Multi-Factor Authentication™ (MFA) is a flexible secondary authentication system for Symitar's MCW. Multi-Factor authentication works directly with the Symitar database so it can work with multiple preference records on a single account without any changes. Multi-Factor Authentication also works directly off of the MCW server so there is no additional hardware necessary and you don't have to export your member data.

Multi-Factor Authentication gives your Credit Union three options to choose from.

1. Secondary Password Authentication
2. Secondary Challenge/Response based Authentication
3. Secondary Segmented Password Authentication

How Your Members Enroll

To begin the enrollment process, your members will access the Multi-Factor Authentication screen and choose/enter the following:

1. A picture that they will be shown during log in.
2. A phrase that they will be show during log in.
3. The response to the secondary challenge depending on the method used at your Credit Union:
   • A secondary Password or
   • Three questions from a list of questions and the answer to those questions
4. Their email address to be used for one-time authentication code if they forget their password or answers to the security questions.

How Members Authenticate Once They Are Enrolled

Once the member is enrolled they will then be required to use the secondary authentication during subsequent visits.

When they access MCW they will put in their account number and access code just like normal. Multi-Factor Authentication also works with tethered login systems.

The members account number and access code will be validated by MCW. If correct, the member will then be shown a secondary authentication screen. This screen will show the member the picture they choose during enrollment, the phrase they typed in during enrollment and will challenge them for their secondary authentication. This secondary authentication will be:

1. Their secondary password
2. A random question to which they must supply the correct answer given during registration or
3. Three random characters from their seconday password. (ex. "Enter characters 1, 4, and 5 from your secondary password.

Upon answering the secondary authentication request correctly the member will be logged into MCW.

Multi-Factor Authentication™ System Requirements:

• Symitar (Episys) Host
• NetTeller MemberConnect™ (NTMC)
• Perl 5.8.8 (Free Download)
• Installation of GCC (compiler)
• OpenSSL 
• Configuration of Sendmail on both the Host and NTMC servers required

Screenshots  (Slideshow)