First-Time User Setup

The financial institution will be able to randomly generate a 20-character setup key based on a unique ID for the customer.

This setup key will be emailed in a link to the customer.

Upon clicking the link, the customer will be directed to a user setup page. This user setup page will ask for a unique ID from the customer (not contained in the email or link), and this ID will be looked up in the database to make sure the setup key and ID are paired correctly. If the pair is valid, the customer will be asked to specify a username, password, and email address.

All security keys are currently 20-character alphanumeric strings. They are randomly generated and are set with an expiration date specified by the financial institution. They can be used up until the expiration date, but upon use, they are deleted from the database. For example, if the user forgets the username a second time in a week, he or she will need to go through the whole reset process again a second time—the first link will no longer work.

Next, the user will pick three distinct security questions and enter answers for each. Finally, the user will be asked to enter a personalized security greeting (to be shown on the password entry screen) and a security image.

Once these setup steps are complete, the user will be able to log in for the first time.

69999