Deprecated Multi-Factor Authentication
Starting with release 22.1, the FintechOS Platform uses the FintechOS Identity Provider as the default authentication layer for the FintechOS applications and services. Alternate identity providers and the corresponding multi-factor authentications are supported only for backward compatibility.
For information about the FintechOS Identity Provider multi-factor authentication, see Browser Based Multifactor Authentication.
Multi-Factor Authentication (MFA) adds an extra layer of security on top of the basic authentication methods. It requires users to provide multiple proof of their claimed identity prior being granted access to resources based on business need to know according to their security role and granted permissions.
User access can be granted on two-factors:
- Something the user knows (login credentials): username and password.
- Something the user has (pass code received via an SMS/E-mail or mobile soft token).
When users access the app, they will be prompted to provide the login credentials associated with their FintechOS Platform account. To make sure account access is protected, after the login credentials are provided, a one-time security pass code is sent to the user’s phone (the phone number set in the user account profile) or email. Once the user enters the code received via the SMS/e-mail, access into the system is granted.