Skip Navigation
Show nav
Heroku Dev Center
  • Get Started
  • Documentation
  • Changelog
  • Search
  • Get Started
    • Node.js
    • Ruby on Rails
    • Ruby
    • Python
    • Java
    • PHP
    • Go
    • Scala
    • Clojure
  • Documentation
  • Changelog
  • More
    Additional Resources
    • Home
    • Elements
    • Products
    • Pricing
    • Careers
    • Help
    • Status
    • Events
    • Podcasts
    • Compliance Center
    Heroku Blog

    Heroku Blog

    Find out what's new with Heroku on our blog.

    Visit Blog
  • Log inorSign up
View categories

Categories

  • Heroku Architecture
    • Dynos (app containers)
    • Stacks (operating system images)
    • Networking & DNS
    • Platform Policies
    • Platform Principles
  • Command Line
  • Deployment
    • Deploying with Git
    • Deploying with Docker
    • Deployment Integrations
  • Continuous Delivery
    • Continuous Integration
  • Language Support
    • Node.js
    • Ruby
      • Rails Support
      • Working with Bundler
    • Python
      • Background Jobs in Python
      • Working with Django
    • Java
      • Working with Maven
      • Java Database Operations
      • Working with the Play Framework
      • Working with Spring Boot
      • Java Advanced Topics
    • PHP
    • Go
      • Go Dependency Management
    • Scala
    • Clojure
  • Databases & Data Management
    • Heroku Postgres
      • Postgres Basics
      • Postgres Getting Started
      • Postgres Performance
      • Postgres Data Transfer & Preservation
      • Postgres Availability
      • Postgres Special Topics
    • Heroku Data For Redis
    • Apache Kafka on Heroku
    • Other Data Stores
  • Monitoring & Metrics
    • Logging
  • App Performance
  • Add-ons
    • All Add-ons
  • Collaboration
  • Security
    • App Security
    • Identities & Authentication
    • Compliance
  • Heroku Enterprise
    • Private Spaces
      • Infrastructure Networking
    • Enterprise Accounts
    • Enterprise Teams
    • Heroku Connect (Salesforce sync)
      • Heroku Connect Administration
      • Heroku Connect Reference
      • Heroku Connect Troubleshooting
    • Single Sign-on (SSO)
  • Patterns & Best Practices
  • Extending Heroku
    • Platform API
    • App Webhooks
    • Heroku Labs
    • Building Add-ons
      • Add-on Development Tasks
      • Add-on APIs
      • Add-on Guidelines & Requirements
    • Building CLI Plugins
    • Developing Buildpacks
    • Dev Center
  • Accounts & Billing
  • Troubleshooting & Support
  • Integrating with Salesforce
  • Security
  • Identities & Authentication
  • Built-in Authenticators

Built-in Authenticators

English — 日本語に切り替える

Last updated August 31, 2021

Built-in authenticators (also called platform authenticators) verify a user’s identity through a biometric reader, such as a fingerprint, iris, or facial recognition scanner, which is built into a user’s computer or mobile device. Or in some cases, built-in authenticators confirm a user via a PIN or password that the user sets up in their device’s operating system.

This type of verification method streamlines the MFA requirement because it relies on built-in mechanisms rather than needing a separate authenticator app or physical security key. Depending on the browser and operating system that you use, built-in authenticators include Touch ID, Face ID, and Windows Hello.

Before Using Built-in Authenticators

A few things to keep in mind before using built-in authenticators:

  • Your device, operating system, and browser all must support the FIDO2 WebAuthn standard.
  • The built-in authenticator service (such as Touch ID, Face ID, or Windows Hello) must be enabled and set up to verify your identity via a biometric, PIN, or password.
  • To use biometric authentication, a device must include a fingerprint, iris, or facial recognition scanner that’s supported by the built-in authenticator service.

To learn more, see FIDO2 WebAuthn or the documentationfor your device.

This type of verification method is bound to a specific device. If you access Heroku from multiple computers (for example, a desktop workstation and a laptop), you need to register a built-in authenticator on each system.

We recommend registering another verification method to ensure that you can log in to Heroku on other devices where a built-in authenticator is not present.

Registering a Built-in Authenticator

To register a built-in authenticator as an MFA verification method:

  • Start at Account Settings and select Setup Multi-Factor Authentication (or Manage Multi-Factor Authentication if you have already enabled other verification methods).
  • Choose the Add Built-in Authenticator option on the next page and follow the prompts to complete registration. Your registration experience may vary based on the specific device, OS version, and browser in use and involves the following steps:
  • Click Register to add a built-in authenticator.
  • Activate your built-in authenticator when prompted. For example, use Touch ID for fingerprint verification.
  • Name your authenticator and complete registration

Add Touch ID

MFA Verification with a Built-in Authenticator

To log in using a built-in authenticator:

  • After entering your email and password, you are prompted to verify your login request using your authenticator.
  • Activate your built-on authenticator when prompted. For example, use Touch ID for fingerprint verification.

Verify Touch ID

Keep reading

  • Identities & Authentication

Feedback

Log in to submit feedback.

Two-Factor Authentication (deprecated) Multi-Factor Authentication (MFA)

Information & Support

  • Getting Started
  • Documentation
  • Changelog
  • Compliance Center
  • Training & Education
  • Blog
  • Podcasts
  • Support Channels
  • Status

Language Reference

  • Node.js
  • Ruby
  • Java
  • PHP
  • Python
  • Go
  • Scala
  • Clojure

Other Resources

  • Careers
  • Elements
  • Products
  • Pricing

Subscribe to our monthly newsletter

Your email address:

  • RSS
    • Dev Center Articles
    • Dev Center Changelog
    • Heroku Blog
    • Heroku News Blog
    • Heroku Engineering Blog
  • Heroku Podcasts
  • Twitter
    • Dev Center Articles
    • Dev Center Changelog
    • Heroku
    • Heroku Status
  • Facebook
  • Instagram
  • Github
  • LinkedIn
  • YouTube
Heroku is acompany

 © Salesforce.com

  • heroku.com
  • Terms of Service
  • Privacy
  • Cookies
  • Cookie Preferences