How to share a security device

Overview: 

IBKR allows individuals to maintain multiple user names within a single account or across distinct accounts under their control.  Individuals who do not wish to maintain multiple physical security devices may elect to consolidate and share a single device across their users. The prerequisites and the procedure for sharing devices are outlined below.

Note: Clients using the IBKR Mobile Authentication (IB Key) should not use the present device sharing procedure, since the IB Key allows multiple users to be enabled directly from the IBKR Mobile app itself (menu item: Authenticate -> Add user). 
 
Background: 

Prerequisites

The possibility of sharing a physical security device will be granted only if ALL the conditions below are respected:

a) The participant users belong either to the same entity or to different entities but with the same identification data (Date of Birth, Citizenship, Country of Legal Residence, Identification Document type and number or Social Security Number for US Citizens and residents). 

b) The participant users do NOT have a temporary security device (Temporary Code, Online Security Code Card) currently assigned to them.

c) The physical device offering the highest level of protection has to be shared. In case all the devices offer the same level of protection, whichever of them can be eligible. You can check the security level of your device in the table below:

Security level

Device name

Device image

Highest Digital Security Card+ (DSC+)
Lowest Security Code Card (SLS card)
 
 

Procedure:

1. Among the possible candidates, identify the device offering the highest level of protection and the user that device belongs to. We will call that user the device owner

2. Log in to your Client Portal page with the requesting user (NOT the device owner)

3. Click on Menu icon in the top-left then select Settings and then User Settings
 
 4. Click on the wheel (Settings) close to Secure Login System
 
5a. In case your user does not have any active device, the system will display the SLS enrollment menu. Select the item "I already have access to a Secure Login Device under a different username" and click on Continue
 
5b. In any other case, the system will display the device list. Click on Share Device to proceed further
 
6. Enter the credentials of the device owner you identified at point 1. and click on Continue.

 
7. According to the SLS Device about to be shared, the system will display a security element (either Challenge Code or Index Numbers). Operate the SLS Device and, using the security element provided by the system, generate a response code. Enter the response code in the correspondent field and click on Continue.
 
8. Once you have reviewed the correctness of the information entered, click on Continue.

 
9. The system will display the status of your request (see note a. for details). Click OK to finalize the procedure.

 

NOTES:

a. In the vast majority of cases your sharing request will be automatically and immediately approved, processed and enforced. In case the approval of our Compliance department is needed, your request will stay in a pending status until this step has been cleared.

b. Once the device sharing request has been processed, you could keep the redundant device/s in a safe place. In the future you might decide to cancel the device sharing and reactivate those devices instead. If you do not feel the need to store them, you can send them (only DSC+) back to us following the instructions contained on this page:
 

c. Here below you can see the most common error messages and their causes:

- Less secure device: This error is returned if you set up the less secure token as the one to be shared. Please identify the most secure device and share that one.

- Different identification information:
This error is returned if the identification data of the entities/individuals involved in the sharing does not match. If the users belong to different entities/individuals, please notice that the token sharing will NOT be possible by design.
If the users belong in fact to the same entity/individual, the mismatch could be due, for example, to an outdated identification document on record. In this case, you can contact our Client services to have the data rectified.

 

 References:
  • Overview of the Secure Login System: KB1131 or ibkr.com/sls 
  • Multiple Two-Factor Authentication System (M2FS): KB2895
  • How to share the Security Login Device between two or more users: KB2481
  • How to opt back into the Secure Login System: KB2545
  • Security considerations following SLS opt-out: KB1198
  • Are there any charges or expenses associated with the security devices? KB1861
  • How to troubleshoot Client Portal Login Failures: KB1132
  • How to troubleshoot Trading Platform Login Failures: KB1133

 

Présentation du Système d'accès sécurisé (SLS)

Table des matières

 

La protection de vos actifs et de vos renseignements personnels est de la plus haute importance pour nous. Nous nous engageons à tout mettre en œuvre pour garantir leur protection dès le moment où vous ouvrez votre compte. .  

Afin de vous proposer la meilleure protection possible en ligne, Interactive Brokers a mis au point un Système d'accès sécurisé (SLS), qui soumet l'accès à votre compte à la validation de deux éléments de sécurité. Cette méthode d'authentification en deux temps a pour but de vérifier votre identité au moment de la connexion au moyen des facteurs suivants : 1) un élément que vous connaissez (la saisie de votre combinaison nom d'utilisateur-mot de passe) ; et 2) un élément dont vous disposez (un appareil de sécurité délivré par IB qui génère un code aléatoire à usage unique). Si vous participez au Système d'accès sécurisé, la connexion à votre compte nécessite à la fois votre combinaison nom d'utilisateur - mot de passe et la possession de votre appareil de sécurité. Ce dispositif élimine ainsi la possibilité pour une personne autre que vous d'accéder à votre compte..
 

Avantages d'une inscription

En vous inscrivant au système de protection SLS, vous protégez votre compte contre les tentatives d'accès non-autorisées. L'inscription est gratuite[1] et les participants bénéficient des avantages suivants:
  1. des plafonds de retrait plus élevés sur des périodes d'une journée et de cinq jours consécutifs.
  2. la possibilité de modifier vos instructions bancaires et votre adresse e-mail sans contacter un membre de notre équipe de sécurité.
  3. la possibilité d'effectuer des opérations de financement par ACH et par TEF au-delà de l'opération d'approvisionnement initial du compte de 20,000 USD.
  4. la possibilité d'utiliser un seul appareil pour plusieurs identifiants de comptes enregistrés sous une même personne.
 
 
 

Comment s'inscrire

La procédure d'inscription est simple. Pour les premières demandes d'ouverture de compte, un lien vous sera envoyé par e-mail, accompagné de consignes pour imprimer et activer une carte de sécurité temporaire lors de la phase de configuration du compte de votre demande d'ouverture. Cette carte de sécurité en ligne est conçue comme un dispositif temporaire, qui arrive à expiration 21 jours après l'approvisionnement de votre compte. Au cours de cette période, un appareil de sécurité permanent vous sera expédié. Après avoir reçu votre appareil définitif et suivi les consignes pour l'activer, votre carte de sécurité temporaire sera automatiquement désactivée et vous pourrez vous en débarrasser. Il est important de noter que les appareils de sécurité permanents sont programmés pour s'activer automatiquement au bout d'une période prédéfinie, faute d'être activés par le détenteur du compte. Enfin, si vous optez pour IB Key (l'Application de sécurité numérique pour smartphone), vous devrez valider votre numéro de téléphone. Vous pouvez le faire directement sur l'application de votre smartphone. À ce sujet, des instructions détaillées sont disponibles dans l'article KB2260.
 
Si vous êtes déjà utilisateur sans vous être inscrit au Système d'accès sécurisé SLS au préalable, connectez-vous à l'espace Gestion de compte et sélectionnez  Configuration du compte-> Sécurité-> Système d'accès sécurisé et enfin Appareil de sécurité. Un écran affichera alors l'appareil que vous recevrez et vous permettra de vérifier l'adresse enregistrée pour l'envoi.
 
 
 

Appareils perdus, endommagés ou temporairement indisponibles

Dans le cas d'un appareil perdu, endommagé ou temporairement indisponible, vous devez contacter votre Service clientèle par téléphone pour demander que l'appareil soit remplacé et/ou pour obtenir un accès temporaire. Une fois votre identité vérifiée, un code temporaire vous sera fourni. Il s'agit d'un code alphanumérique statique qui remplace le code aléatoire fourni par votre appareil de sécurité et qui vous permettra d'accéder à votre espace Gestion de compte et d'imprimer la carte de sécurité en ligne. Depuis la Gestion de compte, vous serez en mesure d'imprimer une carte de sécurité temporaire. La carte de sécurité temporaire vous permettra d'accéder temporairement au compte pour une période de 21 jours maximum, période suffisante pour l'expédition d'un nouvel appareil ou pour la réactivation de votre appareil permanent si ce dernier était temporairement indisponible. Pour connaître la procédure de demande d'appareil de remplacement, consultez l'article KB1943.
 
 
 

Types d'appareils

IB fournit toute une gamme d'appareils de sécurité, chaque appareil étant conçu pour correspondre en termes d'ergonomie et de protection aux besoins spécifiques de votre compte. Une fois le compte approvisionné, les détenteurs de compte ont la possibilité d'activer une application de sécurité smartphone ou de demander un appareil physique de sécurité.   
  1. Security Code Card - D'aspect similaire à une carte de crédit, elle affiche 224 codes alphanumériques.
  2. Digital Security Card+ - Similaire à la Digital Security Card, elle procure une protection supplémentaire grâce à un code Challenge.
  3. IB Key – Il s'agit d'une application disponible pour les téléphones Android et les iPhones[2] à laquelle vous accédez au moyen d'un code PIN.
 

Remarques :

1: Pour la Digital Security Card+ si votre appareil est perdu, endommagé ou volé, ou si vous fermez votre compte et ne retournez pas l'appareil, la couverture des frais vous sera facturée. Les frais, une fonction de l'appareil fournis, sont de 20.00 USD.
2: Les utilisateurs iPhone doivent avoir activé Touch ID & le code de sécurité (veuillez vous référer aux consignes d'activation de Touch ID ).
 
 

 

Informations complémentaires 

Veuillez consulter l'article KB1042 pour des instructions sur la connexion avec une carte de codes de sécurité.
Veuillez consulter l'article KB2277 pour des informations complètes concernant IB Key pour Android.
Consultez l'article KB2278 pour des informations complètes concernant iOS.
 
 

Retour au début

 

 

IBKR Mobile Authentication Overview - iOS

Overview: 

This page covers specific points of installing and using IBKR Mobile for Authentication purposes and usign the IB Key protocol on iOS devices.  For general questions on IBKR Mobile Authentication, please refer to KB2260.

 

Table of contents

 

Requirements

  • Must be installed on an iOS device with Touch ID (fingerprint reader) or Face ID (facial recognition).
  • Device's software version must be iOS 11.0 or later.
  • Device must have either Touch ID, Face ID or Passcode enabled. Touch ID or Face ID is the recommended choice. Refer to Set up Touch ID or Set up Face ID for directions.
 Back to top
 

Installation

You can download IBKR Mobile app on your iPhone directly from the App Store

Get the IB Key from the Apple Store

How to download IBKR Mobile from the App Store:

  1. On your iPhone tap on the App Store App Store icon icon.
  2. Click on the Search icon (magnifying glass) in the lower right corner, then click in the search bar at the top, type IBKR Mobile then click Search.
  3. Look for IBKR Mobile from Interactive Brokers LLC, tap on GET to the right, then tap INSTALL
    (if prompted, enter your Apple ID password or provide your fingerprint.)
  4. Once the installation has completed, tap on Open to launch the IBKR Mobile app.
        

 

Back to top

 

Activation

Once the app is installed on your device you will need to activate it for the username you would like to enroll. This operation happens entirely on your phone, requires Internet access and the ability to receive SMS (text message).

  1. On your phone, open the IBKR Mobile app:

1.a. If you're opening IBKR Mobile for the first time since its installation, you will receive a message asking your consent for IBKR notifications (Figure 1.), tap Allow and proceed with step 2.

1.b. If when opening IBKR Mobile you land on the login screen, tap Services on the top left (Figure 2.) and proceed with step 2.

1.c. If when opening IBKR Mobile you land on your Home Page, Portfolio, Watchlists, or similar, tap More on the bottom-right (Figure 3.). Then tap Services on the top left (Figure 4.) and proceed with step 2.

Figure 1.                                                      Figure 2.
    

Figure 3.                                                      Figure 4.

    

2. Tap Register Two-Factor, review instructions then click Continue.

    

3. Enter your Account Username and Password then tap Continue.

        

4. The default mobile phone number on record for your account will be already selected. If you are not able to receive text messages (SMS) on that number, you should choose a different one from the list (if applicable) or add a new one. To add a new mobile phone number, tap Add Phone number, enter the new number1 and corresponding Country.  Once you have selected your preferred mobile number from the list or added the new mobile number, tap Get Activation SMS.

5. An SMS message will be sent with an Activation Token. Enter the token in the Activation Code field. Then tap Activate.
       

6. According to your phone hardware capabilities, you might be prompted to provide or define the security element used to secure the app (Fingerprint, Face ID or PIN2). Please provide the requested security element.
     

7. If the activation has been successful, you will see a confirmation screen. Tap Done to finalize the procedure
 

Once the IBKR Mobile authentication has been activated, you can close the app. Refer to Operation with Touch ID or Operation with Face ID below on how to use IBKR Mobile for authentication.

Notes:

  1. You must enter your phone number without your country's trunk prefix and only enter numbers without any spacing or special characters.
  2. The recovery PIN will be used to enable additional users or re-enable IBKR Mobile if it has been uninstalled. It must be at least 4 and up to 6 characters (letters, numbers and special characters allowed). Refer to KB2269 for additional guidelines.

Back to top
 

Operation with Touch ID

Once activated, operation of IBKR Mobile Authentication using Touch ID is as follows:


IMPORTANT NOTE: If you do not have Internet access while operating IBKR Mobile Authentication, please refer to the section "What if I don't receive the notification?"


  1. Enter your username and password into the trading platform or Client Portal login screen and click Login. If correct, a notification will be sent to your iPhone.
    Two Factor Authentication Prompt
     
  2. On your iPhone, check your notifications panel and select the IBKR Mobile app notification.
     
     
  3. Selecting the notification will launch the IBKR Mobile app. On your iPhone, place your finger that was registered for Touch ID on the Home Button. If the Touch ID has not been activated, IB Key will prompt you to enter the Passcode.
         

  4. If authentication succeeds, the log in will now automatically proceed.
    Login proceeds after authentication 

Back to top
 

Operation with Face ID

Once activated, operation of IBKR Mobile Authentication using Face ID is as follows:
IMPORTANT NOTE: If you do not have Internet access while operating IBKR Mobile Authentication, please refer to the section "What if I don't receive the notification?"

  1. Enter your username and password into the trading platform or Client Portal login screen and click Login. If correct, a notification will be sent to your iPhone.
    Two Factor Authentication Prompt
     
  2. On your iPhone, check your notification menu and select the IBKR Mobile app notification.
     
     
  3. Selecting the notification will launch the IBKR Mobile app. On your iPhone, look at the screen to authenticate via Face ID. If Face ID has not been activated, IB Key will prompt you to enter the Passcode.
            

  4. If authentication succeeds, the log in will now automatically proceed.
    Login proceeds after authentication 

Back to top
 
 

What if I don't receive the notification?

If notifications are disabled, no internet access is available or if you have a poor, unstable connection it is possible the notification may not arrive. In these cases operation of IBKR Mobile Authentication is as follows: 

  1. Click the link Click here if you do not receive the notification.

     
  2. This will generate challenge code and box to enter response.    
  3. Launch IBKR Mobile on your Smartphone, then select Authenticate.  Type the Challenge number into the corresponding box.
        
  4. If you use Touch ID, place your finger that was registered on the Home Button. If the Touch ID has not been activated, IBKR Mobile will prompt you to enter the Passcode. A response string will be generated. If you use Face ID, skip this step and go to the next one.
        
  5. If you use Face ID, look at the screen to authenticate via Face ID. If Face ID has not been activated, IB Key will prompt you to enter the Passcode. A response string will be generated.
        
  6. Enter the response from your iPhone into the log in screen and click OK
  7. If authentication succeeds, the log in will now automatically proceed.
    Login Proceeds

 

Back to top

 

References:
  • See KB2748 for instructions on how to recover IBKR Mobile Authentication.
  • See KB3234 for troubleshooting missing IBKR Mobile notifications
  • See KB2745 for instructions on how to clear the cache for the IBKR Mobile app.

 

IBKR Mobile Authentication Overview - Android

Overview: 

This page covers specific points of installing IBKR Mobile and using the IBKR Mobile Authentication for authentication purposes and using the IB Key protocol on Android devices.  For general questions on the IBKR Mobile Authentication, please refer to KB2260.

 

Table of contents

 

Requirements

  • Must be installed on an Android Phone that has not been rooted.
  • Device's Android Version must be 6.0 or later.

 

Installation

You can download the IBKR Mobile app on your smartphone directly from;
Google Play Store, 360 Mobile Assistant or Baidu Mobile Assistant.

Get the IB Key from the Google Play store          Download IB Key from 360 Mobile Assistance          Download IB Key from Baidu Mobile Assistant
 

How to install IBKR Mobile from the Google Play Store:

  1. On your Android phone tap on the Play Store Google Play Store App icon app.
  2. Tap on the search bar at the top, type IBKR Mobile then tap Search.
  3. Locate the app IBKR Mobile from Interactive Brokers Group, then select it.
  4. Tap on Install to the right.
  5. Once the installation completes, tap on Open to launch the IBKR Mobile app.

     Search for IB Key on Google Play Store   Install IB Key on Google Play Store

 

Back to top

 

Activation

Once the app has been installed on your device you will need to activate it for the username you would like to enroll. This operation happens entirely on your phone, requires Internet access and the ability to receive SMS (text message).

1. On your phone open the IBKR Mobile app:

1.a. If you're opening IBKR Mobile for the first time since its installation, proceed to step 2.

1.b. If when opening IBKR Mobile you land on the login screen, tap Services on the top left (Figure 1.) and proceed with step 2.

1.c. If when opening IBKR Mobile you land on your Home Page, Portfolio, Watchlists, or similar, tap the Menu icon on the top-left (Figure 2.). Then tap Services at the top next to the account number (Figure 3.) and proceed with step 2.

Figure 1.                                                    Figure 2.                                                    Figure 3.

   

2. Tap Register Two-Factor, review instructions and then tap Continue.
 
 

3. Enter your IBKR Account Username and Password then tap Continue.

 

4. The default mobile phone number on record for your account will be already selected. If you are not able to receive text messages (SMS) on that number, you should choose a different one from the list (if applicable) or add a new one. To add a new mobile phone number, tap Add Phone Number, enter the new number1 and corresponding Country.  Once you have selected your preferred mobile number from the list or added the new mobile number, tap Get Activation Code


5. An SMS message will be sent with an Activation Token. Enter the token in the Activation Code field, create a PIN2 then tap Activate.
   
 

6. You will receive a message with the outcome of the operation. Tap Done to finalize the procedure.
 

Once IB Key Authentication via IBKR Mobile has been activated, you can close the app. Refer to Operation instructions below on how to use the IBKR Mobile for authentication.

 

Notes: 

  1. You must enter your phone number without your country's trunk prefix and only enter numbers without any spacing or special characters.
  2. The PIN must be at least 4 and up to 6 characters (letters, numbers and special characters allowed). Refer to KB2269 for additional guidelines.
Back to top
 

Operation

Once activated, you can use the IBKR Mobile to authenticate your login attempt as follows:
IMPORTANT NOTE: If you do not have Internet access while operating the IBKR Mobile, please refer to the section "What if I do not receive the notification?"

  1. Enter your IBKR Account credentials into your trading platform or Client Portal login screen and click Login. If your credentials have been accepted, a notification will be sent to your phone.
    Two Factor Authentication Prompt
  2. On your phone, swipe down from the top and check your notification drawer. Tap on the IBKR Mobile notification. If you have not received the notification, please refer to KB3234.
    IB Key Push Notification prompt on Android Phone 
  3. The IBKR Mobile app will open, prompting you for your fingerprint or your PIN, according to the hardware capabilities of your phone. Please provide the requested security element.
     
     
  4. If the authentication has succeeded, the trading platform or Client Portal login process will automatically move ahead to the next phases.
    IB Key authenticate successful, TWS continues to login
 
Back to top
 

What if I do not receive the notification?

If notifications are disabled, no internet access is available or if you have a poor, unstable connection, the notifications may not reach your phone. In these cases the seamless authentication may not be available but you can still use the manual Challenge/Response authentication method as described below: 

  1. On your trading platform or Client Portal login screen, click the link "Click here if you do not receive the notification".
    Click here if you do not receive the notification
  2. Challenge code will be displayed on the screen.
    TWS Two Factor Challenge/Response
     
  3. Launch the IBKR Mobile app on your Smartphone, select Authenticate (if necessary), enter your PIN and the Challenge code you obtained in the previous step. Tap Generate Passcode.
     
     
  4. Response String will be displayed.

     
  5. Enter the Response String into your trading platform or Client Portal login screen. Then click OK.
    Manually enter response string and click OK
     
  6. If the authentication has succeeded, the trading platform or Client Portal login process will automatically move ahead to the next phases.
    IB Key authenticate successful, TWS continues to login

 

Back to top

 

References:
  • See KB2748 for instructions on how to recover IBKR Mobile Authentication.
  • See KB3234 for troubleshooting missing IBKR Mobile notifications
  • See KB2745 for instructions on how to clear the cache for the IBKR Mobile app.
 

 

Comment demander un appareil de sécurité

Pour procéder au remplacement d'un appareil de sécurité perdu, volé ou hors d'état de marche, vous devez procéder comme suit :

1. Informer le service clientèle : vous devez contacter le Service clientèle pour demander le remplacement de votre appareil et obtenir un accès temporaire.  Il est important de noter que ce service peut être fourni uniquement par téléphone et, pour des raisons de sécurité, l'identité du détenteur de la carte devra être vérifiée. Une fois vérifiée, un code d'accès temporaire sera émis correspondant à une version statique du code généré de manière aléatoire depuis votre appareil permanent. Par conséquent, il devra être saisi en même temps que votre identifiant et mot de passe lorsque vous vous connectez.

2. Obtenir une carte de code d'accès en ligne temporaire : le code d'accès temporaire ne sera valable que quelques jours (2 jours pour un accès intégral à la Gestion de compte et à la plateforme de trading et 10 jours supplémentaires pour un accès restreint à la Gestion de compte ) et vous fournit un accès à la Gestion de compte en attendant votre carte d'accès sécurisé en ligne. Cette carte offre une protection renforcée, l'accès à toutes les fonctionnalités (y compris de retrait) et offre la possibilité de ré-activer l'appareil permanent sans avoir à contacter le service clientèle. Consultez KB1873 pour des instructions étapes par étapes d'obtention de la carte d'accès sécurisé.

3. Demander un appareil de remplacement : après avoir activé la carte d'accès sécurisé en ligne, 4 options vous seront proposées. Sélectionnez l'option  'Demander une nouvelle carte d'accès sécurisé' et cliquez 'Continuer'.

Vous serez alors informé du type d'appareil de remplacement que vous recevrez ainsi que de l'adresse, la date prévisionnelle et la méthode de livraison. Si votre appareil de remplacement nécessite l'activation d'un PIN (carte de sécurité numérique, digital security card +), vous recevrez des instructions en ligne pour créer un PIN et finaliser votre demande.

Remarques importantes

- Par mesure de sécurité, l'appareil de remplacement s'activera automatiquement juste après avoir été livré.  Bien que la carte de sécurité en ligne n'expire qu'après la date de livraison, nous vous recommandons fortement de réactiver votre appareil de remplacement lorsque vous le recevez pour vous assurer de bénéficier d'un accès ininterrompu à votre compte.  Les instructions pour réactiver votre carte peuvent être consultées sur l'article KB1942.

- Si vous perdez, endommagez ou vous faites voler votre appareil, ou si vous clôturez votre compte et ne retournez pas l'appareil, des frais vous seront facturés pour couvrir les coûts associés. Ces frais, qui correspondent à un pourcentage du coût de l'appareil fourni, sont de 20.00 à 150.00 USD.

 

Comment retourner mon appareil de connexion sécurisée à Interactive Brokers ?

Pour retourner votre appareil d'accès sécurisé à Interactive Brokers (s’il est défaillant, ou en raison de consolidation ou fermeture de compte), veuillez suivre les instructions ci-dessous :
  1. Téléchargez et imprimez le Secure Login Device Return Form.
  2. Complétez le formulaire et emballez-le avec votre appareil.  
  3. Envoyez votre colis à l’adresse ci-dessous.
Pour votre protection, nous vous recommandons d’utiliser une enveloppe matelassée ou renforcée et un service d'expédition qui fournit un numéro de suivi (par exemple UPS, FedEx, DHL, ou USPS Express Mail) car vous êtes responsable du retour de l’appareil. Comptez un minimum approximatif de 3 jours après l’expédition pour que votre compte reflète la réception de l’appareil. Notez que la livraison peut varier en raison du retard des transporteurs.
 
Informations complémentaires en cas de retour d’un remplacement
S’il s’agit du retour d’un remplacement et non d’une fermeture de compte, veuillez contacter notre équipe support sécurité au +1-203-618-4006 ou +41-41-726-9500 pour nous informer de votre appareil défectueux et nous vous fournirons un code de sécurité temporaire qui vous permettra de continuer à accéder à votre compte jusqu’à ce que vous receviez un remplacement. IB offre plusieurs types d’appareils. Vous trouverez ci-dessous des informations complémentaires pour chaque type :
 
Appareil Platinum :
Si vous retournez un appareil de connexion sécurisé Platinum (photo 1) et nécessitez un remplacement, veuillez faire la demande dans la Gestion de Compte. Cette démarche est nécessaire en raison des caractéristiques de sécurité améliorée de ce dispositif. Vous ne pourrez demander un nouvel appareil que lorsque IB aura accusé réception de l’appareil retourné car un seul périphérique à la fois peut être connecté à votre compte. Une fois la commande faite, assurez-vous d’imprimer la page de confirmation qui contient un code PIN et un mot de passe unique nécessaires pour activer votre nouvel appareil.
Photo 1
 
Appareil Alpine :
Si vous retournez un appareil de connexion sécurisée Alpine  (photo 2), IB remplacera l’appareil par une carte de sécurité numérique comme ci-dessous. La production des appareils Alpine a été arrêtée et ils ne sont donc plus disponibles pour distribution.
Photo 2
 
Carte de sécurité numérique (DSC) :
Si vous retournez une carte de sécurité numérique et nécessitez un remplacement, veuillez faire la demande dans la Gestion de Compte. Cette démarche est nécessaire en raison de la fonction PIN de la carte. Veuillez mémoriser votre PIN car vous en aurez besoin pour l’activation de votre carte.
 
Carte de sécurité à code :
Il n’est pas nécessaire de renvoyer ces cartes qui peuvent être détruites.
Adresse postale aux États-Unis et Canada: Adresse postale en Europe: Adresse postale en Asie: Adresse postale en Australie:
Interactive Brokers, LLC.
Attn: Token Return Department
2 Pickwick Plaza
Greenwich, CT 06830
(203) 618-4006

Interactive Brokers (U.K.) LTD.
Attn: Token Return Department
Gotthardstrasse 3
CH-6301 Zug
Switzerland
+41-41-726-9500
Interactive Brokers, LLC.
Attn: Token Return Department
Suite 1512,
Two Pacific Place
88 Queensway Admiralty, Hong Kong
 
Cantonais:
+852-2156-7907
Mandarin:
+86 (21) 6086 8586
Interactive Brokers, LLC.
Attn: Token Return Department
Grosvenor Place, Level 42
225 George Street
Sydney, 2000
+61 (2) 8093-7300
Fermeture de compte
L’accès à la Gestion de Compte pour consulter et/ou imprimer des rapports d’activité et des formulaires d’impôts est prévu après le retour de votre appareil et la fermeture de votre compte. Une fois fermé, vous pourrez vous connecter avec votre nom d’utilisateur et mot de passe, sans le dispositif de sécurité.
 
Si vous avez des questions ou besoin de clarification, veuillez contacter l’un de nos spécialistes sécurité au +1-203-618-4006 ou +41-41-726-9500, ou envoyez un email à tac@interactivebrokers.com
 
Pour en savoir plus sur les frais de remplacement des dispositifs de sécurité qui sont perdus, volés, endommagés ou non retournés à la clôture du compte, voir KB1861.
 

 

How to request a Digital Security Card+ (DSC+) replacement

Overview: 

The below steps are required in order to:

  • Replace a Digital Security Card+ which has been lost, stolen or has become inoperable
  • Request a Digital Security Card+ alongside your current security device
Background: 

1. Notify IBKR Client Services- Contact IBKR Client Services to obtain a temporary account access. This service can only be provided via telephone and requires the identity of the account holder to be verified, as detailed in KB70.

2. Obtain an Online Security Code Card - Activate an Online Security Code Card, which offers enhanced protection and full Client Portal functionality for an extended period of 21 days. Please consult KB1873 should you need guidance for this specific step.

3. Request the DSC+ replacement - Once you have completed the Online Security Code Card activation, please remain in the Secure Login System section of the Client Portal and order your replacement DSC.

 

Request a DSC+

1. Click on the button Request Physical Device.

2. The shipping address will be shown in the device information screen. If your address is outdated or invalid, you can amend it by clicking on Change Address and following the on-screen instructions. If you do not need to update your address, please proceed to step 3.

3. Enter a four-digit Soft PIN1 for your DSC+. Please make sure to remember the PIN you are typing since it will be necessary to activate and to operate your device. When applicable and desired, you may change the account on which the 20 USD deposit will be kept on hold2.  Complete this step by clicking on Continue.

4. The system will show you a summary of your selection. Please make sure the information displayed is correct. Should you need to perform changes, click on the white Back button under the information field (not your browser back button), otherwise submit the request by clicking on Continue.

5. You will receive a final confirmation containing the estimated shipment date3. Click on Ok to finalize the procedure.

Notes

1. For PIN guidelines, please consult KB2269.

2. The Security token and the shipment are both free of charge. Nevertheless, when you order your device, we will freeze a small amount of your funds (20 USD).  If your device is lost, intentionally damaged, stolen or if you close your account without returning it to IBKR, we will use that amount as a compensation for the loss of the hardware. In any other case, the hold will be released once your device has been returned to IBKR. More details on KB1861.

3. For security reasons, the replacement device is set to auto-activate within three weeks from the shipment date. IBKR will notify you when the auto-activation is approaching and when it is imminent.

 

References
  • See KB1131 for an overview of the Secure Login System
  • See KB2636 for information and procedures related to Security Devices
  • See KB2481 for instructions about sharing the Security Login Device between two or more users
  • See KB2545 for instructions on how to opt back in to the Secure Login System
  • See KB975 for instructions on how to return your security device to IBKR
  • See KB2260 for instructions on activating the IB Key authentication via IBKR Mobile
  • See KB2895 for information about Multiple 2Factor System (M2FS)
  • See KB1861 for information about charges or expenses associated with the security devices
  • See KB69 for information about Temporary passcode validity

 

Security considerations following SLS opt out

Overview: 

Account holders who have elected to opt out of IBKR's Secure Login System (SLS) effectively relinquish the protections afforded by Two-Factor Authentication. They are strongly encouraged to utilize alternative security measures, with one of those being the IP Restrictions. By selecting this setting through Client Portal, you're telling Interactive Brokers that you only want access to your trading platforms from a specified IP address. In addition, should you have multiple authorized traders for a given account, these restrictions can be set at the individual trader level by the master user of the account. 

 

Preliminary checklist:

Before setting up the IP Restrictions, you will need to:

  • Know your WAN IP Address. That is the IP address exposed on the external (Internet) side of your network and it is different from your local IP address (called as well LAN IP address). If you trade from a company office, you can ask your IT or Networking department for the WAN IP address of your computer. If you connect to the Internet through a private broadband/cable/satellite connection you can get this information from your ISP (Internet Service Provider).
  • Make sure that your IP address is static. This means your IP address will always remain the same, and will not change upon router/modem reboot or after a certain time period. The same entities which provided you with the WAN IP address, can as well clarify whether it is a static or dynamic one.
  • Be aware that IP Restrictions are not effective immediately. Our systems apply the filters during their daily overnight restart. It can take up to 24 hours until they are active, depending on the time you submit your IP Restrictions request. The same applies when you modify or remove existing IP Restrictions. Please be sure to consider this when you are planning your course of action.
  • The IP Restrictions will be applied to ALL Trading Platforms offered by IBKR. It will not affect Client Portal access, which will remain accessible from any IP address.

Note:

Please take note that the technical ability to misrepresent one's IP address exists, and full account protection is only ensured by using SLS Two-Factor Authentication (ibkr.com/sls).

If you have any questions on the topic, please feel free to contact IBKR's Technical Assistance Center.

How to set the IP Restrictions:

  1. Login to Client Portal and click the menu icon in the top-left corner.
  2. From the left side menu, click on Settings, then on User Settings. Then click on the wheel (configure) icon next to IP Restrictions.
  3. You will see a brief description of the effects of IP Restrictions. To set up a new IP Restriction, click on Add IP Restriction.
  4. Select the Trader from the drop-down list and enter the IP Address (in the format xxx.xxx.xxx.xxx) you want to allow for him. Then click on Continue.
  5. If you logged into Client Portal without using the Two-Factor Authentication, you will now receive an email1 containing a Confirmation Number. Enter it in the Confirmation Number field. Once done, click on Continue to submit the request. If you logged in to the Client Portal using a security device, please proceed directly to point 6.
  6. If the operation completed successfully, you will see a confirmation screen. Click OK.
  7. The system will now list your active IP Address restrictions. Should you want to create an additional one, click again on Add IP Restriction, otherwise navigate away from this section

 

Opt-out and IP Restrictions for Penny Stocks traders:

Clients who have elected to perform an opt-out, thus using the Two-Factor Authentication only for the Client Portal, must activate the IP Restrictions in order to be able to activate Penny Stocks Trading Permissions.


Additional best practices for securing your computer and your network

  • When logging into the TWS, activate the checkbox “Use SSL” on the login screen. SSL (Secure Socket Layer) guarantees that all the information exchanged between your computer and our servers is protected using 128-bit encryption.
  • Use a firewall to prevent unauthorized access to the services exposed by your network or/and computer. During the firewall set-up, please make sure you authorize the host/ports listed in section DESKTOP TWS of KB2816.
  • Use antivirus software to identify and eliminate viruses which might have infected your computer.  As new viruses are constantly being created, you need to update the threats database of your antivirus software regularly.
  • Use anti-malware software to detect and remove spyware/malware programs which can collect various types of personal information, monitor your browsing activity and interfere with the control of your computer. Nowadays many antivirus solutions include a built-in anti-malware protection.
  • Refrain from using wireless connections (Wi-fi) which are public, unsecured or not operated by you. If the use of a unsecured network (e.g. public Wi-Fi hotspot) becomes necessary, do not log into any financial institution account you may have, including your IBKR account.

 

Notes:
1. If you have not received the email, please make sure it did not land in the Spam/Junk folder of your mailbox and possibly add the email addresses donotreply@interactivebrokers.com and help@interactivebrokers.com to the trusted senders list. You can then request a new email to be sent to you with the button Resend Confirmation Number.

 

Troubleshooting Client Portal Login Failures

Click on the link below which best describes your situation:

  1. Receiving “Invalid user name password combination” message
  2. Receiving “Login Failed” message upon entering security device values
  3. I’ve forgotten my user name and/or password
  4. I’m temporarily without possession of my security device
  5. My security device has been lost or damaged
  6. I’ve been issued a temporary passcode which has expired
  7. I’ve been issued an online security card which has expired
  8. I’m awaiting delivery of my physical security device and can now no longer log into my account
  9. I am able to log into Client Portal with my temporary passcode but not the trading platform
  10. I am in possession of my security device and wish to activate it
  11. Receiving “BAD CHARACTER” message after entering my user name

IMPORTANT NOTE: If you are unable to resolve your account access issue from the information above, please contact your local Client Services Center.  Also note that for security purposes, all requests for login assistance must be initiated via telephone as it requires prior verification of the account holder's identity. A listing of Client Services Centers, contact numbers and hours of operations may be found via the following website link: ibkr.com/support

 

 

1. Receiving “Invalid user name password combination” message.

Make sure that the Caps Lock key is not on as user name is case sensitive and is required to be input in lower case format.

IMPORTANT SECURITY NOTICE: If an account experiences 10 consecutive failed Client Portal login attempts within any 24-hour period, it will be locked out from login regardless of subsequent attempts using the correct user name and password combination. This lock out, intended as a security measure to prevent hackers from random attempts to guess the password, will remain in force until 24 hours have passed since the last unsuccessful log in attempt.

If you believe that your account has or is about to be been locked due to consecutive failed login attempts, you will need to contact to contact your regional Client Services Center via telephone for assistance. Note that assistance for log in matters is only provided via telephone and after the identity of the account holder has been verified.

...Top

 

 

2. Receiving “Login failed” message upon entering security device values

a. If operating with a temporary passcode, note that alpha characters are case sensitive and are required to be input in upper case format

b. If operating a security card or electronic device, note that there are no spaces between characters

...Top

 

 

3. I’ve forgotten my user name and/or password

For security purposes, all requests for assistance with a user name and/or password must be initiated via telephone and require prior verification of the account holder’s identity. Requests are to be directed to one of the regional Client Services Center. 

...Top

 

 

4. I’m temporarily without possession of my security device

If you are temporarily without possession of your security device, interim access may be provided by contacting your regional Client Services Center via telephone where, once your identity has been verified, you will be provided with a temporary passcode.

The temporary passcode is a static alpha-numeric code which replaces the randomly generated code provided through your security device and which will provide full access to Client Portal and the trading platforms for 2 days. Should a lengthier period of interim access be necessary, and to obtain enhanced protection, it is recommended that you use the temporary passcode to log into Client Portal and print out the on-line security card which will operate as a replacement to your security device for up to 3 weeks.  

After the expiration of the temporary passcode or on-line security card, or if you regain possession of your security device beforehand, you will need to log into Client Portal and select the menu option to re-activate your security device.

...Top

 

 

5. My security device has been lost or damaged

In the case of a lost or damaged security device, you will need to contact our Client Services Center to arrange for a replacement and to provide for interim access. As the time frame for shipping a replacement device may range form 3 to 14 days depending upon your country of residence, interim access is provided via an on-line security card. The on-line security card may be retrieved for printing or saving as an image to your desktop once a temporary passcode has been provided for Client Portal access.

...Top

 

 

6. I’ve been issued a temporary passcode which has expired

The temporary passcode is intended to provide full access to both Client Portal and the trading platforms for a period of 2 days. After 2 days, the temporary passcode may no longer be used to access the trading platforms but may be used to access Client Portal for an additional period of 10 days. The Client Portal access, however, is limited solely for the purpose of printing or saving the on-line security card.  

If your window of access to Client Portal using the temporary passcode remains, you may print or save the on-line security card through which full access to both Client Portal and the trading platforms is provided for a period of 21 days. If you are unable to log into Client Portal, you will need to contact your regional Client Services Center for assistance.

...Top

 

 

7. I’ve been issued an online security card which has expired

The on-line security card is intended to provide full access to both Client Portal and the trading platforms for a period of 21 days. This time frame, while limited, is intended to provide sufficient opportunity for the account holder to either regain possession of a temporarily unavailable security device or request and receive a replacement device.

If you are unable to log in using the on-line security card, you will need to contact your regional Client Services Center for assistance and to provide information as to the status of your permanent security device.

...Top

 

 

8. I’m awaiting delivery of my physical security device and can now no longer log into my account

Depending upon your location, the physical security device should be delivered to the address of record on your account within 2 days in the case of US residents and within 2 weeks for all other accounts. It’s important to note that the permanent devices are set to automatically activate after a set timeframe if not yet manually activated by the account holder. If this is the case and you encounter difficulties logging into your account, please contact our Technical Assistance Department at 1-877-442-2757.

...Top

 

 

9. I am able to log into Client Portal with my temporary passcode but not the trading platform.

If your window of access to Client Portal using the temporary passcode remains, you may print or save the on-line security card through which full access to both Client Portal and the trading platforms is provided for a period of 21 days.

If you are unable to log into Client Portal, you will need to contact your regional Client Services Center for assistance.

...Top 

 


10. I am in possession of my security device and wish to activate it.

To activate either a replacement device or one which was temporarily unavailable and which required issuance of a temporary passcode, you will need to log into Client Portal and select the reactivate security device menu option. Once reactivated, neither the temporary passcode nor on-line security card will remain operable.

...Top

 

 

11. Receiving “BAD CHARACTER” message after entering my user name.

Re-enter your user name and make sure that you do not include any spaces or characters which are not either alpha or numeric (e.g. !@#$%^&*(.,”:...etc.).

...Top

Overview of Secure Login System

Table of contents

 

The security of your assets and personal information is of utmost concern to us and we are committed to taking the steps necessary to ensure you are protected from the moment you open your account.  

To provide you with the highest level of security, Interactive Brokers has implemented a Secure Login System (SLS) through which access to your account is subject to Two-Factor Authentication.
 
Two-Factor Authentication serves to confirm your identity at the point of login using two security elements: 1) Something you know (your username and password combination); and 2) Something you have (an IBKR issued security device which generates a random, single-use security code). As both knowledge of your username/password and physical possession of the security device are required to login to your account, participation in the Secure Login System virtually eliminates the possibility of anyone other than you accessing your account.
 
 

Benefits of Enrollment

The principal benefit of SLS enrollment is to protect your account from unauthorized access. There is no fee associated with enrollment and participants have the added benefits of:
  1. Higher withdrawals thresholds over both single and five day rolling periods.
  2. Ability to change your banking instructions and email address without contact from a member of our Security Team.
  3. Ability to effect ACH & EFT funding transactions beyond an initial USD 20,000 account funding transaction.
  4. The ability to share a single device among multiple usernames registered to the same individual.
 
 

How to Enroll

Enrollment is easy. If you are a new applicant, you will be asked to confirm your mobile phone number to continue. This will enable two-factor security through SMS mobile phone messaging. IBKR will send you a one-time passcode upon login.
The SMS mobile two-factor authentication is temporary and will be removed once you activate the IBKR Mobile Authentication (IB Key), as explained in IB Knowledge Base article KB2260.
If you are a new or existing Client with equity above $500,000 you may request a Digital Secure Card+ (DSC+) as a complementary device to your IBKR Mobile Authentication, as explained here. Once you have received your DSC+ device, log in to Client Portal and follow the instructions here to activate it.
Once your security device or digital security app is activated, each time you log in to Client Portal, TWS or IBKR Mobile, you will be required to enter two authentication factors – your username and password combination and the security code generated by your device. When you successfully log in, your account will be secured with full perimeter coverage, protecting both your cash and positions from unauthorized access."

 

 
 

Lost, Damaged or Temporarily Unavailable Device

In the case of a lost, damaged or temporarily unavailable security device, you will need to contact your regional Client Service Center via telephone to arrange for a replacement and/or to provide for interim access. Once your identity has been verified you will be provided a temporary passcode (i.e., a static alpha-numeric code which replaces the random code supplied by your security device) that will allow you to log into Client Portal and print the on-line security card. The on-line card will provide interim access for up to 21 days, sufficient time for a replacement device to be shipped or, should your device be temporarily unavailable, time to regain possession of it. See KB1943 for instructions on requesting a replacement device.
 
Alternatively, if your mobile phone number has already been verified with IBKR, you can activate the IBKR Mobile app and its IB Key authentication to provide your account with an immediate two-factor protection.
 
 
 

Types of Devices

IBKR provides a range of security devices, each tailored to meet the portability and security needs of your particular account. 
  1. SMS - A quick and easy way to complete the Two-Factor Authentication through text messages (SMS) sent to your mobile phone number.
  2. IBKR Mobile (IB Key) – An all-in-one mobile app offering a convenient digital solution for your Two-Factor Authentication needs.  The IB Key protocol found within the app supports both fingerprint/facial recognition and PIN configuration1 and is available for download on both Android phones and iPhones.
  3. Digital Security Card+ - For accounts with an equity of 500K USD or equivalent. It has the same size and shape of a credit card and it is electronic, requiring the user to enter a PIN code as an additional layer of protection.
Note:
For iPhone users you must have either Touch ID, Face ID, or Passcode enabled (refer to: Set up Touch ID or Set up Face ID for directions). Touch ID or Face ID is the recommended choice.  PIN/Passcode supports up to 12 hours of trading access while fingerprint/facial recognition allows for 30+ hours as long as you authenticate at least once during this time period. Please see further details mentioned in our User's guide for Extended Trading Access.
 

 

Withdrawal Limits

Clients who participate in the Secure Login System enjoy enhanced withdrawal capabilities, while clients who do not participate are subject to daily and weekly withdrawal restrictions. The amount that a participating client may withdraw or transfer over a given one- or five-day period increases commensurate with the protective value of the device and is outlined in the table below.

Security Device Maximum Withdrawal per Day Maximum Withdrawal in 5 Business Days
None 50K USD 100K USD
SMS 200K USD 600K USD
IB Key 200K USD 600K USD
Security Code Card* 200K USD 600K USD
Digital Security Card* 1M USD 1.5M USD
Digital Security Card+ Unlimited Unlimited
Platinum*/Gold* Unlimited Unlimited
Note: * Represents a legacy device no longer being issued.
 

Back to top

 

Additional Information 

See KB2636 for information and procedures related to Security Devices.
See KB2277 for complete details on IBKR Mobile Authentication (IB Key) for Android.
See KB2278 for complete details on IBKR Mobile Authentication (IB Key) for iOS.
 
 
 

 

Syndicate content