Skip to main contentTwo-Factor Authentication
To enhance security, IRON requires an email two-factor authentication (2FA) for various actions. This ensures that actions cannot be performed on behalf of a customer without their explicit approval.
2FA is required in the following cases:
- During the customer onboarding, we collect verified email addresses from individuals legally associated with the customer.
- When editing the destination address of an AutoRamp (fiat or wallet).
- When reusing an existing Viban or AN (E.g Cancelling, Creating and the same Viban gets re-used).
User Experience:
- The customer receives an email from Iron with a 2FA code or a confirmation link.
- If the customer does not click the confirmation link, they can manually enter the code in your app to confirm the action.
Sandbox Testing
Whenever a resource requires 2FA authentication, the static value 123456 can be used to succeed the process. 
