Engaging your client with a high security form template or a PDF template requires authentication in one of three methods:
Password Authentication (Texted or provided PIN by advisor to establish a password)
Email Authentication (Emailed a PIN for each engagement access)
SMS Authentication (Texted a PIN for each engagement access)
Password Authentication
The client will need to establish a password if one is not already set. You can check this status by clicking on them in Accounts > All Accounts and checking below their name:
If you create a Password Authenticated engagement, note whether or not you have all parties' Mobile Numbers in their profile. If you do not, a PIN will be emailed to you for each participant to provide to them. To be 100% secure we do recommend providing your client with this PIN verbally.
If you select Password Authentication without a mobile number on file, the system will warn you:
When you have a mobile number on file for the client, they can click 'Send me the PIN' upon opening their engagement:
This will text them a PIN they must enter in order to establish their password:
If the client/prospect did not receive it, they can click on the Request it Here button to be sent another. Note requesting another PIN will void any previously sent PINs.
(PreciseFP is not in control of the delivery time of SMS messages to the client. This is based on the delivery time of the mobile carrier.)
Now the Account will show the password has been established:
Any engagements created using Password Authentication will require only the established password moving forward. If needed, there will be a 'Forgot Password' option for the client on the authentication page. You may also receive notification that the client/prospect has been blocked or has requested their security be reset. This is usually a good indicator of an issue with their password or authentication.
Tips for Client/Prospect Passwords: The password validation runs an algorithm to check for common passwords and will show them as invalid. There's no fixed set of "rules" for the password. The only fixed rule is the 8 character minimum. After that, it depends on how common it is. This algorithm is not proprietary, it's something that is used by a large number of sass companies (such has Dropbox, Github, and even Bank of America). While some services implement this algorithm only as "information" by showing a password strength meter, we opted to not allow weak passwords at all since we are protecting personal and financial information.
Email Only
This authentication method will send the client a secure PIN via email each time they access the engagement. If they close out of the engagement, they will need to authenticate again.
The client will need to click on the 'Send me the PIN' button to have the PIN sent to their email on file.
They will then get an email with their security PIN (Sample email)
They will need to input this PIN exactly as is into their engagement.
If the client/prospect did not receive it, they can click on the Request it Here button to be sent another. Note requesting another PIN will void any previously sent PINs.
SMS Authentication -
(Only available when starting engagement in Accounts > All Accounts)
This authentication method will send the client a secure PIN each time they access their engagement via SMS. If they close out of the engagement, they will need to authenticate again.
The client will need to click on the 'Send me the PIN' button to have the security PIN sent via SMS.
(Sample SMS)
They will now need to enter this PIN on their authentication page:
If they did not receive it they can click on the request it here link to have it sent again. (Please note that PreciseFP is not in control of the delivery time of SMS messages to the client. This is based on the delivery time of the mobile carrier)
Note requesting another PIN will void any previously sent PINs.
How to change the authentication method
Note: This can only be changed if the engagement has not been started.
Navigate to Engagements > All engagements under Form Engagements and click on the engagement. Hover over the shield icon to see the chosen authentication method:
Click on the engagement, then click the 'Edit Description' icon next to the arrow pictured below:
Select the desired authentication method from the drop down then click on the Save button:
Setting Template Default Authentication
These can be set at the Template level while in the Template Editor under 'Details':
Be sure to click 'Save Changes'! This selection will be used to pre-select the authentication method when creating engagements or when web publishing a form template.
Setting Authentication Method Per Form Engagement
Authentication can also be set when creating a form engagement (When starting in Accounts > All Accounts)
Previewing Authentication Experience
While in Preview Mode, you can use the selector at the bottom of the screen to see how the authentication screen will appear to a client/prospect:
This preview list will not affect the selected authentication method. This may also be helpful when doing Form Template Translations