Skip to main content

How to Set Up Two-Factor Authentication (2FA) for Your Customers via SMS

Two-factor authentication adds an extra layer of security to your customer verifications by confirming that the person completing the check has access to the mobile number provided.

Jordan avatar
Written by Jordan
Updated over a week ago

What is Mobile 2FA

Mobile 2FA uses a one time verification code sent by SMS to confirm mobile number ownership before a customer can continue their identity verification.

Step 1: Open your verification settings

  1. Log in to your Realaml dashboard

  2. Navigate to Settings

  3. Select Checks

  4. Locate the Mobile 2FA setting in the verification defaults

Step 2: Choose how Mobile 2FA is applied

The Mobile 2FA setting controls whether SMS verification is used and whether it can be changed when sending a verification.

You will see four options:

Yes (Optional)

  • Mobile 2FA is enabled by default

  • The checkbox is pre selected

  • You can turn it off per verification

Use this when you want to encourage extra security but allow flexibility.

Yes (Required)

  • Mobile 2FA is always enabled

  • The checkbox is locked on

  • It cannot be disabled

Use this when Mobile 2FA is required for security or compliance.

No (Optional)

  • Mobile 2FA is disabled by default

  • The checkbox is available

  • You can enable it if needed

Use this when 2FA is only required in specific cases.

No (Required)

  • Mobile 2FA is always disabled

  • The checkbox is locked off

  • It cannot be enabled

Use this when Mobile 2FA must not be used for this workflow.

Step 3: Send a verification to your customer

When creating a verification, your customer’s experience will depend on whether you provide an email address, a mobile number, or both.

Customer experience: Email and mobile provided

If Mobile 2FA is enabled and both email and mobile are entered:

  1. The customer opens the verification link

  2. They are prompted to verify their mobile number

  3. A one time code is sent via SMS

  4. The customer enters the code to continue

Customer experience: Mobile number only

If only a mobile number is provided:

  1. The customer sees a mobile verification screen

  2. They tap Continue

  3. A one time code is sent by SMS

  4. The customer enters the code to proceed

Step 4: Continue to data consent

Once the mobile number is successfully verified, the customer is automatically taken to the Data Consent page to continue their identity verification.

Desktop and mobile experience

The Mobile 2FA flow is the same on desktop and mobile devices. The layout may vary slightly, but the steps and security checks are identical.


Need help?

If your customer does not receive their SMS code or cannot complete mobile verification, ask them to check their mobile number and try again. If the issue continues, contact support@realaml.com and our team will help resolve it securely.

If the verification code expires or is entered incorrectly, the customer can request a new code using “Resend”.

For security reasons, resend attempts are limited. If verification cannot be completed, the customer should contact the firm who sent the verification.

Did this answer your question?