Designing Custom Login Pages in Salesforce for Enhanced Security

‍

As a Salesforce admin, you can shape every aspect of your org, including your users’ login page interface. Salesforce entrusts admins with the ability to personalize their Salesforce page by deploying specific features.

‍

The login page serves as the gateway to your org. It's a pivotal interface that allows users to enter a website or an application by providing credentials like a username and password. It's the initial impression your users get, and you must ensure it's secure and user-friendly. Your login page should be more than just visually appealing. It should be optimized for maximum security. 

‍

Prerequisites Before We Start

1. My Domain: Salesforce has a feature that allows system administrators to curate their users' login experiences. My Domain is like the user’s empire within the Salesforce universe. Essentially, it is a Salesforce Identity feature that allows System Administrators and permitted users to personalize their Salesforce org. How does that work? With My Domain on Salesforce, System Administrators can create a personalized experience via URL, or custom login page, for their users to get into the Salesforce org. Instead of a generic and unrelatable URL like https://mq40.salesforce.come, the URL can be more well put-together like https://recoai.my.salesforce.com. 

2. You need to be able to use the My Domain feature to set up single sign-on with external identity providers. What’s more - with a proper set of My Domain for your org, users can log into Salesforce with their social account credentials using authentication providers such as Google. Finally, with My Domain, you can brand your login page.

My Domain

‍

So, before we look into the design aspect, let’s explore My Domain on Salesforce and ensure it is properly understood. Imagine you are a Salesforce administrator for Reco.ai and have been tasked with designing a custom login page that displays their logo before users input their credentials. 

‍

This demo will be done on a developer edition.

• First, let’s create a custom URL for Reco.

This screenshot shows the process to access My Domain settings through Salesforce Setup, allowing you to configure and personalize your domain URL.

‍

Ignore the “dev-ed” in the Domain Name: this test is carried out on the developer edition org. 

• The domain name (URL) has now changed.

The screenshot shows the latest domain change from alx-41a-dev-ed.develop.my.salesforce.com to http://recoai-dev-ed.develop.my.salesforce.com/, marking another milestone in customizing and optimizing user logins for Salesforce Administrators.

‍

Now, with a personalized domain name for our users, we want to brand the login page to help users recognize the org’s site without looking at the URL in the browser bar. Here’s how to customize the login page with your brand’s logo:

• Go to My Domain on your Setup, scroll down to the Authentication Configuration section, and click “Edit.”

• Click the “Edit” button and upload the image you want to use in the “Logo File” section.

The screenshot shows the My Domain page where you can upload your chosen image as the logo by clicking on the edit button and then navigating to the logo file section to complete the upload process in Salesforce.

• If you want a specific image on the right side of your Login Page, insert the URL from which you would like to get the image. For our example, our URL will be https://cdn.prod.website-files.com/644fc991ce69ff0d3bdbeb63/663a8b8156769bf790620469_Hero%20Image%20-%20Mobile%20(1)-p-1600.png curled from Reco.ai.

• The “Edit” button and upload the image you want to use in the “Logo File” section.

The screenshot shows that the login interface now features the Reco logo, simplifying user verification and ensuring they access the correct organization in Salesforce instantly.

‍

Best practices for Designing Custom Login Pages in Salesforce for Enhanced Security

• Always set "My Domain Policies" to help you control how users access your Salesforce org.
• My Domain helps you to have more control over your login process and simplifies user authentication. It is important to note that Salesforce requires you to have a My Domain in place to:
  • Work in multiple Salesforce orgs in the same browser.
  • Set up Single Sign-On (SSO) with third-party identity vendors.
  • Set up authentication providers, such as Google and Facebook, so your users can log in to your Salesforce org with their social account credentials.
  • Customize your org's login page with your brand.

• Implement Single Sign-On (SSO) in your custom login page. SSO enables users to log in to your organization using their registered credentials from their social media accounts, providing them more flexibility in accessing your organization. For more information on how to implement SSO, please refer to the specific guides on our website to gain a better understanding.

Conclusion

‍

Designing custom login pages in Salesforce goes beyond aesthetics—it’s about enhancing security and user experience. By leveraging features like My Domain, you can create a personalized and secure gateway to your Salesforce org. This not only strengthens your brand identity but also ensures a safer, more efficient login process for your users. As you implement these customizations, remember to follow best practices to maximize security and control over your login process, making your Salesforce environment both secure and user-friendly.