Give your account security a boost and prevent unauthorized access by adding multi-factor authentication (MFA) at login.
Add your mobile number to your profile
If you own a mobile phone, make sure you've added the number to your profileLog In Required. If you don't own a mobile phone, you can have an automated phone call deliver the security code to an alternate phone number on your profile.
Approve logins with push notifications
This new option for extra security at login offers convenience and stronger security because it relies on biometrics – which means your device recognizes your face or fingerprint – and does not require a text or call. This sends a notification to a customer's mobile device(s) that allows them to verify their login attempt—or deny it if they believe the login attempt is fraudulent.
How do I enable MFA with push notifications?
Download the Fidelity Investments app, turn on device notifications, and make sure you’re enrolled in biometrics. From there, you can follow two quick steps.
- Log into either Fidelity.com or NetBenefits.com and access your Security CenterLog In Required
- Select the "Turn on" button for multi-factor authentication at login
When there is an attempt to log in from other devices, we’ll automatically send a notification to the mobile app to inform you of the login request. You will then be able to "approve" or "deny" the request. Note that if you are a Symantec VIP Access user, you will need to choose between VIP and push notifications. If you no longer want VIP Access associated with your login, please call us at 800-544-6666 and we'll deactivate it.
Trusted devices
A trusted device is a phone, computer, or any other device that you've already logged into using MFA and have asked us to remember. Once you log in and check the "Don't ask me again on this device" box, that device is added to your trusted device list.
If you no longer wish to trust a device, or if one of your devices is lost, stolen, or compromised, you can now remove previously trusted devices in the Security CenterLog In Required at any time.
Get a one-time passcode by text or call
As an alternative option upon login, choose to have Fidelity send a 6-digit security code directly to your phone (or an alternate phone number) via text or voice call. The code is not a password that you need to create and remember—simply enter the one-time code you receive to verify it's you.
How can I get a code?
- Log into either Fidelity.com or NetBenefits.com and access your Security CenterLog In Required
- Select the "Turn on" button for 2-Factor Authentication at Login
2FA by Symantec VIP Access app
Through our partnership with Symantec, use Symantec’s free Validation and ID Protection (VIP) Access app, which generates a randomized 6-digit code on your Mac, PC, or mobile phone each time you attempt to log in. Learn more how 2-factor authentication by VIP Access works.
As an expert in cybersecurity and online account security, I've spent years delving into the intricate details of securing digital identities. My expertise spans a broad spectrum, from understanding the vulnerabilities inherent in various authentication methods to implementing cutting-edge solutions that bolster security measures. I've actively engaged with industry trends, staying ahead of the curve to offer insights that can safeguard individuals and organizations from the ever-evolving landscape of cyber threats.
Now, let's dissect the article on enhancing account security, specifically focusing on the concepts and strategies employed:
1. Multi-Factor Authentication (MFA): Multi-Factor Authentication is a foundational concept in modern cybersecurity. It involves the use of multiple authentication factors to verify a user's identity, significantly enhancing security compared to relying on a single method. In the context of the article, the recommendation is to enable MFA at login, providing an additional layer of protection beyond just a password.
2. Push Notifications: The article emphasizes the use of push notifications for MFA, leveraging biometrics such as face or fingerprint recognition on mobile devices. This not only adds a convenient layer of security but also introduces a more user-friendly approach, as users can easily approve or deny login attempts directly from their mobile devices.
3. Trusted Devices: The concept of trusted devices involves recognizing and remembering devices that have successfully undergone MFA. Once a device is trusted, subsequent logins from that device may not prompt the user for additional authentication, enhancing user experience without compromising security. Users have the flexibility to manage their trusted devices through the Security Center.
4. One-Time Passcode: The article suggests an alternative method for authentication through a one-time passcode delivered via text or voice call. This adds versatility for users who may not have biometric capabilities on their devices. The one-time passcode is a dynamic security measure that changes with each login attempt, mitigating the risks associated with static passwords.
5. 2-Factor Authentication (2FA) by Symantec VIP Access app: The partnership with Symantec introduces the concept of using a dedicated app, the VIP Access app, for 2-Factor Authentication. This app generates randomized 6-digit codes that users must enter during login attempts, providing an additional layer of security. Users can choose between VIP and push notifications based on their preferences.
6. Device Management and Deactivation: Users are empowered to manage their trusted devices actively. If a device is lost, stolen, or compromised, users can remove it from the trusted device list through the Security Center, ensuring that unauthorized access is promptly addressed.
In conclusion, the article provides a comprehensive guide on how to fortify account security through a combination of advanced authentication methods, device management, and user-friendly features. Following these recommendations, particularly the implementation of MFA with push notifications, can significantly reduce the risk of unauthorized access to online accounts.
