Skip to main content

Symbol authentication (Mobile app)

SecureAuth Connect Symbol authentication displays a symbol on the sign-in page and a set of symbols on the user's paired mobile device in the SecureAuth Authenticate app. The user taps the matching symbol on their device to complete authentication.

Use cases

Symbol authentication fits when you need a mobile factor with built-in phishing resistance.

  • Anti-phishing protection: The user must see both the sign-in screen and their mobile device to match the symbol. A remote attacker who intercepts the sign-in session cannot see the symbol on the user's device, making real-time relay attacks harder than with push notification.
  • High-security environments: Use Symbol for admin portals, financial transactions, or other flows where you need stronger assurance that the person approving is the person signing in.
  • Alternative to push: Some users prefer an active verification step (matching a symbol) over a passive approve/deny prompt.

Symbol authentication is not the best fit when speed is the priority (push notification is faster), or when users are unfamiliar with the pattern and may find it confusing compared to entering a code.

How Symbol authentication works

  1. The user enters their identifier on the sign-in page and selects Symbol.
  2. The sign-in page displays a symbol (for example, a number).
  3. The SecureAuth Authenticate app on the user's paired device displays several symbols.
  4. The user taps the symbol on their device that matches the one on the sign-in page.
  5. If the symbols match, authentication completes and the user is signed in.

Prerequisites

  • The user must install and pair the SecureAuth Authenticate app. See Pair your mobile device.
  • An administrator must enable Symbol at the workspace level.
How to pair your mobile device

Pairing your mobile device with SecureAuth Authenticate is a one-time setup. After pairing, your device is available for all mobile authentication methods your administrator has enabled.

Prerequisites: Download and install SecureAuth Authenticate from the Apple App Store or Google Play.

  1. Launch the User Portal and sign in.
  2. In the left navigation, click Devices.
  3. Click Pair New Device.
  4. Click Click to Reveal to display the pairing QR code.
  5. Open SecureAuth Authenticate on your mobile device and select QR Scan.
  6. Scan the QR code.
  7. Complete biometric authentication on your device and tap Next.
  8. Select a confirmation method, enter the confirmation code, and confirm the pairing.

After pairing, sign out and sign back in to verify the mobile authentication methods are available.

For detailed steps with screenshots, see Pair your mobile device.

Enable Symbol as an authentication method

  1. In your workspace, go to Authentication > Settings.
  2. Select the Methods tab.
  3. Select the Symbol check box.
  4. Click Save.

Add Symbol to an identity pool

  1. Go to Users > your identity pool > Sign-in and Sign-up.
  2. Under First-Factor Authentication Methods or Second-Factor Authentication Methods, click + Add method and choose Symbol.
  3. To set Symbol as the preferred method, click the three-dot menu and select Make Preferred.
  4. Click Save.

See also