Salesforce administrators should be aware of potential issues and best practices:

Potential Deployment Issues

  • Apex Handler Compatibility: Ensure that the specified Apex handler class is present in the target org and has the correct permissions.
  • Profile and Permission Set Updates: Verify that the necessary profiles and permission sets are updated to reflect any changes in login behavior.
  • SSO and Authentication Provider Configuration: If using external identity providers, ensure that the SSO and authentication provider settings are correctly configured in the target org.
  • My Domain Status: The My Domain feature must be enabled and deployed in the target org for the MyDomainDiscoverableLogin settings to take effect.

Best Practices for Deployment

  1. Thorough Testing: Always test the login discovery process in a sandbox environment before deploying to production.
  2. Gradual Rollout: Consider implementing changes incrementally and for specific user groups before a full organization-wide deployment.
  3. User Communication: Inform users about any changes to the login process and provide guidance on new login flows.
  4. Backup Current Configuration: Before making changes, document and backup the existing MyDomainDiscoverableLogin configuration.
  5. Monitor Post-Deployment: Closely monitor login attempts and user feedback after deployment to quickly address any issues.

Best Practices for Salesforce Administrators

To effectively utilize the MyDomainDiscoverableLogin metadata type, Salesforce administrators should follow these best practices:

  1. Security First: Prioritize security when configuring login discovery. Implement multi-factor authentication and other security measures to protect user accounts.
  2. User Experience: Design the login flow with user experience in mind. Keep the process simple and intuitive for end-users.
  3. Customization: Tailor the login page to match your organization's branding and provide clear instructions for users.
  4. Performance Optimization: Ensure that any custom Apex handlers are optimized for performance to prevent login delays.
  5. Regular Reviews: Periodically review and update the login discovery configuration to adapt to changing organizational needs and security requirements.
  6. Documentation: Maintain detailed documentation of the MyDomainDiscoverableLogin configuration, including any custom logic in Apex handlers.
  7. User Training: Provide training and resources for users to understand the new login process, especially if implementing significant changes.
  8. Compliance: Ensure that the login discovery process complies with relevant industry regulations and data protection laws.

Integration with Other Salesforce Features

The MyDomainDiscoverableLogin metadata type can be integrated with other Salesforce features to enhance the overall authentication and user management experience:

  • Single Sign-On (SSO): Configure SSO options to work seamlessly with the login discovery process.
  • Identity Connect: Integrate with Salesforce Identity Connect for advanced user provisioning and synchronization.
  • Community Cloud: Customize the login experience for different communities within your Salesforce org.
  • Einstein Analytics: Utilize login data to gain insights into user behavior and potential security risks.

Conclusion

The MyDomainDiscoverableLogin metadata type is a powerful tool for Salesforce administrators to create a secure, user-friendly, and customized login experience. By following best practices, addressing deployment considerations, and leveraging integration opportunities, organizations can significantly enhance their authentication processes. As with any critical system configuration, careful planning, testing, and ongoing management are essential to ensure a smooth and secure login experience for all users.

Related to

Powered by Zendesk