Form Template Authentication

Password, email or SMS authentication for high security Form Templates

Updated over a week ago

When engaging a client/prospect with a high security level template you will need to choose the authentication method for the engagement.

The three types of authentication method are:

Password authentication-

This will require the client to create a password. A secure PIN will be sent to them first for verification if you have a mobile number on file for them. If you do not have a mobile number on file for them then a secure PIN will be sent to you via email that you will then need to provide to your client. To be 100% secure we do recommend providing your client with this PIN verbally.

When you have a mobile number on file for the client, the authentication on the clients end will look like this

Mobile number on file on the clients profile in PreciseFP

The engagement on the clients end.

They will need to click on the Send me the PIN button for their secure PIN to be sent to them via SMS.

Once they receive their PIN via SMS they will need to input it into the engagement which should look like this. If they did not receive it they can click on the Request it Here button where it will send the PIN to their mobile device once again. (Please note that PreciseFP is not in control of the delivery time of SMS messages to the client. This is based on the delivery time of the mobile carrier)

Once they input their PIN they will click on the green Verify button and they will then be prompted to create a password.

Once they create a password they will then be taken into their form engagement and you'll then see in their account details that they have created a password.

Once a password is created, any future engagements that are sent with Password authentication selected will only require the client to input the password that they previously created. If they forgot their password there will be a forgot password link that they can click on to reset it and start the security pin process over again.

Tip for Client/Prospect passwords on the templates: The password validation runs an algorithm to check for common passwords and will show them as invalid. There's no fixed set of "rules" for the password. The only fixed rule is the 8 character minimum. After that, it depends on how common it is. This algorithm is not proprietary, it's something that is used by a large number of sass companies (such has Dropbox, Github, and even Bank of America). While some services implement this algorithm only as "information" by showing a password strength meter, we opted to not allow weak passwords at all since we are protecting personal and financial information.

Email Only-

This authentication method will send the client a security PIN via email each time they access the engagement.

The client will need to click on the Send me the PIN button to have the PIN sent to their email on file.

They will then get an email with their security PIN (Sample email)

They will need to input this PIN exactly as is into their engagement.

If they did not receive it they can click on the Request it here link to have it resent to their email. After they input their PIN they will need to click on the Verify button. They will then be taken into their engagement. (Please note that if they close out of their engagement and come back into it again the above steps will need to take place as a new PIN will be sent each time.)

SMS Authentication -

(Only available if mobile number is on clients profile)

This authentication method will send the client a secure PIN each time they access their engagement via SMS.

The client will need to click on the Send me the PIN button to have the security PIN sent via SMS.

(Sample SMS)

They will now need to enter this PIN on their engagement.

If they did not receive it they can click on the request it here link to have it sent again. (Please note that PreciseFP is not in control of the delivery time of SMS messages to the client. This is based on the delivery time of the mobile carrier)

After they input their PIN they will need to click on the green Verify button where it will then take them into their engagement. (Please note that if they close out of their engagement and come back into it again the above steps will need to take place as a new PIN will be sent each time.)

How to change the authentication method

Note: This can only be changed if the engagement has not been started.

Navigate to Engagements > All engagements under Form Engagements.

To view the current selected authentication method for this engagement hover over the shield icon.

Click on your clients engagement. Click on the edit description button.

Select the desired authentication method from the drop down then click on the Save button.

How to Select a Default Authentication Method in your Form Template

Open the form template in the editor. While in the editor, click on the Details button in the top navigation.

In the Details panel, locate the Authentication Method drop down (it defaults to Password), select the method from the drop down then click on Save Changes. This selection will be used to pre-select the authentication method when creating engagements or when web publishing a form template.

Did this answer your question?