Bangladesh, Finance

DBBL Two Factor Authentication (2FA) Security Solution Guidelines

 


Guidelines for using DBBL Two Factor Authentication (2FA) Security Solution

 

 

Table of Contents

  1. How to use SecurID Token?
    1. Hardware Token
    2. Software Token
      1. Install Software Token in Desktop/Laptop
      2. Install Software Token in Smart Devices
    3. SMS Token
    4. What are the charges for the Token Device/Software?
  2. How to set PIN for the first Time?
    1. Set PIN first time for Desktop/Laptop
    2. Set PIN first time for Smart Devices
  3. How to change PIN?
  4. How to generate Passcode?
    1. How to generate Passcode from Desktop/Laptop
    2. How to generate Passcode from Smart Devices
  5. Frequently Asked Questions (FAQ)

What is SecurID Token?

DBBL 2FA is an additional layer of security that
provides a second verification of your online identity. This
verification is done using SecuredID Tokens. Use of SecuredID Tokens
are as simple as entering a password, but much more secured. You will
get a token which generates a new, and unpredictable password every 60
seconds. Combine this number with your existing user name and password
to make a transaction using our web services. This new feature increases
the security of your accounts. There are 3 types of token we are
offering to make a secure transaction. These are Hardware, Software and
SMS token.

How do I obtain a SecurID Token

To get a SecurID token you have to register for 2FA
at first. After your successful registration, DBBL officer will contact
with you soon for further process. For further query please dial
16216.

How to use SecurID Token?

We are offering 3 (Three) types of token such as:

  1. Hardware Token
  2. Software Token
  3. SMS Token

 

Hardware Token

hardware_token

Figure: Hardware Token

Steps to use:

  1. Please collect your hardware token from branch
    (during registration what you mentioned). For abroad users, hardware
    token will be shipped through courier.
  2. The token code in the display will be changed at
    every 60 seconds. Lifetime indicator will display the duration of the
    existing code. If the indicator displays only one bar, it is recommended
    to wait for the next code.
  3. Now pin has been set. Please use this pin and token code (displayed in
    hardware token) as passcode for transactions.
  4. If you enter passcode wrongly for three times, your token will be locked for 15 minutes.

 

Note: The passcode is a
combination of the user’s pin followed by the token code. For
example, if your pin is 1234 and the current token code is 987654, then
your passcode is 1234987654.

 

 

Software Token:

Install and Use Software Token Generator

If you are registered for Software Token, the
software for generating the token code can be either installed in any
desktop, laptop or any handled smart devices.

  1. If you are a Desktop user then please review section
    1. How to Install Token Generator Software in Desktop/Laptop
    2. How to Set PIN for the first time (For Desktop/Laptop User)
    3. How to Generate Passcode
  2. If you are a Smart Device User, then please review section
    1. How to Install Token Generator Software in Smart Devices
    2. How to Set PIN for the first time (For Smart Device User)
    3. How to Generate Passcode

 

How to Install Token Generator Software in Desktop/Laptop

If you want to install the software token generator
in your desktop / laptop, please follow the steps below. To use
software token, you need to have STDID file and token generator
software from RSA installed in your PC/Laptop.

Steps to install RSA token generator software:

  1. To get the STDID file, please check your email
    (that you used during registration request). Please download the file
    in any location of the computer and unzip it in the same directory.
    If you do not receive such mail, please contact with our 24×7
    call center 16216
  2. Once you get the STDID file, please download and install RSA software on your device from this link.
    You need to select the correct installation file based on your
    Desktop’s/Laptop’s Operating System. If it is running on windows (32-bit
    / 64-bit), please download the appropriate version of the software.
  3. Installation of the software is easy as like
    other installation, select default selection and clicking next will
    complete the installation process.
  4. If the installation is successful, you can find the Programs links in your Programs files as RSA SecurID Token
  5. Now click on the RSA SecureID Toke from the
    Program Files and a screen will be launched as shown in below figure.
    Now, click on the “Import form File” icon on the scree
  6. Now click on the Browse button to select the STDID
    file already saved in a directory of your Desktop/Laptop. On selection
    is done, please click on the OK button.
  7. You are done with importing the STDID file, if you see the screen as below and click OK to go next steps.
  8. Clicking OK will complete the process and screen will be display as shown in below figure:
  9. Hold on! Before you proceed to generate passcode
    (which will be required for doing transactions) using this token
    generator, you need to change the PIN for the first time. Once the PIN
    is changed, you can generate the Passcode using the PIN you set. To
    change the PIN, please follow the steps described in Section – How to
    Set PIN for the first time (For Desktop/Laptop User)

 

How to Set PIN for the first time (For Desktop/Laptop User)

If you are a first time user and you are done with
installation of the RSA token generator software, you need to set the
PIN. This is only required if you are registered with either Hardware
or Software Token. For SMS Token, you don’t need to set any PIN.

Steps to set PIN for the first time for Software Token:

 

  1. Launch the RSA SecureID Token form the Program
    Files. Since you are a first time user, do not enter any value in the
    “Enter PIN:” field, instead just click on icon next to the field as
    shown in the figure below:

 

  • On clicking the icon, the software will generate a
    Tokencode as shown below. This Tokencode will be used for changing PIN
    (for the first time only) through Internet Payment Gateway application.

 

 

 

How to Install Token Generator Software in Smart Devices

If you are registered for Software Token, the software for generating
the token code can be either installed in any hand handled smart devices
running on Android or iOS.

If you are a Smart Device User, then please review section –

  1. Install Token Generator Software in Smart Devices
    1. Steps to install RSA token generator software in Android enabled device
    2. Steps to install RSA token generator software in iOS enabled device (iPhone)
  2. How to Set PIN for the first time
  3. How to Generate Passcode

Install Token Generator Software in Smart Devices

If you want to install the software token generator
in your smart devices like Android enabled phone/tablets, iPhone/iPad
etc., please follow the steps below. To use software token, you need to
have STDID file and token generator software from RSA installed in
your smart devices.

Steps to install RSA token generator software in Android enabled device

  1. Download and install RSA software on your device
    from this link. You need to select the correct installation file based
    on your smart devices. If you are using Android enabled Phone/Tablets,
    you can download from this link or search for “RSA SecureID” in Google
    Play (Android Market). Once App is installed, you will see a screen as
    shown below:

 

  • Now, check your mail (the one you used during
    registration process). If you didn’t get any such mail, please contact
    with our 24×7 customer care number 16216.
  1. Click on the link provided inside the email. It will
    prompt to select through which you want to open the link, tap Open in
    “RSA SecureID” and this will complete the importing process of the
    STDID.
  2. After installing your token, delete the e-mail containing the token file link.
  • Your RSA token generator apps installation is
    complete. Hold on! Before you proceed, you need to set the PIN to use in
    Internet Payment Gateway application during transaction time. Please follow the
    steps described in section – How to Set PIN for the first time

 

 

 

Steps to install RSA token generator software in iOS enabled device (iPhone)

 

  1. Download and install RSA software on your device
    from this link. You need to select the correct installation file based
    on your smart devices. Or search for “RSA SecureID” in your AppStore.
    Once Apps are installed, you will see a screen as shown below:
  2. Now, check your mail (the one you used during
    registration process) in your device Mail Program (Please note that, if
    you open the mail from external mail client like G-Mail, Yahoo mail,
    etc., you may not get the expected functionality)
  1. In your device Mail Program, open the e-mail containing the Token file attachment
  2. On iPhone device running iOS4.0.x, press and hold the e-mail attachment until a menu is displayed.
  3. Tap Open in “RSA SecureID”. Your token is installed, and the application starts
  4. After installing your token, delete the e-mail containing the token file attachment.
  • Your RSA token generator apps installation is
    complete. Hold on! Before you proceed, you need to set the PIN to use in
    Internet Payment Gateway application during transaction time. Please follow the
    steps described in section – How to Set PIN for the first time

 

 

How to Set PIN for the first time

If you are a first time user and you are done with
installation of the RSA token generator apps in your smart devices, you
need to set the PIN. This is only required if you are registered with
either Hardware or Software Token. For SMS Token, you don’t need to set
any PIN.

Steps to set PIN for the first time for Software Token:

 

  1. Launch the RSA SecureID apps from your smart
    devices. Since you are a first time user, do not enter any value in the
    “Enter PIN:” field, instead just click on “Enter” button as shown in the
    figure below:
  2. On clicking the icon, the software will generate a
    Tokencode as shown below. You will see a down counter which indicates
    the life time of the Tokencode. If you fail to use this Tokencode,
    please click “Enter” again to re-generate a new Tokencode.

 

How to Generate Passcode from Desktop/Laptop

Passcode is required for doing transactions through
internet payment gateway. Whenever you initiate a transaction process, you need
to generate the Passcode from RSA Software and use the same Passcode
within the life-time of the passcode in the required field.

Steps to generate Passcode from Desktop/Laptop:

 

 

  1. Launch the RSA SecureID Token form the Program
    Files. Enter PIN (as you set) and click on the button next to the enter
    PIN field as shown in below screen:

 

  • On clicking the button, the application will generate Passcode as shown below:
  • Use this Passcode in the Internet payment gateway Application to complete the transactions.

 

 

 

Steps to generate Passcode from Smart Devices:

Passcode is required for doing transactions through
internet payment gateway. Whenever you initiate a transaction process, you need
to generate the Passcode from RSA Software and use the same Passcode
within the life-time of the passcode in the required field.

Steps to generate Passcode from Smart Devices:

  1. Launch the RSA SecureID Token generator Apps. Enter PIN (as you set)
    and click on the button next to the enter PIN field as shown in below
    screen:
  2. On clicking the button, the application will generate Passcode as shown below:<p>

 

 

Steps to use software token on ecommerce transaction:

1. Press submit button, user will be landed on the software authentication screen.

2. The following software authentication screen will be appeard:

3. Put the passcode and press Go. If you are the first time user than you will get the following screen to to set pin:

4. If the pin is successfully set than you will get the following screen:

5. Enter pin and token code in the passcode field and press go:

6. If all information is correct than you will get transaction success message:

 

 

SMS Token:

D

  1. Please check your mail whether your SMS token for 2FA has activated.
  2. DBBL On-demand Authentication delivers a
    unique one-time password (PassCode) “on demand” via SMS (text
    message) to users mobile devices.(mobile number used for during
    registration)
  3. Upon receipt of the unique PassCode, a user simply enters it to make a transaction.
  4. If you enter passcode wrongly for three times, your token will be locked for 15 minutes.

 

 

 

  1. Clicking on the submit button, user will be landed on the sms authentication screen.

 

  • Click Send SMS to get sms toke:

 

3. Then you will get a sms token in your mobile. Then enter the token into the authentication screen:

4. If all information is correct than you will get transaction success message:

 

 

What are the charges for the service?

DBBL provides 3 different kinds of Token to its valued customer.

  1. Hardware Token – There will be no charge and it’s
    life time is 3 years. During this period, if the token device is
    lost/broken/damaged then customer can collect it from DBBL by paying a
    replacement fee of 500.00 Taka. After 3 years, you have to collect a
    new hardware token from DBBL by paying a fee of 500 Taka.
  2. Software token – This is completely at no-charge
    and it will expire after 3 years. After expiry, you have to collect a
    new software token from DBBL by paying a fee of 500 Taka.
  3. SMS Token – This is completely at no-charge and no-expiry.

 

                        *Bank has the right to change charges as per the market demand and/or regulatory instruction.

Frequently asked question(FAQ)

How do I obtain a SecurID™ Token?

To get a SecurID token you have to register for 2FA at
first. After your successful registration, DBBL officer will contact
with you. For further process dial 16216.

What if my DBBL SecurID Token isn’t working?

Please dial 16216 for any assistance.

How many times can I attempt to log in before the system locks me out?

The system will automatically lock you out after 3
unsuccessful authentication attempts. After 15 minutes you will be
unlock automatically. Then try again with valid passcode. For any
assistance please dial 16216.

 

How many times can I use the code displayed on my token?

Each code may only be used once.

Can my token run out of codes to display?

Token produces a new, unique code every 60 seconds,
and continues to do so for approximately three years from its
manufacture date. You will receive a replacement token well before the expiration date printed on the back of your existing one.

Do I need to use 2FA from the same computer each time?

No. In fact, the DBBL SecurID token allows you safely to make a transaction from any location without worry!

What if my DBBL SecurID Token is lost, stolen or damaged?

Answer:

If your DBBL SecurID Token is lost, stolen or damaged, please dial 16216.



 

 






You Might Also Like