Note
This feature needs to be configured by Q2 and requires an HQ version of 4.5.0.6094 or higher. This feature is only available in Q2 Console User Management and is not available in Q2 Co-Pilot. For more information on adding this feature, contact Q2 Support.
Call Center Initiated End User Verification is a CSR-initiated action in Q2 Console User Management that sends the end user (for examples, a customer of the FI) a verification code to their existing digital banking SMS or email Secure Access Code (SAC) contact target(s). FIs can use this feature to help determine whether an individual caller over the phone is legitimately the end user they say they are.
Tip
Q2 strongly recommends using this feature as an additional element to your FI's multi-layered verficiation process consistent with your risk policies.
To send a verification code to an end user, you'll need specific rights (permissions) assigned to you in Q2 Console Administration. CSR rights are configured on the Administration > CSR Roles page in Q2 Console.
For information on the required entitlements, see the "User Management" section of Rights for CSR Roles in Q2 Console.
To send a verification code:
-
Go to the User Login level of a profile in User Management.
-
Select Send verification code.
-
Select a delivery target, then select Send verification code to send the code to the end user.
Note
At this time, only SMS text and email targets are supported for verification code delivery.
-
The end user then provides the verification code they received from the designated delivery target. Compare the end user's verification code to the one displayed on the verification code moal window to verify the end user's identity.
-
Based on the end user's response, Verify, Reject, or Resend the verification code.
Your selection is logged and can be reviewed in the Verification Codes (Code) of the Login profile.
Tip
If a verification code is rejected, Q2 recommends that FIs use the CSR Notes feature for record-keeping in accordance with their security protocols. CSR Notes can be viewed in both Q2 Console User Management and Q2 Co-Pilot. Q2 recommends FIs also maintain their own internal policies and processes regarding rejected verification codes and associated risk policies.