Support for additional 2-Factor Authentication methods

We will be adding support for:

  • Security Keys
  • Trusted Devices
  • Time-Based One Time Password apps (Like Google Authenticator)
  • SMS codes

We will update this topic with details

Users will be able to use the following methods for 2-Factor Authentication:

Standard 2FA - This is the base 2FA that has been supported in Tradovate. In this scenario, when the user logs into a new device, they will receive an email with an option to Approve or Deny the new device. If they click “Approve” they will be allowed to login on the new device. If they click “Deny” login to Tradovate on the new device will not be allowed. Users can choose to use this method, or setup any additional methods details below.
Sign in on a trusted device - In this scenario, when the user logs into a new device, they will receive an email with an option to Approve or Deny the new device. If they select Approve, they will be prompted to sign into the Live environment on a device that has already been approved. Once logged in, they will click “Send” on the 2FA Approval email screen and a confirmation will show up on the trusted device. If the confirmation is clicked on the trusted device, the user will be allowed to login on the new device. If they click “Deny” login to Tradovate on the new device will not be allowed.
Security Key - In this scenario, the user will need to “Setup” a Security Key (or multiple security keys…we recommend having 2) in Tradovate. After setting this up, when the user logs into a new device, they will receive an email with an option to approve or deny the new device. If they select Approve, they will be prompted to verify with the security key (touch the key, or NFC or fingerprint scan). If they click “Deny” login to Tradovate on the new device will not be allowed.
Authenticator App - In this scenario, the user will need to “Setup” the Authenticator App in Tradovate. They will select either iOS or Android and be presented with a QR code to scan to set up Tradovate in Google Authenticator. After setting this up, when the user logs into a new device, they will receive an email with an option to approve or deny the new device. If they select Approve, they will be prompted to enter the 6 digit code from their Authenticator app associated with “Tradovate”. If they click “Deny” login to Tradovate on the new device will not be allowed.
Text Message (SMS) - In this scenario, the user will need to “Setup” SMS in Tradovate. To set up, they will be prompted to enter in their mobile number. A 6 digit code will be sent to the entered mobile number which will need to be entered. After setting this up, when the user logs into a new device, they will receive an email with an option to approve or deny the new device. If they select Approve, they will be prompted to enter the 6 digit code from the text message received. If they click “Deny” login to Tradovate on the new device will not be allowed.

More details and links on how to set each method up can be found here: https://tradovate.zendesk.com/hc/en-us/articles/360056911094-Does-Tradovate-offer-2-factor-authentication-