Identify the Community user login requirements.
The login experience of Salesforce communities can be customized. Login and logout pages can be branded, and different authentication methods can be configured.
The community login settings can be configured under Administration > Login & Registration in Community Workspaces. This allows to configure following features related to community member management:
The community member management pages can be changed to the following types of pages:
The branding of Default Pages provided by Salesforce can be configured in the login settings. The configuration options including logo, colors, footer text, and right-side panel.
Salesforce supports several authentication methods for external users. The available options include:
Community members are Salesforce User records with a username and password. Community members can log in using those credentials stored in Salesforce.
Single Sign-On (SSO) allows users to login to a community without entering their Salesforce credentials. Instead of Salesforce, an external Identity Provider authenticates them.
Salesforce supports SSO using the Security Assertion Markup Language (SAML). SAML SSO transfers the identity of a user from an external Identity Provider to Salesforce as the Service Provider.
To achieve this, a unique user identifier must be mapped between the Identify Provider and the Service Provider. Oftentimes the Federation ID field on the User record is used for this purpose.
Similarly to SSO, External Authentication Providers can be configured to allow users to log in to a community without entering their Salesforce user credentials.
The following External Authentication Providers are supported out-of-the-box:
In addition, all Authentication Providers which use the OpenID Connect protocol or supports OAuth can be configured.