Multi-Factor Authentication

Multi-Factor Authentication (MFA) adds an extra layer of security on top of the basic authentication methods. It requires users to provide multiple proof of their claimed identity prior being granted access to resources based on business need to know according to their security role and granted permissions.

User access can be granted on two-factors:

Something the user knows (login credentials): username and password.
Something the user has (pass code received via an SMS/E-mail or mobile soft token).

When users access the app, they will be prompted to provide the login credentials associated with their FintechOS account. To make sure account access is protected, after the login credentials are provided, a one-time security pass code is sent to the user’s phone (the phone number set in the user account profile) or email. Once the user enters the code received via the SMS/e-mail, access into the system is granted.