Home
IT Hub
Salesforce

Designing Custom Login Pages in Salesforce

Reco Security Experts
Updated
August 6, 2024
August 6, 2024

Designing Custom Login Pages in Salesforce for Enhanced Security

As a Salesforce admin, you can shape every aspect of your org, including your users’ login page interface. Salesforce entrusts admins with the ability to personalize their Salesforce page by deploying specific features.

The login page serves as the gateway to your org. It's a pivotal interface that allows users to enter a website or an application by providing credentials like a username and password. It's the initial impression your users get, and you must ensure it's secure and user-friendly. Your login page should be more than just visually appealing. It should be optimized for maximum security. 

Prerequisites Before We Start

  1. My Domain: Salesforce has a feature that allows system administrators to curate their users' login experiences. My Domain is like the user’s empire within the Salesforce universe. Essentially, it is a Salesforce Identity feature that allows System Administrators and permitted users to personalize their Salesforce org. How does that work? With My Domain on Salesforce, System Administrators can create a personalized experience via URL, or custom login page, for their users to get into the Salesforce org. Instead of a generic and unrelatable URL like https://mq40.salesforce.come, the URL can be more well put-together like https://recoai.my.salesforce.com
  1. You need to be able to use the My Domain feature to set up single sign-on with external identity providers. What’s more - with a proper set of My Domain for your org, users can log into Salesforce with their social account credentials using authentication providers such as Google. Finally, with My Domain, you can brand your login page.

My Domain

So, before we look into the design aspect, let’s explore My Domain on Salesforce and ensure it is properly understood. Imagine you are a Salesforce administrator for Reco.ai and have been tasked with designing a custom login page that displays their logo before users input their credentials. 

This demo will be done on a developer edition.

  • First, let’s create a custom URL for Reco.

This screenshot shows the process to access My Domain settings through Salesforce Setup, allowing you to configure and personalize your domain URL.

Ignore the “dev-ed” in the Domain Name: this test is carried out on the developer edition org. 

  • The domain name (URL) has now changed.

The screenshot shows the latest domain change from alx-41a-dev-ed.develop.my.salesforce.com to http://recoai-dev-ed.develop.my.salesforce.com/, marking another milestone in customizing and optimizing user logins for Salesforce Administrators.

Now, with a personalized domain name for our users, we want to brand the login page to help users recognize the org’s site without looking at the URL in the browser bar. Here’s how to customize the login page with your brand’s logo:

  • Go to My Domain on your Setup, scroll down to the Authentication Configuration section, and click “Edit.”
  • Click the “Edit” button and upload the image you want to use in the “Logo File” section.

The screenshot shows the My Domain page where you can upload your chosen image as the logo by clicking on the edit button and then navigating to the logo file section to complete the upload process in Salesforce.

  • The “Edit” button and upload the image you want to use in the “Logo File” section.

The screenshot shows that the login interface now features the Reco logo, simplifying user verification and ensuring they access the correct organization in Salesforce instantly.

Best practices for Designing Custom Login Pages in Salesforce for Enhanced Security

  • Always set "My Domain Policies" to help you control how users access your Salesforce org.
  • My Domain helps you to have more control over your login process and simplifies user authentication. It is important to note that Salesforce requires you to have a My Domain in place to:
    • Work in multiple Salesforce orgs in the same browser.
    • Set up Single Sign-On (SSO) with third-party identity vendors.
    • Set up authentication providers, such as Google and Facebook, so your users can log in to your Salesforce org with their social account credentials.
    • Customize your org's login page with your brand.
  • Implement Single Sign-On (SSO) in your custom login page. SSO enables users to log in to your organization using their registered credentials from their social media accounts, providing them more flexibility in accessing your organization. For more information on how to implement SSO, please refer to the specific guides on our website to gain a better understanding.

Conclusion

Designing custom login pages in Salesforce goes beyond aesthetics—it’s about enhancing security and user experience. By leveraging features like My Domain, you can create a personalized and secure gateway to your Salesforce org. This not only strengthens your brand identity but also ensures a safer, more efficient login process for your users. As you implement these customizations, remember to follow best practices to maximize security and control over your login process, making your Salesforce environment both secure and user-friendly.

“I’ve looked at other tools in this space and Reco is the best choice based on use cases I had and their dedication to success of our program. I always recommend Reco to my friends and associates, and would recommend it to anyone looking to get their arms around shadow IT and implement effective SaaS security.”
Mike D'Arezzo
Executive Director of Security
“We decided to invest in SaaS Security over other more traditional types of security because of the growth of SaaS that empowers our business to be able to operate the way that it does. It’s just something that can’t be ignored anymore or put off.”
Aaron Ansari
CISO
“With Reco, our posture score has gone from 55% to 67% in 30 days and more improvements to come in 7-10 days. We are having a separate internal session with our ServiceNow admin to address these posture checks.”
Jen Langford
Information Security & Compliance Analyst
“That's a huge differentiator compared to the rest of the players in the space. And because most of the time when you ask for integrations for a solution, they'll say we'll add it to our roadmap, maybe next year. Whereas Reco is very adaptable. They add new integrations quickly, including integrations we've requested.”
Kyle Kurdziolek
Head of Security

Explore More

Ready for SaaS Security
that can keep up?

Request a demo