Increase your vote integrity by requiring the voter to authenticate their identity with a code sent to their mobile, or a password only they would know.

Regardless of which type of two-factor authentication you choose to use:

  • Authentication cannot be enabled for specific voters. All voters will be required to authenticate using the method selected.

  • Only 1 type of authentication can be used; both cannot be enabled.

Two-Factor Authentication: Phone Verification

  • Voters must have a phone number included in the voter list that is imported or uploaded into ElectionBuddy.

  • When the voter opens the Ballot, a code will be sent to their phone number. The code must be entered on the Sign-in page before the ballot can be accessed.

  • Phone verification codes do not expire. If a voter selects "Resend code", they will be sent the same code.

  • Once the ballot has been submitted, a voter can click on the ballot link to be taken directly to the confirmation page without needing to enter the phone verification code.

Two-Factor Authentication: Voter Password

  • Voters must have a password included in the voter list that is imported or uploaded into ElectionBuddy.

  • ElectionBuddy does not distribute the voters' passwords for you. The password should be something that would be known by the voter. e.g. Member IDs

  • A custom label can be configured to provide a password hint.

Setting Up Two-Factor Authentication

Administrators can enable two-factor authentication from the Voters page. The option is only made available on votes configured for High Integrity.

Choose between Phone Verification or Voter Password.

Phone Verification:

  • For voters that are geographically dispersed, use the default country code for the majority of your voters.

  • Ensure the voters' country codes are included in the voter list, for any voter not in the default country code.

Voter Password

  • Ensure the voters' passwords are included in the voter list, and that they are either aware of their password, or can obtain it from the administrator upon proof of identity.

Multi-factor
Did this answer your question?