Unlike most eQuipt updates, the updates covered in this overview will occur in phases by firm. The first phase has concluded, where a pilot with a select group of financial professionals and their staff tested Multi-Factor Authentication (MFA) with their own, personal logins established for eQuipt Client Portal. Next, we will begin to roll out MFA firm-by-firm.
If you have clients who use eQuipt Client Portal, you will be notified one week prior to when it launches at your firm.
Please view the original Weekly Edge Announcement from October for more information.
Multi-Factor Authentication (MFA) provides added security to all eQuipt Client Portal accounts. You (if you have an eQuipt account) and/or your clients will experience the MFA process when logging in from an unrecognized location, a new network or browser, from a new device not previously associated with the security information on file, or due to a variety of other risk factors. MFA has also been embedded into the Password Recovery process to save you and your clients’ time by supporting self-service.
When your client or prospective client logs into eQuipt Client Portal for the first time after implementation, they are presented with an initial notification screen indicating that security has been upgraded and that they will need to walk through a new verification process. MFA is a requirement to continue using the portal.
Then, your client receives a text message with a 6-digit one-time passcode. They have 3 minutes to enter the passcode. After 3 minutes has lapsed, they will need to request a new passcode. Also, if they navigate away from the screen after they’ve submitted their phone number, they will need to request a new passcode. There is also the option to send the passcode through an automated voice call.
A maximum of 5 attempts are allowed before the account becomes temporarily locked. Once the profile becomes locked, they will need to wait for 15 minutes before they can attempt to sign in again.
MFA can occur for a variety of reasons. Some of the more common use cases include using a new device, logging in from a different location, or using private browsing. The less obvious reason it could be initiated is dependent on the client’s Risk Score (a variety of factors that could trigger MFA).
When prompted with MFA, you or your client are presented with the same experience as when enrolling in MFA, just without the initial notification screen.
Users can review, edit, add, and delete phone numbers and email addresses within eQuipt Client Portal at any time by navigating to Settings > Account Details.
It is important to note that these edits will directly update the client record in Salesforce and Client Central. Similarly, updating a phone number or email address in Salesforce or Client Central will also update the phone number or email address reflected in the client’s eQuipt Client Portal profile. Salesforce or Client Central phone number updates are also reflected in the choices available during the MFA process as options to receive the one time passcode.
Password resets also receive the benefits of MFA. Based on Financial Professional feedback, eQuipt Client Portal no longer relies on a confirmation code emailed to the client.
Now, when a client resets their password they are first asked to enter their Username.
If successful, the client selects a phone number on file and the system sends a one-time passcode.
After entering the one-time passcode successfully, the client updates their password online. At this point they are required to log in to eQuipt Client Portal again with their new password and may have to complete additional MFA measures.
There has been a significant overhaul to simplify the new user process, improve the client’s experience, and incorporate MFA, both when self-registering through the “Sign Up” link on the eQuipt login page, and when the client enrolls through an email link sent during the eQuipt Profile Activation process.
For self-registration, the first step asks for an account number, then for both processes, it asks for the client’s Social Security Number. Registering from an email asks only for the client’s full Social Security Number. This allows the system to verify that the account is active and to preliminarily verify the user.
To continue, the client must enroll in MFA by selecting a phone number on file and requesting the one-time passcode be sent via text or voice call. When the phone number is outdated or there is not one on file, the client must validate their date of birth and zip code before adding a new phone number for the one-time passcode.
Like other examples, when MFA is triggered, the client is sent a one-time passcode based on the phone number and delivery method they selected. They can request a new one-time passcode or select a different delivery phone number as needed.
Once the client has completed MFA , they are presented with the list of phone numbers and email addresses on file to review, edit, remove, or add to their eQuipt Client Portal settings, which also updates the client profile in Salesforce or Client Central.
The last step in the self-registration process is to finalize their Username and password. The system no longer pre-fills the client’s Username with the clients’ email address. This change was made in response to financial professional feedback.
We hope that these updates create positive change and add value for both you and your clients.
Enrolling in MFA: Existing Users
The firm roll-out order is listed below:
Phase 1: Pilot with Select Financial Professionals Complete
Phase 2: FSC Securities Complete
Phase 3: SagePoint Financial Complete
Phase 4: Woodbury Financial Complete
Phase 5: Royal Alliance Complete
The update below walks you through what the extra layer of security with MFA will look like for your clients when they log into their eQuipt Client Portal account. Additionally, this update comes with improved client self-servicing capabilities for password resets and phone number and email address updates. This page will be updated as the rollout progresses through each phase.
Multi-Factor Authentication (MFA) provides added security to all eQuipt Client Portal accounts. You (if you have an eQuipt account) and/or your clients will experience the MFA process when logging in from an unrecognized location, a new network or browser, from a new device not previously associated with the security information on file, or due to a variety of other risk factors. MFA has also been embedded into the Password Recovery process to save you and your clients’ time by supporting self-service.
When your client or prospective client logs into eQuipt Client Portal for the first time after implementation, they are presented with an initial notification screen indicating that security has been upgraded and that they will need to walk through a new verification process. MFA is a requirement to continue using the portal.
When your client or prospective client logs into eQuipt Client Portal for the first time after implementation, they are presented with an initial notification screen indicating that security has been upgraded and that they will need to walk through a new verification process. MFA is a requirement to continue using the portal.
Then, your client receives a text message with a 6-digit one-time passcode. They have 3 minutes to enter the passcode. After 3 minutes has lapsed, they will need to request a new passcode. Also, if they navigate away from the screen after they’ve submitted their phone number, they will need to request a new passcode. There is also the option to send the passcode through an automated voice call.
A maximum of 5 attempts are allowed before the account becomes temporarily locked. Once the profile becomes locked, they will need to wait for 15 minutes before they can attempt to sign in again.
MFA can occur for a variety of reasons. Some of the more common use cases include using a new device, logging in from a different location, or using private browsing. The less obvious reason it could be initiated is dependent on the client’s Risk Score (a variety of factors that could trigger MFA).
When prompted with MFA, you or your client are presented with the same experience as when enrolling in MFA, just without the initial notification screen.
Users can review, edit, add, and delete phone numbers and email addresses within eQuipt Client Portal at any time by navigating to Settings > Account Details.
It is important to note that these edits will directly update the client record in Salesforce and Client Central. Similarly, updating a phone number or email address in Salesforce or Client Central will also update the phone number or email address reflected in the client’s eQuipt Client Portal profile. Salesforce or Client Central phone number updates are also reflected in the choices available during the MFA process as options to receive the one time passcode.
Password resets also receive the benefits of MFA. Based on Financial Professional feedback, eQuipt Client Portal no longer relies on a confirmation code emailed to the client.
Now, when a client resets their password they are first asked to enter their Username.
If successful, the client selects a phone number on file and the system sends a one-time passcode.
After entering the one-time passcode successfully, the client updates their password online. At this point they are required to log in to eQuipt Client Portal again with their new password and may have to complete additional MFA measures.
There has been a significant overhaul to simplify the new user process, improve the client’s experience, and incorporate MFA, both when self-registering through the “Sign Up” link on the eQuipt login page, and when the client enrolls through an email link sent during the eQuipt Profile Activation process.
For self-registration, the first step asks for an account number, then for both processes, it asks for the client’s Social Security Number. Registering from an email asks only for the client’s full Social Security Number. This allows the system to verify that the account is active and to preliminarily verify the user.
To continue, the client must enroll in MFA by selecting a phone number on file and requesting the one-time passcode be sent via text or voice call. When the phone number is outdated or there is not one on file, the client must validate their date of birth and zip code before adding a new phone number for the one-time passcode.
Like other examples, when MFA is triggered, the client is sent a one-time passcode based on the phone number and delivery method they selected. They can request a new one-time passcode or select a different delivery phone number as needed.
Once the client has completed MFA , they are presented with the list of phone numbers and email addresses on file to review, edit, remove, or add to their eQuipt Client Portal settings, which also updates the client profile in Salesforce or Client Central.
The last step in the self-registration process is to finalize their Username and password. The system no longer pre-fills the client’s Username with the clients’ email address. This change was made in response to financial professional feedback.
We hope that these updates create positive change and add value for both you and your clients.
Unlike most eQuipt updates, the updates covered in this overview will occur in phases by firm. The first phase has concluded, where a pilot with a select group of financial professionals and their staff tested Multi-Factor Authentication (MFA) with their own, personal logins established for eQuipt Client Portal. Next, we will begin to roll out MFA firm-by-firm.
If you have clients who use eQuipt Client Portal, you will be notified one week prior to when it launches at your firm.
The firm roll-out order is listed below:
Phase 1: Pilot with Select Financial Professionals Complete
Phase 2: FSC Securities Complete
Phase 3: SagePoint Financial Complete
Phase 4: Woodbury Financial Complete
Phase 5: Royal Alliance Complete
The update below walks you through what the extra layer of security with MFA will look like for your clients when they log into their eQuipt Client Portal account. Additionally, this update comes with improved client self-servicing capabilities for password resets and phone number and email address updates. This page will be updated as the rollout progresses through each phase.
Please view the original Weekly Edge Announcement from October for more information.
Multi-Factor Authentication (MFA) provides added security to all eQuipt Client Portal accounts. You (if you have an eQuipt account) and/or your clients will experience the MFA process when logging in from an unrecognized location, a new network or browser, from a new device not previously associated with the security information on file, or due to a variety of other risk factors. MFA has also been embedded into the Password Recovery process to save you and your clients’ time by supporting self-service.
Enrolling in MFA: Existing Users