Effective April 21, 2024
Sections in this article:
- Organization Two Factor Authentication (2FA)
- One Time Passcode (OTP)
- New Members
- Existing Accounts
- New Login Requirement
HeyPeers has enhanced the platform security by requiring all new and existing members to validate their identity via a text message when signing into their account.
With the "Phone Number Authentication" feature, members must provide an email address plus a valid mobile phone number to keep their account or when creating a new one. Each phone number may only be used for one HeyPeers account.
Every new and existing HeyPeers member will need to connect a valid phone number to their account. This can be done in one of two ways: Two Factor Authentication (2FA) or One Time Passcode (OTP).
Organization Two Factor Authentication (2FA)
Two-factor authentication is an identity and access management security method that requires two forms of identification to access a website.
This is an existing functionality in HeyPeers available to organizations wanting extra security for their subscribers. With 2FA, these subscribers would be required to authenticate their identify at every login.
NOTE: For those members required to log in with 2FA (because of the sponsored organization’s requirement) will be exempt from the OTP process. Their phone numbers will be authenticated through the 2FA process.
One Time Passcode (OTP)
For those members not participating in an organization 2FA process, phone number authentication will occur using OTP either during account creation (for new members) or upon first login (for existing members) after April 21, 2024. This step will only be required once.
New Users
New accounts will be required to provide an email address to begin the account creation process. Phone numbers are no longer accepted at this step.
Once the email has been accepted, the new member must provide some additional profile information.
The new member must then choose a password.
Once the password has been accepted, the new member must go through the phone number authentication step.
- The user must select the country in which the phone number was obtained. This allows HeyPeers to automatically assign the appropriate country code to the phone number.
- The user must then input a valid mobile phone number in the local format.
A single-use, 6-digit code (valid for only 10 minutes) will be sent to the phone number provided. The screen changes to allow for the input of the code.
If a valid phone number was provided, the new member will receive a text message, which states:
Your HeyPeers verification code is XXXXXX.
The member must then enter the code into the field labeled Verification Code, then click on Verify to proceed.
If the correct code was input, the new member’s account is created, and the user is brought into the member’s module.
If an incorrect code was input, an error message is displayed. The user may try again or request a new code. If the user cannot provide the correct code, the new account creation process is halted, and the user may not continue.
Existing Accounts
The phone number authentication for existing accounts works similarly to that of a new member. The difference is that the process for an existing user begins at login.
After verifying the email and password combination, the user is presented with the Phone Number Verification OTP screen.
- If a phone number does not already exist in the user’s profile, the user must select the country in which the phone number was obtained. This allows HeyPeers to automatically assign the appropriate country code to the phone number.
- The user must then input a valid mobile phone number in the local format.
- Note: If the user already has a phone number on the account, this step is bypassed.
A single-use, 6-digit code (valid for only 10 minutes) will be sent to the phone number provided. The screen changes to allow for the input of the code.
If a valid phone number was provided, the member will receive a text message, which states:
Your HeyPeers verification code is XXXXXX.
The member must then enter the code into the field labeled Verification Code, then click on Verify to proceed.
If the code input matches the code sent via text message, the member’s phone number will be flagged as “authenticated,” and the user will then proceed into the member module.
If an incorrect code was input, an error message is displayed. The member may try again or request a new code. If the member cannot provide the correct code, the member will not be able to enter the member’s module.
New Login Requirement
Signing in to HeyPeers has changed for all new and existing members effective April 21, 2024.
Due to the new enhanced security of phone number authentication process, a member's phone number will no longer be an option to use for logging in to their account or when someone is signing up for a new account.
Prior to this change, a member had the choice of creating an account and logging in with a phone number or an email address.
All members must now provide an email address when logging in to their account or when creating a new account.
New accounts will see the following new sign-up form (email only):