2-Step Verification

Starting September 29, we will be introducing 2-Step Verification, a new layer of security to the way you log-in to online banking.

What is 2-Step Verification?
2-Step Verification adds an extra layer of security to protect you and your account in case your password is ever stolen. In addition to entering your password, a one-time use verification code will be sent by SMS text message or email to the registered mobile phone number or email address associated with your online banking account.

The code must be entered and submitted for confirmation to access your account online. This new feature will replace the security questions you have been accustomed to answering and will not be required at every log-in.

What do you need to do?
  • Log-in to your online banking account
  • Complete the Enable 2-Step Verification enrollment screen
  • Enter your preferred email address or mobile phone number to receive your verification code
  • Enter the verification code sent to you by SMS or email
This initial enrollment process ensures that a valid email address or mobile phone number has been provided by you and has been successfully tested to receive notifications.

You will have until November 17, 2020 to defer registering your preferred method of contact by selecting the “Not Now” option on the Enable 2-Step Verification enrollment screen. Throughout the grace period, you will continue to be prompted with your security questions and shown the Enable 2-Step Verification enrollment screen every time you log into online banking until complete.

At any point after your initial enrollment, you can edit your mobile phone number or email address used to receive the 2-Step Verification code.

Why are we introducing 2-Step Verification?
We are committed to providing you with a safe and protected online banking experience. 2-Step Verification is a great way to reduce fraud risks and further secure all your user accounts.

Frequently Asked Questions

Can I register for 2-Step Verification via both SMS and email?
Yes. During their initial enrollment, you can register only one of either a mobile phone number or an email address to receive 2-Step Verification notifications. After enrollment you can update your contact information from the Profiles and Preferences screen options, to add the second notification channel.

Will duplicate verification code notifications be sent both by SMS and email if I have both an email address and a mobile phone number registered under 2-Step Verification?
No. During each authentication where you have multiple notification channels registered, you will be presented with a Select Verification Method screen and must select which channel (SMS or email) you wish to be notified through.

Is there an option for me to designate a device as a “trusted” device, exempting logins from that device from 2-Step Verification?
No. Any login assessed as high-risk will be subject to 2-Step Verification authentications, regardless of the device being used to log in from.

How long before a verification code notification expires and is no longer valid?
The verification code is valid for 10 minutes from the time it is generated. If you enter and submit after that time, you will receive an error message.