The Salesforce login-based license is the commercial cousin of the named-user license. Where a named user pays a flat annual fee for unlimited authenticated access, the login user pays for a defined number of authenticated logins per month—a commitment that aligns the commercial cost with the actual access pattern rather than with the addressable user population. The login-based model is most commonly deployed for Customer Community Login licensing and for Partner Community Login licensing, where the external user population is large but the authentication frequency per user is low, sporadic, or seasonal. For the right access pattern, the login model produces meaningful commercial outcomes against the named-user alternative; for the wrong access pattern, the login model produces meaningful commercial exposure.
This article unpacks the login-based commercial structure, the access patterns that fit the login model, the access patterns that do not, the overage and rollover mechanics, the burst-usage scoping discipline, and the renewal-side negotiation levers that produce 25-45% reductions for the disciplined buyer. The framing is vendor-neutral and buyer-side, drawing on the operational patterns that recur across mid-market and large-enterprise login-based commitments.
How login-based licensing actually works
The login-based license aggregates a defined number of authenticated logins per month across all external users in the entitled population, with the per-login pricing applied to the aggregate commitment rather than to any individual user. A 50,000-login monthly commitment means the entitled external-user population can collectively authenticate 50,000 times in a month, regardless of how the logins are distributed across the user base. If 50,000 different users each authenticate once, the commitment is satisfied. If 5,000 users each authenticate ten times, the commitment is also satisfied.
This pooling mechanic is the commercial efficiency of the login model: it monetizes the access event rather than the addressable user, and for any population where the average authentication frequency per user is low (one or two logins per month, or fewer), the per-login model produces meaningful commercial savings against the per-user model. A customer with 200,000 addressable external users authenticating an average of 0.25 times per month consumes 50,000 logins per month and pays for 50,000 logins—not for 200,000 named users.
The access patterns that fit the login model
Three access patterns make the login model commercially attractive against the named-user alternative. The sporadic-access pattern—where the user base authenticates infrequently, with most users logging in only a handful of times per year—favors the login model because the per-user authentication frequency is materially below the once-per-month threshold at which the named-user model becomes more efficient. Customer self-service portals, partner sales-cycle portals, and citizen-facing public-sector portals frequently fit this pattern.
The seasonal-access pattern—where the user base authenticates heavily during defined seasonal windows and rarely outside those windows—favors the login model when the commitment is sized against the seasonally-adjusted average rather than against the peak window. Tax-season portals, open-enrollment benefits portals, and academic-cycle education portals frequently fit this pattern, and the disciplined buyer captures meaningful savings by sizing the commitment against the seasonally-adjusted average and negotiating burst-window rollover or overage flexibility.
The large-population low-engagement pattern—where the addressable user base is large (hundreds of thousands or millions) but the engagement intensity is low—favors the login model because the named-user pricing applied to the addressable user base would produce a commercially unworkable commitment, while the login pricing applied to the realistic monthly authentication aggregate produces a commercially workable commitment. Membership organizations, alumni networks, and large customer self-service deployments frequently fit this pattern.
The access patterns that do not
Two access patterns make the login model commercially unattractive against the named-user alternative. The high-frequency engaged pattern—where the user base authenticates frequently, with most users logging in multiple times per week—favors the named-user model because the per-login pricing accumulates against the high-frequency engagement profile to a point that exceeds the equivalent named-user pricing. Active partner-channel deployments where partners authenticate daily for opportunity management frequently fit this pattern.
The unpredictable-burst pattern—where the user base authenticates in unpredictable bursts driven by external triggers (regulatory announcements, product launches, news events)—creates commercial exposure under the login model because the overage mechanics apply at the burst window. A customer who sizes the commitment against the average authentication aggregate and then experiences an unpredicted burst can incur overage charges at unfavorable per-login rates. The mitigation is either rollover mechanics, overage-rate caps, or a sized buffer above the realistic average—each of which is a negotiation lever rather than a default.
| Access pattern | Recommended model | Commercial rationale |
|---|---|---|
| Sporadic (0-1 logins/month) | Login-based | Per-login pricing aligns with low engagement |
| Seasonal burst | Login-based + rollover | Average-based commitment with burst flexibility |
| Large low-engagement | Login-based | Per-user pricing infeasible at scale |
| High-frequency engaged | Named-user (Member) | Per-user economics favor named at >1/month |
| Unpredictable bursts | Hybrid + overage caps | Risk of unmanaged overage exposure |
The burst-usage scoping discipline
The single most consequential commercial discipline in a login-based commitment is the burst-usage scoping. The commitment must be sized against the realistic monthly authentication aggregate, not against the peak burst window, with explicit burst-window mechanics that protect the customer against unfavorable overage charges. The disciplined burst-usage scoping has four components.
1. Document the realistic monthly authentication baseline
The disciplined buyer documents the realistic monthly authentication aggregate across at least twelve trailing months of operational data, with seasonal adjustments where the access pattern is materially seasonal. The baseline establishes the operational starting point for the commitment size and provides the foundation for the burst-window mechanics negotiation.
2. Negotiate rollover mechanics for unused logins
The rollover mechanics determine whether unused logins in a given month carry forward to subsequent months, providing a buffer against burst-window exposure. The default position is no rollover, with each month's commitment expiring at month-end. The disciplined buyer negotiates rollover mechanics that carry unused logins forward to the next quarter or the next year, providing material protection against burst exposure without inflating the baseline commitment.
3. Cap the overage rate
The overage rate determines the per-login price applied to logins above the monthly commitment, and the default overage rate is materially higher than the in-commitment per-login rate—frequently 2-3x the negotiated rate. The disciplined buyer caps the overage rate at no more than 1.25x the in-commitment rate, with explicit volume-tier mechanics for sustained overage that would warrant a baseline expansion.
4. Coordinate burst windows with the operational calendar
For customers with predictable seasonal burst windows, the disciplined approach is to negotiate burst-window-specific commitment expansions rather than blanket overage exposure. A tax-season portal customer negotiates a 3-month burst commitment that expands the monthly commitment during the burst window, with the off-season commitment returning to the baseline. The burst-window mechanic eliminates the overage exposure at the burst window without inflating the off-season commitment.
The pitfalls in login-based commitments
Six pitfalls recur in login-based commitments. First, the commitment is sized against peak burst usage rather than against the realistic monthly aggregate, producing 30-50% over-commitment relative to the operational pattern. Second, the rollover mechanics are absent, exposing the customer to lost-utility on under-utilization months. Third, the overage rate is unfavorably high (2-3x the in-commitment rate), creating commercial exposure on burst windows. Fourth, the commitment is sized against the addressable user base rather than against the operational authentication pattern, applying the per-login pricing to a population that will never authenticate at the scoped frequency. Fifth, the login model is selected for a high-frequency engaged access pattern where the named-user model would have produced a materially lower commitment. Sixth, the renewal mechanics fail to specify the baseline definition, the overage rate, the rollover mechanics, and the burst-window protections—leaving each dimension exposed to discretionary repricing at the renewal moment.
What a well-negotiated login-based commitment looks like
A well-negotiated login-based commitment has seven features. The commitment is sized against the realistic monthly authentication aggregate, with at least twelve months of trailing operational data establishing the baseline. The rollover mechanics carry unused logins forward to the next quarter or the next year. The overage rate is capped at no more than 1.25x the in-commitment per-login rate. The burst-window mechanics specify the commitment expansion for predictable seasonal burst windows, with the off-season commitment returning to the baseline. The named-user-versus-login analysis is documented, with the per-user authentication frequency justifying the login model selection. The renewal mechanics specify the baseline definition, the overage rate cap, the rollover mechanics, and the burst-window protections. And the login commitment is coordinated with the broader external-user identity footprint, capturing the volume leverage that applies across the External Identity, Customer Community Login, and Partner Community Login portfolio.
Benchmark outcomes by deployment scale
For a mid-market customer with a 50,000-monthly-login operational pattern, the disciplined login-based commitment lands at $2.4M-$6M annually against the default of $3.6M-$10M, capturing 25-40% reductions through baseline scoping and burst-mechanic negotiation. For a large-enterprise customer with a 500,000-monthly-login operational pattern, the disciplined commitment lands at $18M-$54M annually against the default of $30M-$120M, with the proportional commercial outcomes scaling with the operational footprint and the volume tier mechanics. The proportional outcomes consistently appear across the deployment scales when the underlying scoping discipline is applied.
The renewal data that wins
The single most valuable artifact for a login-based renewal is the trailing-twelve-month authentication aggregate report, with month-by-month breakdown across all entitled user populations. The report should capture the monthly authentication aggregate, the burst-window mechanics, the per-user authentication frequency distribution, the rollover utilization, and the overage exposure across the trailing year. The report establishes the operational baseline for the next renewal conversation and supports the right-sizing of the commitment, the renegotiation of the overage rate, and the burst-window mechanics adjustment at the renewal moment. Customers who arrive at renewal with this report consistently capture 20-35% reductions on baseline rates and 30-50% reductions on overage exposure.
Coordinating with the broader external-user footprint
The login-based commitment should be coordinated with the broader external-user identity footprint—the External Identity commitment, the Customer Community Member commitment, the Partner Community commitment, and the Experience Cloud capability surface. The coordination captures the volume leverage that applies across the external-user portfolio and prevents the negotiation-leverage dilution that occurs when each commitment is negotiated as a discrete commercial discussion. The disciplined coordination tiers each user population to the minimum-viable license type for the operational requirement: External Identity for authentication-only populations, login-based for sporadic-engagement populations, named-user (Member) for high-frequency engaged populations, and Partner Community for partner-grade access. The tiered structure captures 20-35% reductions across the external-user identity footprint while preserving the operational capability across each user population.
Where to begin
If your login-based commitment is in scoping, the most useful first step is a twelve-month authentication pattern analysis across the entitled user populations. The analysis establishes the realistic monthly authentication aggregate, the burst-window pattern, the per-user authentication frequency distribution, and the seasonality profile—each of which informs the commitment sizing and the burst-mechanic negotiation. If your login-based commitment is in production, the most useful first step is the same analysis applied to the trailing twelve months of operational data, establishing the right-sizing opportunities for the next renewal conversation and the burst-mechanic negotiation levers.
The strategic frame
The Salesforce login-based license—and the broader external-user identity footprint—is a strategic commercial decision with material implications for the customer's external-engagement cost structure. The login model produces meaningful commercial outcomes for the right access pattern (sporadic, seasonal, large-population low-engagement) and meaningful commercial exposure for the wrong access pattern (high-frequency engaged, unpredictable burst). The discipline lies in the access-pattern analysis, the commitment scoping, the burst-mechanic negotiation, and the renewal-side discipline. Customers who treat the login-based commitment as a strategic commercial decision—with disciplined scoping, measured operational outcomes, and coordinated negotiation across the external-user identity footprint—consistently capture 25-45% reductions against the default commercial structure.