Configuring Email (2FA) verification checks

Overview

Below, we’ll guide you through choosing and configuring a Email (2FA) Verification. We’ll walk through each of these steps:

1. Review possible Verification checks
2. Choose which Verification checks to require
3. Set maximum attempts allowed
4. Edit required checks

Each step is important. The first two steps help you decide what information and checks best support your use case. The remaining steps walk through how to configure those choices.

The Email (2FA) Verification offers a few configurations, including required or un-required verification checks, and maximum retries (the number of confirmation code attempts allowed).

Step 1: Review possible Verification checks

Navigate to Documentation > Verification Checks reference in the Dashboard. Find the section for Email checks. The table includes all possible checks to choose from.

Step 2: Choose which Verification checks to require

The Verification checks you choose to require will depend on your organization's specific needs. There is no one-size-fits-all configuration for these checks, but the following guidelines can help you optimize your setup:

Consider the business goals of the Inquiry Template. For example:

• Do you want to prioritize avoiding false positives (people passing verification who should not), or avoiding false negatives (people failing verification who should not)? The more strict your verification needs are, the more checks you may want to require.
• Some checks are more fraud oriented while others are more conversion oriented.

Use the Verification check reference to see which checks are more suitable for your business.

Monitor and iterate. Keep in mind that you can adjust Verification checks as your needs change. For example, you can start with the defaults, then change one check to see how it impacts your Inquiry pass rates. You can use Inquiry Analytics to help you decide if it was an improvement.

Step 3: Set maximum attempts allowed

This setting controls how many times an end user can enter a confirmation code before the Email Verification fails.

By default, users are allowed 5 attempts.

Allowing more attempts can improve conversion if users mistype a code. However, allowing too many attempts may increase fraud risk, as it gives additional opportunities to guess a valid code.

Choose a limit that balances user experience and security for your use case. For higher-risk flows, consider reducing the maximum attempts. For lower-risk or high-conversion flows, the default setting is often appropriate.

Step 4: Edit required checks

Once you decide which Verification checks to require, you can add or remove a required Verification.

For Email Verification Templates within an Verification Template:

1. In the Persona Dashboard, navigate to Verifications > Templates.
2. Select the Email Verification template.
3. Navigate to Checks.