1. New Login Details When logging in, your email address will become your User Name. In addition, we will begin prompting you to either enter in your mobile phone number or set up three personal verification questions. Our goal is Multi Factor Authentication (MFA) which will require you to verify your account in an alternate way (other than your email) when you login from a new device. Beginning August 9, this will become mandatory - you won't be able to use the system until your account has been set up and verified. The system will provide a detailed set of "How To" instructions, and our support phone line and email will always be open to you.
2. Why are we doing this? We take security seriously. Which is why we will be rolling out changes to the login page over the next few weeks. Financial institutions have identified security breaches as one of their greatest challenges and biggest risks. We like to think hackers hate us because our system has not been breached. The MultiFactor (MFA) access layer we have developed is to industry leading standards because we value our client’s trust and confidence that their security is our priority. Just like seat belts, change takes getting used to but change to security requirements is critical to keeping us all safer in todays IT environment. All users will be receiving instructions and reminders over the next few weeks and our plan is to have this fully implemented by the end of June.
If you have any questions please contact us by email at: firstname.lastname@example.org
System enhancements are coming to L2 which will affect all users
We are transitioning user login from the existing single username and password to a two-layer, or Multi-Factor Authentication (MFA). When you login you will be required to enter your email address and password then enter a second verification code that you will receive either by
email sent to your inbox OR
text message sent to your mobile device.
Alternatively you may prefer to answer a Personal Verification Question (PVQ). This method is currently used by online banking customers of Royal Bank of Canada and other online financial service providers.
All this verification will not be required at every login in. Rather, the system will retain your credentials for up to seven (7) days. However, after that, the system will prompt you again for account verification.
We understand no one really likes all these additional verification steps. However, it is generally accepted that a critical financial application such as L2 must do whatever is reasonably possible to safeguard and protect 3rd party data from unauthorized access. It is a fact that over 75% of system breaches are a consequence of weak user passwords or inadequate user verification. MFA will help serve to drastically reduce that risk.
Starting August 9th you will not be able to use the system until either your mobile phone number is entered or your security questions are set up.
Here is what you will have to do:
Click Set Up Two-Factor Authentication
Enter your mobile phone number and/or answers to three Personal Verification Questions.
The next time you log in, the system may ask to verify your account:
If you have selected your mobile device as your preferred verification method, a 6-digit code will be sent to your phone. Enter in the code to complete the login process.
If you have selected Personal Verification Questions as your preferred verification method, you must correctly answer one of the security questions you set up earlier. Enter in the answer to complete the login process.
Here is the good news
This new method of security will eliminate the requirement for password changes every 90 days. We are now extending it to two (2) years. The L2 login page will also be displaying more information designed to help the end users.
Please let us know by email if you have any questions or concerns. We can always be reached by email at email@example.com or by phone at 587.414.5155.