Login to Gmail addin fails for MFA enabled orgs with error "my.salesforce.com refused to connect".
Last updated 10 days ago ·Reference W-9468461 ·Reported By 11 users
For a org with MFA enabled - Salesforce Authenticator and has "Keep Gmail and Salesforce Connected" enabled in Gmail integration and sync when logged out of the the Lightning chrome UI
and trying to load Gmail addin will not login to salesforce and throws out "my.salesforce.com refused to connect".
1 . Create an MFA permission set by creating new permission and enabling the "Multi-Factor Authentication for API Logins" and "Multi-Factor Authentication for User Interface Logins" in the system permissions.
2 . Assign the perm to a user
3 . Make sure keep Gmail and salesforce connected enabled in Gmail integration and sync.
4 . For the user connect salesforce authentication by clicking on connect App Registration: Salesforce Authenticator in the users user record view of setup.
5 . Once we connected the salesforce authenticator , we try logout and login again to check if mfa is followed and notification is sent on Salesforce Authenticator app.
6 . Once logged in check if addin is logged in in Gmail if not we can reload the Gmail to login to add-in
7 . Now log out of the Lightning salesforce UI from chrome and reload Gmail
8 . The addin shows error "my.salesforce.com refused to connect".
9 . A notification is requested on Salesforce Authenticator app but nothing happens once we approve it.
1. Select the cloud icon in the Chrome Toolbar.
2. Right click and select manage extensions.
3. Select the “Background view” link.
4. Select the console tab from the window that pops.
5. At the cursor at the bottom of the Console window enter.
6. Press return to execute the command and then close the console.
7. Refresh the Tab that Gmail is running into.
8. Log into Salesforce again.
Login to Chrome UI to reiterate the session. once logged in and refresh the Gmail will get you back to normal
This issue will be resolved for most orgs in Winter 22 using this feature:
Please contact Support to enable the above feature.
Is it Fixed?
Any unreleased services, features, statuses, or dates referenced in this or other public statements are not currently available and may not be delivered on time or at all. Customers who purchase our services should make their purchase decisions based upon features that are currently available.