An administrator at Universal Containers has been asked to prevent some users from accessing Salesforce from outside of their network. What are two considerations for this configuration?
1) Implementing IP whitelisting
2) Enforcing two-factor authentication
3) Configuring firewall rules
4) Enabling single sign-on