For organizations using Email-less Authentication for the Broadcast Mobile App, you have the option to include an additional layer of security during log in with Security Questions. These can be added from Mobile Settings.
These Security Questions are designed to allow your organization control over the questions and answers, based on custom question fields and curated integration of your attribute data.
Add A New Security Question
To start setting up Security Questions, go to Settings > Mobile > Authentication. If you don't have any security questions set up, click the + Add New Security Question button to bring up the form. You can add up to 3 unique Security Questions.
Security Questions require a custom Question and an Answer. After selecting your Answer attribute, Answers are automatically pulled from your organization's attribute data. The available attributes which can be selected from include:
Job Title
Job Level
Location 1 - 5
Phone Number
Corporate Structure 1 - 5
Birth Date
Hire Date
Click the Add button to add it to your list, and remember to click Save in the top right corner of your screen to save changes.
Uniqueness Ratings
In order for a Security Question and Answer to be viable for selection, the Answer must meet the uniqueness rating threshold - meaning, there is enough data present to generate multiple choice questions in a secure manner.
When choosing an Answer, a data uniqueness rating will display, referring to the number of unique data fields available in the organization for this attribute. If an answer is Below the Threshold, it cannot be used.
Data Uniqueness Ratings:
Below the Threshold: 0-3 data uniqueness
Average: 4-9 data uniqueness
Very Strong: 10+ data uniqueness
If a selected Security Question later falls under the uniqueness threshold - we will turn Email-less authentication off and will send your Admin Team members an email notification.
How Are Security Answers Selected At Log in?
When answering these questions, subscribers will be provided multiple choice options which are selected randomly from your data, accompanying their answer, or a None of the Above option.
For information about the Log in Experience for Email-less users, please review:
Log In to the Broadcast Mobile App - Email-less Authentication
⚠️ Note: Some organizations may have directories or other personnel managers where some of this information may be readily available for all employees.
If your organization meets those criteria, we recommend limiting the use of Email-less Authentication if sensitive information is shared via Cerkl Broadcast. If you're unsure, we recommend you reach out to your Cerkl Customer Success Manager or Support for more information.
Example Security Questions
To help get you thinking about ways to implement security questions into your Email-less Authentication log in experience, here are some examples of Security Questions and Answers:
Question: What's your birthday? | Answer: Attribute: Birth Date |
Question: Who's your reporting manager? | Answer: Attribute: Corporate Structure 2 |
Question: What’s your job title? | Answer: Attribute: Job Title |
Question: What city is your office located in? | Answer: Attribute: Location 3 |
If you have any questions at all, please don't hesitate to reach out to us at support@cerkl.com or use the support Chat toward the bottom right-hand corner of any cerkl.com page.