Authentication
Passwords are the most common form of authentication used in the world today. But passwords can easily be forgotten and commonly compromised. Two-factor authentication (2FA) adds an extra layer of security by requiring users to use two different authentication factors to verify their identity.
The two step verification or 2 Factor Authentication is an extra layer of security that is known as "multi factor authentication" that requires not only a password and username but also something that only, and only, the user knows e.g. tokens, OTP, answer of security questions etc. Using a Two Factor Authentication process can help to lower the number of cases of identity theft on the Internet, as well as phishing via email. For security reason authentication is used by user (Retail/ Corporate) while performing transactions through digital platform.
The Two Factor Authentication requires two different kinds of evidence before executing transaction successfully. This option enables the System AdministratorAdministrator is a set of individuals that administer the applicant/Affiliate entity. For example, Accountants, Authorized Signatories for organizations, Power of Attorney for individuals. to maintain authentication pattern for each transaction of a specific user segment.
Second Factor authentication can be set for each User type (Retail & Corporate) and for user type and User Segment combination (as of now user segment is only available for Retail user type).
This maintenance can be setup for each entity in a multi entity setup, which enables banks in defining different authentication mode for a same transaction for each entity.
The types of 2 factor authentication used are as follows:
- Security Question
- Soft Token
- One Time Password (OTP)
Note: Two factor authentication is only for retail and corporate user.
Pre-requisites
- Transaction access is provided to System Administrator.
- Approval rule set up for Bank Administrator to perform the actions.
- Transactions are enabled for 2 Factor Authentication aspect
Workflow
Features Supported In Application
The following options are available as part of this maintenance:
How to reach here:
System Administrator Dashboard > Security > Authentication
OR
System/ Bank Administrator Dashboard > Toggle Menu > Security > Authentication
Authentication - View
On accessing ‘Authentication’ menu, system displays the existing maintenance available for selected user segment to view the authentication setup for user segment.
To view the authentication setup for user segment:
- From the Enterprise Role list, select the appropriate role.
- From the User Segment list, select the appropriate user segment.
Field Name |
Description |
---|---|
Enterprise Role |
Name of enterprise roles set in application. The options can be:
On selecting an application role, user segments maintained if any are shown in editable form. |
User Segment |
The user segments maintained by the Bank. (applicable for Retail User type only) |
- Click
OR
Click to go back to Dashboard.
OR
Click to view the 2FA maintained for the user segment. The Authentication - View screen appears.
to cancel the transaction.
Note: If the existing maintenance is not available for selected user segment, message will be displayed . "2 Factor Authentication for this user segment has not been set up yet" with the Set up now button which launches the screen to maintain 2 Factor Authentication.
Field Name |
Description |
---|---|
View |
|
Enterprise Role |
View the enterprise role for which the 2 Factor Authentication is set-up. |
User Segment |
View the user segment for which the 2 Factor Authentication is set-up. |
Transactions |
|
Transaction Type |
The transaction type for which the 2 Factor Authentication is set-up. |
Level 1 |
Displays the first level of two factor authentication mode (Security Questions, One Time Password or Soft Token) set for the transaction type. |
Number of Question |
Number of security questions to be asked from user at level 1 authentication. This field appears only if the Security Question option is selected as the Authentication mode. |
Level 2 |
Displays the second level of two factor authentication mode (Security Questions, One Time Password or Soft Token) set for the transaction type. |
Number of Question |
Number of security questions to be asked from user at level 2 authentication. This field appears only if the Security Question option is selected in the Authentication. |
- Click
OR
Click to cancel the transaction.
OR
Click to go back to previous screen.
to update the details. Screen in editable mode appears.
Authentication - Edit
System Administrator can modify existing authentication maintenance.
To edit the authentication setup:
- From the Enterprise Role list, select the appropriate role.
- From the User Segment list, select the appropriate user segment (if applicable).
- Click to view the 2 Factor Authentications maintained for the user segment. The Authentication - View screen appears.
- Click . The Authentication – Edit screen with values in editable form appears.
Field Name |
Description |
---|---|
Edit |
|
Enterprise Role |
The enterprise role for which the 2 Factor Authentication is set-up. |
User Segment |
The user segment for which the 2 Factor Authentication is set-up. |
Transactions |
|
Transaction Types |
The transaction type for which the 2 Factor Authentication is set-up. |
Level 1 |
The first level of two factor authentication mode (Security Questions, One Time Password or Soft Token) set for the transaction type. The options are:
|
Number of Question |
Number of security questions to be asked from user at level 1 authentication. This field appears only if the Security Question option is selected as the Authentication mode. |
Level 2 |
The second level of two factor authentication mode (Security Questions, One Time Password or Soft Token) set for the transaction type. The options are:
|
Number of Question |
Number of security questions to be asked at level 2 authentication. This field appears only if the Security Question option is selected as the Authentication mode. |
- In Transactions section, in Level 1 of authentication select the appropriate option.
- If user selects Security Question option:
- In the Number of Security Questions field enter the number of security questions to be asked.
- In Transactions section, in Level 2 of authentication select the appropriate option.
- If user selects Security Question option:
- In the Number of Security Questions field enter the number of security questions to be asked.
-
Note: Click to apply the same kind of level 1 & level 2 authentication for all transaction types.
- Click
OR
Click to make the changes if any.
The Authentication – Edit screen with values in editable form appears.
OR
Click to cancel the operation and navigate back to ‘Dashboard’.
to save the changes made. - The Authentication – Review screen appears. Verify the details, and click
OR
Click to cancel the operation and navigate back to ‘Dashboard’.
OR
Click to go back to previous screen.
. - The success message of Authentication setup appears along with the transaction reference number.
Click to complete the transaction and navigate back to ‘Dashboard’.
Authentication - Create
System Administrator can create authentication maintenance if the maintenance is not available.
To create the authentication setup for user segment:
- From the Enterprise Role list, select the appropriate role.
- From the User Segment list, select the user segment (if applicable).
Authentication Setup
Field Name |
Description |
---|---|
Enterprise Role |
The enterprise role for which the 2 Factor Authentication is set-up. |
User Segment |
The user segments maintained by the Bank. The options are:
|
- Click
OR
Click to view the 2 Factor Authentication maintained for the user segment. The Authentication - View screen appears.
to cancel the transaction. -
Note: If the existing maintenance is not available for selected user segment, message will be displayed "Authentication for this user segment has not been set up yet" with a setup now button.
- Click to create new 2Factor Authentication. The Authentication- Create screen appears.
Authentication - Create
Field Name |
Description |
---|---|
Create |
|
Enterprise Role |
The enterprise role for which the 2 Factor Authentication is set-up. |
User Segment |
The user segment for which the 2 Factor Authentication is set-up from. The options are:
|
Transactions |
|
Transaction Types |
The transaction type for which the 2 Factor Authentication is set-up. |
Level 1 |
The first level of two factor authentication mode (Security Questions, One Time Password or Soft Token) set for the transaction type. The options are:
|
Number of Questions |
Number of security questions to be asked from user at level 1 authentication. This field appears only if the Security Question option is selected as the Authentication mode. |
Level 2 |
The second level of two factor authentication mode (Security Questions, One Time Password or Soft Token) set for the transaction type. The options are:
|
Number of Question |
Number of security questions to be asked from user at level 2 authentication. This field appears only if the Security Question option is selected as the Authentication mode. |
- In Transactions section, in Level 1 of authentication select the appropriate option.
- If user selects Security Question option:
- In the Number of Questions field enter the number of security questions to be asked.
- In Transactions section, in Level 2 of authentication select the appropriate option.
- If user selects Security Question option:
- In the Number of Questions field enter the number of security questions to be asked.
-
Note: Click to apply the same kind of level 1 & level 2 authentications for all transaction types.
- Click
OR
Click to cancel the operation and navigate back to ‘Dashboard’.
OR
Click to go back tom previous screen.
to save the changes made. - The Authentication Create– Review screen appears. Verify the details, and click
OR
Click to make the changes if any.
The Authentication – Edit screen with values in editable form appears.
OR
Click to cancel the operation and navigate back to ‘Dashboard’.
. - The success message of Authentication setup appears along with the transaction reference number.
Click to complete the transaction and navigate back to ‘Dashboard’.
FAQs
Can I also set the 2 Factor Authentication for transaction approval?
When will the changes made in authentication maintenance be applied?
Is it mandatory to set authentication method at both the levels?
Can I set ‘No additional authentication required’ for specific transaction?
Where can I define which security questions to be asked to the users?
Is it mandatory to set up 2 factor authentication for a User Type and User Segment Combination?
Can I set up this maintenance for each entity in case of a multi entity setup?