Authentication

Passwords are the most common form of authentication used in the world today. But passwords can easily be forgotten and commonly compromised. Two-factor authentication (2FA) adds an extra layer of security by requiring users to use two different authentication factors to verify their identity.

The two step verification or 2 Factor Authentication is an extra layer of security that is known as "multi factor authentication" that requires not only a password and username but also something that only, and only, the user knows e.g. tokens, OTP, answer of security questions etc. Using a Two Factor Authentication process can help to lower the number of cases of identity theft on the Internet, as well as phishing via email. For security reason authentication is used by user (Retail/ Corporate) while performing transactions through digital platform.

The Two Factor Authentication requires two different kinds of evidence before executing transaction successfully. This option enables the System AdministratorAdministrator is a set of individuals that administer the applicant/Affiliate entity. For example, Accountants, Authorized Signatories for organizations, Power of Attorney for individuals. to maintain authentication pattern for each transaction of a specific user segment.

Second Factor authentication can be set for each User type (Retail & Corporate) and for user type and User Segment combination (as of now user segment is only available for Retail user type).

This maintenance can be setup for each entity in a multi entity setup, which enables banks in defining different authentication mode for a same transaction for each entity.

The types of 2 factor authentication used are as follows:

Security Question
Soft Token
One Time Password (OTP)

Note: Two factor authentication is only for retail and corporate user.

Pre-requisites

Transaction access is provided to System Administrator.
Approval rule set up for Bank Administrator to perform the actions.
Transactions are enabled for 2 Factor Authentication aspect

Workflow

Features Supported In Application

The following options are available as part of this maintenance:

View Authentication
Edit Authentication
Create Authentication

You are here How to reach here:

System Administrator Dashboard > Security > Authentication
OR
System/ Bank Administrator Dashboard > Toggle Menu > Security > Authentication

Authentication - View

On accessing ‘Authentication’ menu, system displays the existing maintenance available for selected user segment to view the authentication setup for user segment.

To view the authentication setup for user segment:

From the Enterprise Role list, select the appropriate role.
From the User Segment list, select the appropriate user segment.

Field Description

Field Name	Description
Enterprise Role	Name of enterprise roles set in application. The options can be: Corporate User Retail User On selecting an application role, user segments maintained if any are shown in editable form.
User Segment	The user segments maintained by the Bank. (applicable for Retail User type only)

Field Name

Description

Enterprise Role

Name of enterprise roles set in application.

The options can be:

Corporate User
Retail User

On selecting an application role, user segments maintained if any are shown in editable form.

User Segment

The user segments maintained by the Bank. (applicable for Retail User type only)

Click Cancel to cancel the transaction.
OR
Click Back to go back to Dashboard.
OR
Click View to view the 2FA maintained for the user segment. The Authentication - View screen appears.

Note: If the existing maintenance is not available for selected user segment, message will be displayed . "2 Factor Authentication for this user segment has not been set up yet" with the Set up now button which launches the screen to maintain 2 Factor Authentication.

Field Description

Field Name	Description
View
Enterprise Role	View the enterprise role for which the 2 Factor Authentication is set-up.
User Segment	View the user segment for which the 2 Factor Authentication is set-up.
Transactions
Transaction Type	The transaction type for which the 2 Factor Authentication is set-up.
Level 1	Displays the first level of two factor authentication mode (Security Questions, One Time Password or Soft Token) set for the transaction type.
Number of Question	Number of security questions to be asked from user at level 1 authentication. This field appears only if the Security Question option is selected as the Authentication mode.
Level 2	Displays the second level of two factor authentication mode (Security Questions, One Time Password or Soft Token) set for the transaction type.
Number of Question	Number of security questions to be asked from user at level 2 authentication. This field appears only if the Security Question option is selected in the Authentication.

Click Edit to update the details. Screen in editable mode appears.
OR
Click Cancel to cancel the transaction.
OR
Click Back to go back to previous screen.

Authentication - Edit

System Administrator can modify existing authentication maintenance.

To edit the authentication setup:

From the Enterprise Role list, select the appropriate role.
From the User Segment list, select the appropriate user segment (if applicable).
Click View to view the 2 Factor Authentications maintained for the user segment. The Authentication - View screen appears.
Click Edit. The Authentication – Edit screen with values in editable form appears.

Field Description

Field Name	Description
Edit
Enterprise Role	The enterprise role for which the 2 Factor Authentication is set-up.
User Segment	The user segment for which the 2 Factor Authentication is set-up.
Transactions
Transaction Types	The transaction type for which the 2 Factor Authentication is set-up.
Level 1	The first level of two factor authentication mode (Security Questions, One Time Password or Soft Token) set for the transaction type. The options are: None Security Question One Time Password Soft Token
Number of Question	Number of security questions to be asked from user at level 1 authentication. This field appears only if the Security Question option is selected as the Authentication mode.
Level 2	The second level of two factor authentication mode (Security Questions, One Time Password or Soft Token) set for the transaction type. The options are: None Security Question One Time Password Soft Token
Number of Question	Number of security questions to be asked at level 2 authentication. This field appears only if the Security Question option is selected as the Authentication mode.

In Transactions section, in Level 1 of authentication select the appropriate option.
If user selects Security Question option:
In the Number of Security Questions field enter the number of security questions to be asked.
In Transactions section, in Level 2 of authentication select the appropriate option.
If user selects Security Question option:
In the Number of Security Questions field enter the number of security questions to be asked.
Note: Click Apply to all to apply the same kind of level 1 & level 2 authentication for all transaction types.
Click Save to save the changes made.
OR
Click Edit to make the changes if any.
The Authentication – Edit screen with values in editable form appears.
OR
Click Cancel to cancel the operation and navigate back to ‘Dashboard’.
The Authentication – Review screen appears. Verify the details, and click Confirm.
OR
Click Cancel to cancel the operation and navigate back to ‘Dashboard’.
OR
Click Back to go back to previous screen.
The success message of Authentication setup appears along with the transaction reference number.
Click OK to complete the transaction and navigate back to ‘Dashboard’.

Authentication - Create

System Administrator can create authentication maintenance if the maintenance is not available.

To create the authentication setup for user segment:

From the Enterprise Role list, select the appropriate role.
From the User Segment list, select the user segment (if applicable).

Authentication Setup

Field Description

Field Name	Description
Enterprise Role	The enterprise role for which the 2 Factor Authentication is set-up.
User Segment	The user segments maintained by the Bank. The options are: Retail User Corporate User

Field Name

Description

Enterprise Role

The enterprise role for which the 2 Factor Authentication is set-up.

User Segment

The user segments maintained by the Bank.

The options are:

Retail User
Corporate User

Click Cancel to cancel the transaction.
OR
Click View to view the 2 Factor Authentication maintained for the user segment. The Authentication - View screen appears.
Note: If the existing maintenance is not available for selected user segment, message will be displayed "Authentication for this user segment has not been set up yet" with a setup now button.
Click Set up now to create new 2Factor Authentication. The Authentication- Create screen appears.

Authentication - Create

Field Description

Field Name	Description
Create
Enterprise Role	The enterprise role for which the 2 Factor Authentication is set-up.
User Segment	The user segment for which the 2 Factor Authentication is set-up from. The options are: Retail User Corporate User
Transactions
Transaction Types	The transaction type for which the 2 Factor Authentication is set-up.
Level 1	The first level of two factor authentication mode (Security Questions, One Time Password or Soft Token) set for the transaction type. The options are: None Security Question One Time Password (OTP) Soft Token
Number of Questions	Number of security questions to be asked from user at level 1 authentication. This field appears only if the Security Question option is selected as the Authentication mode.
Level 2	The second level of two factor authentication mode (Security Questions, One Time Password or Soft Token) set for the transaction type. The options are: None Security Question One Time Password (OTP) Soft Token
Number of Question	Number of security questions to be asked from user at level 2 authentication. This field appears only if the Security Question option is selected as the Authentication mode.

In Transactions section, in Level 1 of authentication select the appropriate option.
If user selects Security Question option:
In the Number of Questions field enter the number of security questions to be asked.
In Transactions section, in Level 2 of authentication select the appropriate option.
If user selects Security Question option:
In the Number of Questions field enter the number of security questions to be asked.
Note: Click Apply to all to apply the same kind of level 1 & level 2 authentications for all transaction types.
Click Save to save the changes made.
OR
Click Cancel to cancel the operation and navigate back to ‘Dashboard’.
OR
Click Back to go back tom previous screen.
The Authentication Create– Review screen appears. Verify the details, and click Confirm.
OR
Click Edit to make the changes if any.
The Authentication – Edit screen with values in editable form appears.
OR
Click Cancel to cancel the operation and navigate back to ‘Dashboard’.
The success message of Authentication setup appears along with the transaction reference number.
Click OK to complete the transaction and navigate back to ‘Dashboard’.

FAQs

Can I also set the 2 Factor Authentication for transaction approval?

When will the changes made in authentication maintenance be applied?

Is it mandatory to set authentication method at both the levels?

Can I set ‘No additional authentication required’ for specific transaction?

Where can I define which security questions to be asked to the users?

Is it mandatory to set up 2 factor authentication for a User Type and User Segment Combination?

Can I set up this maintenance for each entity in case of a multi entity setup?

Home