Two-Factor Authentication
Why you need two-factor authentication
TurnKey Lender supports two-factor authentication to ensure a higher level of security for employees and borrowers using your lending platform. If two-factor authentication is enabled for the user, they should enter the correct credentials (usual authentication step), and then a one-off code is sent by SMS or directly to the log file in the 'trunk' project, which must be entered to log in to TurnKey Lender. Such authentication will be enabled only after the successful completion of the user registration.
How to enable two-factor authentication
The use of two-factor authentication is enabled/disabled independently for Front-Office users (borrowers) and Back Office users (employees). Two-factor authentication can be enabled in the web.config file.
Reach out to your TurnKey Lender account manager and we'll be happy to enable it for you.
In order to use two-factor authentication, SMS notifications have to be activated in Settings > Integrations > SMS notifications.
Two-factor authentication for Front-Office Users
If two-factor authentication is enabled for Front-Office users, it applies only to newly created accounts. It cannot be enabled for Front-Office users created before it was turned on.
When a Borrower's creates their first Loan Application, the System automatically initiates the creation of a new customer account.
When a user logs off from their customer profile, they will have to complete two-factor authentication in order to log back in.
First, the Borrower shall provide their credentials (Login (email) and Password) and click the Log in button
Upon successful completion of the previous step, Verification code window will emerge. The user has to enter the code they have received via SMS and Click the Submit button to complete the login process.
Two-factor authentication for Back-Office Users
When two-factor authentication is enabled for the Back Office users, an additional checkbox appears in the Back-Office user editing window. It allows enabling/disabling the second step of authentication for individual users. Also, a phone number field is added. The SMS will be delivered to the phone number entered for each user.