Authentication

Passwords are the most common form of authentication used in the world today. But unfortunately, passwords are one of the least secure forms of authentication—commonly forgotten and easily compromised. Two-factor authentication (2FA) adds an extra layer of security by requiring users to use two different authentication factors to verify user’s identity.

The two step verification or 2 Factor Authentication is an extra layer of security that is known as "multi factor authentication" that requires not only a password and username but also something that only, and only, that user has on them e.g. tokens, OTP etc. Using a Two Factor Authentication process can help to lower the number of cases of identity theft on the Internet, as well as phishing via email. For security reason authentication is used by user (Retail/ Corporate) while performing transactions through internet channel.

The 2F Authentication requires two different kinds of evidence before executing transaction successfully. This option enables the system administrator to maintain authentication pattern for each transaction of a specific user segment .

The types of 2 factor authentication used are as follows:

Security Question
Soft Token
One Time Password (OTP)

Pre-requisites

User must have a valid Login credentials
Transaction access is provided to system administrator.
Approval rule set up for system administrator to perform the actions.

Workflow

Features Supported In Application

The following options are available as part of this maintenance:

View Authentication
Edit Authentication
Create Authentication

You are here How to reach here:

Administration Dashboard > Authentication

Authentication - View

System displays the existing maintenance available for selected user segment (Retail/ Corporate).

To view the authentication setup for user segment:

From the User Segment list, select the appropriate user segment.

Field Description

Field Name	Description
User Segment	The user segments maintained by the Bank. The options are: Retail User Corporate User

Field Name

Description

User Segment

The user segments maintained by the Bank.

The options are:

Retail User
Corporate User

Click Cancel to cancel the transaction.
OR
Click Back to go back to Dashboard.
OR
Click View to view the 2FA maintained for the user segment. The Authentication - View screen appears.

Note: If the existing maintenance is not available for selected user segment, message will be displayed ". 2 Factor Authentication for this user segment has not been set up yet" with the Set up now button which launches the screen to maintain 2 Factor Authentication.

Field Description

Field Name	Description
View
User Segment	View the user segment for which the 2 Factor Authentication is set-up.
Transactions
Transaction Types	The transaction type for which the 2 Factor Authentication is set-up.
Level 1	VView the first one (Security Questions, One Time Password or Soft Token) from two levels of authentication set for the transaction type.
Number of Security Questions	Number of security questions to be asked at level 1 authentication. This field appears only if the Security Question option is selected in the Authentication.
Level 2	View the second one (Security Questions, One Time Password or Soft Token) from the 2 levels of authentication set for the transaction type. Note: The 1st and 2nd level of authentication are not the same viz., Security Question cannot be set-up as both Level 1 & Level 2 Approval.
Number of Security Questions	Number of security questions to be asked at level 2 authentication. This field appears only if the Security Question option is selected in the Authentication.

Click Editto update the details. An editable screen appears.
OR
Click Cancel to cancel the transaction.
OR
Click Backto go back to previous screen.

Authentication - Edit

System Administrator can modify existing authentication maintenance.

To edit the authentication setup:

From the User Segment list, select the appropriate user segment.
Click View to view the 2 Factor Authentications maintained for the user segment. The Authentication - View screen appears.
Click Edit. The Authentication – Edit screen with values in editable form appears.

Field Description

Field Name	Description
Edit
User Segment	View the user segment for which the 2 Factor Authentication is set-up.
Transactions
Transaction Types	The transaction type for which the 2 Factor Authentication is set-up.
Level 1	The first one from the 2 levels of authentication set for the transaction type. The options are: None Security Question One Time Password Soft Token
Number of Security Questions	Number of security questions to be asked at level 1 authentication. This field appears only if the Security Question option is selected in the Authentication.
Level 2	The second one from the 2 levels of authentication set for the transaction type. The options are: None Security Question One Time Password Soft Token Note: The 1st and 2nd level of authentication are not the same viz., Security Question cannot be set-up as both Level 1 & Level 2 Approval.
Number of Security Question	Number of security questions to be asked at level 2 authentication. This field appears only if the Security Question option is selected in the Authentication.

In Transactions section, in Level 1 of authentication select the appropriate option.
If user selects Security Question option:
In the Number of Security Questions field enter the maximum number of security questions to be asked.
In Transactions section, in Level 2 of authentication select the appropriate option.
If user selects Security Question option:
In the Number of Security Questions field enter the maximum number of security questions to be asked.
Note: Click Apply to all to apply the same kind of level 1 & level 2 authentications for all transaction types.
Click Save to save the changes made.
OR
Click Cancel to cancel the operation and navigate back to ‘Dashboard’.
OR
Click Back to go back to previous screen.
The Authentication Edit – Review screen appears. Verify the details, and click Confirm.
OR
Click Back to make the changes if any.
The Authentication – Edit screen with values in editable form screen appears.
OR
Click Cancel to cancel the operation and navigate back to ‘Dashboard’.
The success message of Authentication setup appears along with the transaction reference number.
Click OKto complete the transaction and navigate back to ‘Dashboard’.

Authentication - Create

System Administrator can create authentication maintenance for the user segment.

To create the Authentication setup for user segment:

From the User Segment list, select the appropriate user segment.

Authentication Setup

Field Description

Field Name	Description
User Segment	The user segment for which the 2FA is to be set. The options are: Retail User Corporate User

Field Name

Description

User Segment

The user segment for which the 2FA is to be set.

The options are:

Retail User
Corporate User

Click Cancel to cancel the transaction.
OR
Click View to view the 2 Factor Authentication maintained for the user segment. The Authentication - View screen appears.
Note: If the existing maintenance is not available for selected user segment, message will be displayed "Authentication for this user segment has not been set up yet".
Click Set up nowto create new 2Factor Authentication. The Authentication- Create screen appears.

Authentication - Create

Field Description

Field Name	Description
Create
User Segment	View the user segment for which the 2 Factor Authentication is set-up. The options are: Retail User Corporate User
Transactions
Transaction Types	The transaction type for which the 2 Factor Authentication is set-up.
Level 1	The first one from the 2 levels of authentication set for the transaction type. The options are: None Security Question One Time Password (OTP) Soft Token
Number of Questions	Number of security questions to be asked at level 1 authentication. This field appears only if the Security Question option is selected in the Authentication.
Level 2	The second one from the 2 levels of authentication set for the transaction type. The options are: None Security Question One Time Password (OTP) Soft Token Note: The 1st and 2nd level of authentication are not the same viz., Security Question cannot be set-up as both Level 1 & Level 2 Approval.
Number of Questions	Number of security questions to be asked at level 2 authentication. This field appears only if the Security Question option is selected in the Authentication.

In Transactions section, in Level 1 of authentication select the appropriate option.
If user selects Security Question option:
In the Number of Questions field enter the maximum number of security questions to be asked.
In Transactions section, in Level 2 of authentication select the appropriate option.
If user selects Security Question option:
In the Number of Questions field enter the maximum number of security questions to be asked.
Note: Click Apply to all to apply the same kind of level 1 & level 2 authentications for all transaction types.
Click Save to save the changes made.
OR
Click Cancel to cancel the operation and navigate back to ‘Dashboard’.
OR
Click Back to go back tom previous screen.
The Authentication Create– Review screen appears. Verify the details, and click Confirm.
OR
Click Edit to make the changes if any.
The Authentication – Edit screen with values in editable form appears.
OR
Click Cancel to cancel the operation and navigate back to ‘Dashboard’.
The success message of Authentication setup appears along with the transaction reference number.
Click OKto complete the transaction and navigate back to ‘Dashboard’.

FAQs

Can I also set the 2Factor Authentication for transaction approval?

When the changes made in authentication maintenance will be applied?

Is it mandatory to set authentication method at both the levels?

Can I set ‘No additional authentication required’ for specific transaction?

Where can I define which security questions to be asked to the users?

Home

View Table of Contents