SECURITY006 - One Time Passwords (MFA) overview

For enhanced security, XTRM uses Multi-Factor Authentication (MFA) during login and specific transactions such as bank transfers. 

Our preferred method for MFA is Cyphlens, which provides a seamless and secure authentication experience. If Cyphlens is not set up, users will receive One-Time Passcodes (OTP) via email or text (if a mobile number is added to their profile). 

Cyphlens – Preferred MFA Method 

For a more reliable and secure login experience, we strongly recommend using Cyphlens.

How to Set Up Cyphlens: Cyphlens 2FA

• Download the Cyphlens application - https://cyphlens.com/playground.html
• Onboard using your account email address.
• Verify both your phone and email with dual authentication codes.
• Enable Cyphlens as your second authentication factor on the XTRM home screen.

No Option for Texted OTP:

• If you are not getting the option to have OTPs texted to you, please add your mobile number to your profile.

OTP Timing Out via Email:

• If the OTP arrives via email and doesn't work because it timed out, this may be due to delays caused by your email provider or internal company system. We send them instantly.
• To avoid this issue, add your mobile number to your profile to receive OTPs via text.
• If you cannot log in, email us at support@xtrm.com and request we add your mobile number to your profile.

Update the below once deployed to sandbox: 

By following these steps, you can ensure that your account remains secure and that any unrecognized devices are removed promptly. Additionally, managing your OTP settings can help prevent issues with timeouts and delays.

One-time passwords are also required to confirm transfers.

One Time Password (OTP) or Multi-factor Authentication (MFA) is defaulted to OFF for all accounts. Logging in from a different IP address will prompt you for an OTP.  For added security, companies and individuals can enable this feature to ON, which will prompt an OTP at every login.