How to use Voice callback for receiving login authentication codes
Background:
If you have SMS enabled as two-factor authentication method, you may use Voice callback to receive your login authentication codes. This article will provide you steps on how to select voice callback when logging in to our platforms.
How to use Voice callback
You may select Voice if you do not receive your login authentication code. You will then receive your login authentication code via an automated callback. Follow the instructions below, depending on which platform you are trying to login to.
Client Portal
1. Click on "Didn't receive a security code?"
2. From the two options, select "Voice" and wait for the callback.
3. After selecting Voice, you should receive the callback within a minute. Please wait for the callback and be ready to write down the code that will be provided over the callback.
TWS
1. Click on "Request new Security Code"
2. From the two options, select "Voice" and click on OK. Then wait for the callback.
3. After selecting Voice, you should receive the callback within a minute. Please wait for the callback and be ready to write down the code that will be provided over the callback.
Note: Voice callback for the TWS is only available in the LATEST and BETA version.
IBKR Mobile - iOS
1. Click on "Request New Code"
2. From the two options, select "Voice" and wait for the callback.
3. After selecting Voice, you should receive the callback within a minute. Please wait for the callback and be ready to write down the code that will be provided over the callback.
IBKR Mobile - Android
1. Click on "Request New Security Code"
2. From the two options, select "Voice" and wait for the callback.
3. After selecting Voice, you should receive the callback within a minute. Please wait for the callback and be ready to write down the code that will be provided over the callback.
References:
- How to login using SMS authentication
- Overview of Secure Login System
- Information and procedures related to Security Devices
- IBKR Mobile Authentication
IB Key Challenge / Response method and missing notifications
In case your smartphone is unable to receive IB Key notifications, you can still complete the login process using the IB Key Challenge/Response method, described on the following pages (according to your device operating system):
The same information applies to you if your phone has no Internet connectivity (you are in roaming, out of coverage, without an active mobile data plan, etc.)
If your smartphone is unable to receive IB Key notifications despite having Internet connectivity, we recommend you to perform the steps outlined in IBKB3234.
I am not receiving text messages (SMS) from IBKR on my mobile phone
Background:
Once your mobile phone number has been verified in the Client Portal, you should immediately be able to receive text messages (SMS) from IBKR directly to your mobile phone. This article will provide you with basic troubleshooting steps in case you are unable to receive such messages.
1. Activate the IBKR Mobile Authentication (IB Key) as 2-Factor security device
In order to be independent of wireless/phone carrier-related issues and have a steady delivery of all IBKR messages we recommend to activate the IBKR Mobile Authentication (IB Key) on your smartphone.
The smartphone authentication with IB Key provided by our IBKR Mobile app serves as a 2-Factor security device, thereby eliminating the need to receive authentication codes via SMS when logging in to your IBKR account.
Our IBKR Mobile app is currently supported on smartphones running either Android or iOS operating system. The installation, activation, and operating instructions can be found here:
2. Restart your phone:
Power your device down completely and turn it back on. Usually this should be sufficient for text messages to start coming through.
Please note that in some cases, such as roaming outside of your carrier's coverage (when abroad) you might not receive all messages.
3. Use Voice callback
If you do not receive your login authentication code after restarting your phone, you may select 'Voice' instead. You will then receive your login authentication code via an automated callback. Further instructions on how to use Voice callback can be found in IBKB 3396.
4. Check whether your phone carrier is blocking the SMS from IBKR
Some phone carriers automatically block IBKR text messages, as they are wrongly recognized as spam or undesirable content. According to your region, those are the services you can contact to check if a SMS filter is in place for your phone number:
In the US:
- All carriers: Federal Trade Commission Registry
- T-Mobile: Message Blocking settings are available on T-Mobile web site or directly on the T-Mobile app
In India:
- All carriers: Telecom Regulatory Authority of India
In China:
- Call your phone carrier directly to check whether they are blocking IBKR messages
References:
- How to login using SMS authentication
- Overview of Secure Login System
- Information and procedures related to Security Devices
- IBKR Mobile Authentication
How to migrate IBKR Mobile Authentication (IB Key) to a new smartphone
You may have the IBKR Mobile app installed simultaneously on multiple devices but the integrated authentication module (IB Key) can only be active on a single smartphone, on which you will complete the Two-Factor authentication tasks triggered from any other device.
Nevertheless, if you possess multiple smartphones or if you lost/replaced your smartphone, you have the possibility to migrate the IB Key activation, without the need of contacting IB Client Services. The IB Key migration allows you to carry on the Two-Factor authentication tasks on your secondary/new smartphone, while removing this capability from your primary/old device.
This procedure can be used in case you lost/replaced your device or in preparation for a business trip or for a holiday period, during which you will not have access to it.
- Apple iOS
- Android
Requirements:
- This procedure will be entirely performed on your secondary/new smartphone. You do not need to be in possession of your primary/old smartphone (where IB Key is currently active)
- Unless you have a physical security device active for your user, you need to have access to the mobile phone number you originally used to activate the IB Key, since we will send a text message (SMS) to that mobile number as a part of the migration procedure.
Once you have reviewed the above requirements, please click one of the below links, according to the operating system of your secondary smartphone
Apple iOS
1. Open IBKR Mobile, enter your username and password and tap Log In
Figure 1
2. Select the Migrate IB Key option (Figure 2), then tap Migrate IB Key to confirm your choice (Figure 3)
Figure 2 Figure 3
.png)
3. Once you have read the instructions, tap Continue
Figure 4
.png)
4. Enter your username and password, then tap Log In
Figure 5
5. Read the Activation Token from the text message (SMS) sent to you (Figure 6). Enter the Activation Token in the Activation Code field, then tap Activate (Figure 7)
Figure 6 Figure 7
.png)
.png)
6. Tap Done to complete the migration process
Figure 8
Android
1. Open IBKR Mobile and enter your username and password and tap Log In
Figure 1
2. Select the Migrate IB Key option (Figure 2), then tap Migrate IB Key to confirm your choice (Figure 3)
Figure 2 Figure 3
.png)
.png)
3. Once you have read the instructions, tap Continue
Figure 4
4. Enter your username and password, then tap Log In
Figure 5
5. Read the Activation Token from the text message (SMS) sent to you (Figure 6). Enter the Activation Token in the SMS Code field, then tap Verify (Figure 7)
Figure 6 Figure 7
.png)
.png)
6. Choose a PIN of your preference (alphanumeric, between 4 and 6 characters, with at least one number) and enter it into the PIN field. Then enter the same PIN in to the Repeat PIN field to confirm it. Tap Activate
Figure 8
7. Tap Done to complete the migration process
Figure 9
References:
- See KB2879, KB2260 for General information about IBKR Mobile Authentication (IB Key)
- See KB2260 for instructions on how to install/activate/operate the IBKR Mobile app
-
See KB2278 for instructions on how to operate your IB Key on an Apple iPhone
-
See KB2277 for instructions on how to operate your IB Key on an Android smartphone:
- See KB3279 for instructions on how to log in to IBKR Mobile when IB Key is enabled on another phone
- See KB3073 for instructions on how to reactivate or transfer the IBKR Mobile authentication (IB Key)
How to log in to IBKR Mobile when the IB Key is enabled on another phone
Background:
This article is intended for clients who have activated the IBKR Mobile authentication on their smartphone and possess as well an additional mobile device, on which they desire to trade.
Clients with this setup will be able to log in to the IBKR Mobile trading platform on their secondary device, using their smartphone to complete the Two-Factor Authentication step.
For the purposes of this article, we will use the following naming convention:
Authentication device: this is the smartphone on which you activated the IBKR Mobile Authentication (IB Key)
Trading device: this is where you want to use IBKR Mobile app for trading.
Procedure
Please click on one of the link below according to your phone operating system:
Apple iOS
1. On your Trading device, launch the IBKR Mobile app. Enter your your credentials in the login screen and tap Log In
Figure 1
2. Tap Two-Factor Authentication (Figure 2). A Challenge code will be displayed (Figure 3)
Figure 2 Figure 3
.png)
3. On the Authentication device, launch the IBKR Mobile app
Figure 4
.png)
4a. If you are not automatically logged in, tap Services (Figure 5) on the top left, then tap Authenticate (Figure 6).
Figure 5 Figure 6
4b. If you are already logged in, tap on the More button on the bottom right. Then, scroll down and tap on Authenticate
Figure 7
5. Enter the Challenge code you obtained at point 2. Then tap Generate Response (Figure 8). Once you have provided your security element (Figure 9), you will receive a Response String (Figure 10).
Figure 8 Figure 9 Figure 10
6. On your Trading device, enter the Response String into the "Enter response code" field and tap Send to finalize the authentication process.
Figure 11
.png)
Android
1. On your Trading device, launch the IBKR Mobile app. Enter your your credentials in the login screen and tap Log In
Figure 1
2. Tap on the option Two-Factor Authentication (Figure 2). You will see a Challenge code (Figure 3)
Figure 2 Figure 3
(1).png)
3. On the Authentication device, launch the IBKR Mobile app
Figure 4
4a. If you are not automatically logged in, tap Services (Figure 5) and then tap Authenticate (Figure 6).
Figure 5 Figure 6
.png)
4b. If you are already logged in, tap the Menu button (Figure 7), scroll down and tap Authenticate (Figure 8).
Figure 7 Figure 8
.png)
.png)
Figure 7 Figure 8
5. Enter your IBKR Mobile PIN and the Challenge code you obtained at point 2. Then tap Generate Response (Figure 9). A Response String will be displayed (Figure 10)
Figure 9 Figure 10
.png)
Figure 9 Figure 10
6. On your Trading device, enter the Response String in to the "Enter response code" field and then tap Log In to finalize the authentication process.
Figure 11
Secure Login with IBKR Mobile
Overview:
Securely log in to any IB application, including TWS, Account Management or WebTrader using IBKR Mobile
Android
1. Enter your username and password into the trading platform or Account Management login screen and click Login. If correct, a notification will be sent to your phone.
2. On your phone, swipe down from the top and check your notification menu. Tap on the IBKR Mobile app notification.
3. Selecting the notification will launch the IBKR Mobile app. Place your finger that was registered on your phone's fingerprint reader.
4. If authentication succeeds, the log in will now automatically proceed.
iPhone
1. Enter your username and password into the trading platform or Account Management login screen and click Login. If correct, a notification will be sent to your phone.
2. On your iPhone, check your notification menu and select the IBKR Mobile app notification
3. Selecting the notification will launch the IBKR Mobile app. On your iPhone, either place your finger that was registered for Touch ID on the Home Button, or look at the screen to authenticate with Face ID.
4. If authentication succeeds, the log in will now automatically proceed.
How do I enable the Notifications for the IBKR Mobile app
Overview:
What is a notification?
A push notification is a brief message which is sent ("pushed") from a back-end server to your device over the Internet. Apps developers use those attention-grabbing messages to quickly and effectively reach the recipients, even if they are not currently engaging with their application. Notifications can deliver information to users or advise them of a specific action they are invited or required to perform.
Background:
Why does the IBKR Mobile app use notifications?
The IBKR Mobile application uses notifications for informational purposes, as well as two-factor authentication. In the latter case, the user is invited to tap on the notification, which will automatically open the IBKR Mobile app and begin the authentication process.
This procedure explains how to manually enable notifications for the IBKR Mobile app. Please click the link below that matches your smartphone's operating system.
1. On your home screen, tap Settings (Figure 1), then Notifications (Figure 2) and finally IBKR (Figure 3)
Figure 1 Figure 2 Figure 3
(1).png)
(1).png)
2. In the IBKR app settings, you will see a number of different options. We recommend to set them in the following way (Figure 4):
-
Allow Notifications: enabled
-
Lock Screen, Notification Center, Banners: selected
-
Banner style: Persistent
-
Badges: enabled
-
Show Previews: Always
Figure 4
.png)
1. Go the Settings of your phone, then tap Apps & notifications1 (Figure 1) then IBKR Mobile (Figure 2) and finally App notifications (Figure 3)
Figure 1 Figure 2 Figure 3
Figure 1 Figure 2 Figure 3
2. Ensure that notifications for this app are globally On and the switches Allow notification dots, Allow interruptions, On the lock screen are all enabled (Figure 4). According to your personal preference, you may want to enable as well the switch Override Do Not Disturb
Figure 4
Figure 4
Please note that menu items labels and positions may vary according to your device vendor and software version.
1. The Apps & notifications item may be called Sound & notification on certain devices
References:
- See KB2260 for instruction on how to activate and operate IBKR Mobile Authentication
- See KB3234 for troubleshooting missing IBKR Mobile notifications
- See KB2748 for information about IBKR Mobile Authentication recovery
I am not receiving IBKR Mobile notifications
Overview:
What is a notification?
A push notification is a brief message which is sent ("pushed") from a back-end server to your device over the Internet. Apps developers use those attention-grabbing messages to quickly and effectively reach the recipients, even if they are not currently engaging with their application. Notifications can deliver information to users or advise them of a specific action they are invited or required to perform.
Background:
Does the IBKR Mobile app use notifications?
The IBKR Mobile application uses notifications to deliver alerts and other information, as well as for the needs of the 2-Factor authentication. In this last case, the user is invited to tap on the notification - this will automatically call the IBKR Mobile app, through which the authentication process needs to be completed.
What are the prerequisites for receiving IBKR Mobile notifications?
In order to receive the IBKR Mobile notifications the following requirements have to be met:
- The IBKR Mobile app must be installed on your device
- Your device must be connected to the Internet (through WiFi or through a mobile data connection, such as EDGE / 3G / 4G / LTE). If you are located in China, please check additionaly Note a. on this topic
- If you are aiming to receive the Seamless Login notifications, the authentication module of the IBKR Mobile app has to be active. For details please see KB2260
I do not receive IBKR Mobile notifications. What can I do?
If you met the prerequisites listed above but you still have troubles receiving IBKR Mobile push notifications, please perform the additional checks listed below.
1. Ensure you are not actually just missing or overlooking the notifications
Certain device configurations may cause the notifications to hide quickly or not to be shown when the device screen is locked. Please bear in mind that you can, at any time, access your unread notifications history, usually by swiping your finger down from the top edge of your screen.
2. Ensure your phone is not currently in "Airplane", "Flight" or "Do not disturb" mode
The "Airplane"(also called "Flight") mode cuts off all the device connections, preventing the device from interfering with plane instruments during a flight. Usually, when this mode is active, a small airplane icon is displayed in the top bar of your device's screen.
The "Do not disturb" mode is used to cut off calls, alerts and notifications when the device owner does not want to be disturbed. Usually, when this mode is active, a half moon or a stop icon is displayed in the top bar of your screen.
The easiest way is to disable those modes is from the quick settings panel, which can be opened by swiping the finger up from the bottom of your screen on Apple iOS devices (Figure 1) or by swiping your finger down from the top of your screen on Android devices (Figure 2)
Figure 1 Figure 2
Note: On Android devices, the position and name of the items may vary according to the device vendor and software version.
3. Make sure the notifications are enabled for the IBKR Mobile app
When you installed the IBKR Mobile app on your device, the system prompted you to allow the notifications for the app itself. If at that time you denied that access, you would now need to manually enable the notifications from your smartphone settings. Should you need additional guidance for this procedure, please see KB3236.
4. Check whether the power saving mode of the phone is not preventing notifications
Conservative power mode settings usually lower battery consumption by limiting or disabling background app communication and refresh. This often prevents as well notifications from being delivered to your device. You can check the power scheme currently in use on your smartphone as follows, according to your device Operating System:
Click here if you want to skip those instructions and jump directly to the next item - point 5.
If the Power Saving Mode is on, the battery indicator on the top right of your Desktop will show the charge level in yellow
Figure 3
You can switch off the Power Saving by swiping the finger up from the bottom of your screen and tap the battery icon in the Control Center (Figure 4)
Figure 4
If the battery icon is not present there, you can toggle the switch Low Power Mode from the Settings of your phone, section Battery (Figure 5, 6, 7)
Figure 5 Figure 6 Figure 7
.png)
If Battery Saver is on, the top and bottom bars of your device Desktop will have an orange background and the battery icon will contain a "+" sign.
Figure 8
The easiest way to disable the function is from the Quick Settings panel, which you can open by swiping your finger down from the top of your screen. You can then tap the battery icon (Figure 9)
Figure 9
If the battery icon is not present within the Quick Settings panel, you can tap the Settings icon from the screen and tap on Battery. There you can toggle the Battery saver switch (Figures 10, 11, 12)
Figure 10 Figure 11 Figure 12
.png)
.png)
.png)
Note: The position and name of the items may vary according to the device vendor and software version.
Look at the top bar of your device's screen and check whether the Wi-Fi or the carrier data (EDGE / 3G / 4G / LTE) signal reception is enough strong and stable for receiving data. You can perform a quick test by opening a website through the phone web browser and perform a web search or visit ibkr.com
6. Ensure your device is not jailbroken/rooted
A jailbroken / rooted device allows the installation of apps and tweaks not authorized by the software and/or hardware vendor. This is achieved by obtaining a complete (root) access to the device's Operating System and removing the security measures and restriction originally built-in. This operation invalidate the device warranty, can compromise or make completely unusable certain functionalities and severely lowers the overall security of the device.
For those reasons, on a jailbroken / rooted device we can not guarantee the IBKR Mobile app will remain in a fully operational state. The whole app or some of its features (especially the authentication module and related notifications) may not function as expected.
7. Force a sync between the IBKR Mobile app and the back-end systems
If you went through all the above steps and still do not receive the IBKR Mobile notifications on your device, we recommend that you perform a one time login to the Account Management using the manual challenge/response authentication method. This operation will re-align the app parameters with our back-end systems and should trigger the seamless authentication method to be reinstated for the future login attempts. Please proceed as follows:
a. On www.ibkr.com click on Log in --> Account Management
b. Enter your credentials and click on Login
c. Should you have multiple SLS devices active, select "IB Key" from the device drop-down
d. If you see a note stating that a message has been sent to your phone, click the link "Click here if you did not receive the message" and the system will show you a 6 digits Challenge number
e. On your mobile device, open the IBKR Mobile app, then tap Authenticate (should you not see the button Authenticate, tap first on the link Services on the top left of the screen)
f. Enter the Challenge number you obtained at point d. in the Challenge field and tap Generate Response. Once you have provided your security element (PIN, FaceID, Passcode) you will receive a 8 digits Response String
g. On the Account Management login screen, enter now the Response String you obtained at point f.
h. If the code has been accepted, you will be logged in to the Account Management.
i. Logout from the Account Management and try to log in again. This time you should receive the notification on your mobile device.
If you still do not receive the IBKR Mobile notifications after having checked all the above points from 1. to 7. please contact IB Client Services at your earliest convenience for further troubleshooting.
Notes
a. The access to Google services is blocked within China. Because of this restriction, notifications are usually not delivered on Android devices used within that Country. IB has no possibility of intervention or control over this limitation.
References:
How to enable and use SMS as Two-Factor Authentication method
Overview:
SMS as Two-Factor method is a quick and easy way to carry out your authentication tasks. This article explains how to set up your mobile phone number to receive authentication codes via SMS.
How to Enroll into SMS authentication
To enroll into SMS Two-Factor Authentication, you would need to have a verified mobile phone number on record. If the verification of your phone number was not completed during the account application, you can complete it at any time by following these steps:
- Log in to Account Management.
- From the side menu, click on Settings and then on User Settings. Click on the configuration gear correspondent to Mobile Number. If you are using the Classic Account Management, this section can be reached from the top menu Manage Account -> Account Information -> Details -> Profile, by clicking on the link "Modify"
- Click on VERIFY
- Open your phone's text messages app and you will find the SMS with the Confirm Code we sent you.
NOTE: message delivery time may vary and in some circumstances it can take few minutes.
- Enter the Confirm Code you have received into the Confirmation Number field, then click CONTINUE.
- If the code has been accepted, a green check mark will appear in the column SMS Verified. Click CONTINUE to finalize the procedure.
- If your user does not have an active SLS device, it will be automatically enrolled in SMS for Two-Factor Authentication shortly afterwards.
Back to top
How to login using SMS authentication
Once SMS has been enabled as 2-Factor Authentication method, you will be able to use it in the following way:
- Launch the management or trading platform you wish to log in to
- Enter your username and password in the correspondent fields and click Login
- You will then be prompted to enter the authentication code sent to you via SMS. Please open your phone's messages app and look for the message containing the code.
.png)
- Enter the authentication code in the Security Code field present on the login screen, and then click on Login or OK
.png)
.png)
Regulations Mandating Two-Factor Protection
Overview:
Regulators in certain jurisdictions have imposed requirements that brokerage clients use Two-Factor Authentication when accessing their account. These requirements currently impact residents of Hong Kong and India with details provided below.
Hong Kong-based accounts
On 27 Oct 2017, the Securities & Futures Commission of Hong Kong (SFC) issued revised guidelines aimed at reducing the information security risks associated with internet trading. All registered and licensed persons engaged in internet trading are required to comply. The Hong Kong Monteary Authority (HKMA) simultaneously issued a circular on the same day requiring all registered institutions to implement the requirements listed in the guidelines.
Per article 1.1 of the SFC guidelines, all clients are required to be enrolled in Two-Factor Authentication. As a result, we are no longer able to provide Hong Kong accounts with the ability to opt out of the Secure Login System.
India-based accounts
On March 25, 2014 the National Stock Exchange of India (NSEI) issued a circular with new requirements for stock brokers that operate in India. Per regulation 3b, all brokers must implement Two-Factor Authentication for Indian clients. As a result, we are no longer able to provide India accounts with the ability to opt out of the Secure Login System.
