business banking certification training table of contents
DESCRIPTION
Business Banking Certification Training Table of Contents. TOPIC SECTION Overview1 Setting up the Admin Platform2 Accessing your FI Admin Platform Setting up Administrators and Policies Establishing Communications Mapping BAI Transactions Setting up Companies Managing Companies - PowerPoint PPT PresentationTRANSCRIPT
Page 1
Business Banking Certification TrainingTable of Contents
v. 4.18.1Proprietary and Confidential
TOPIC SECTION
Overview 1
Setting up the Admin Platform 2Accessing your FI Admin PlatformSetting up Administrators and PoliciesEstablishing CommunicationsMapping BAI TransactionsSetting up CompaniesManaging Companies
Administering the Customer Platform 3Accessing the Customer PlatformAdministering the System
Customer Platform Basic Services 4Managing AccountsAdding a Stop PaymentSubmitting Request FormsAccessing SSO Products
Customer Platform Transferring Funds 5ACHBook TransferEFTPSWire Transfer
Admin Platform: Managing Operations 6Processing FilesRunning ReportsManaging Security & CommunicationsCase Study
Page 2Intuit Proprietary and Confidential
Business Banking Certification: Overview
Business Banking Certification Objectives
By the end of this course, you will be able to do the following:
Perform the necessary setup required for new FI employees and new customers
Establish global policies in the FI Admin Platform Incorporate security best practices Train business customers on how to use the platform Support customer questions and issues Process customer files Manage day to day operational tasks
Page 3
Overview
Intuit Financial Services University
Business Banking Certification Training
Page 4Intuit Proprietary and Confidential
Business Banking Certification: Overview
• Business Banking
• FIAP – Financial Institution Administration Platform (aka FI Admin Platform)
o FI Super User
o FI Administrator
• CCP – Commercial Customer Platform
o Company Administrator
o User Administrator
o User
• SSO
Terms to Know
Page 5Intuit Proprietary and Confidential
Business Banking Certification: Overview
Technical Considerations
Browser and Operating Systems Supported
1. Go to the Client Site (https://www.diclientsite.com) and log in with your DI number and current password.
2. Select Browser Policy in the Products & Services menu. 3. Click the link for “Intuit Financial Services Browser Policy”.
The information here provides our main policy on browsers; options on the left provide further information on IE, Firefox, and more.
Page 6Intuit Proprietary and Confidential
Business Banking Certification: Overview
Technical Considerations
General Notes
• The screens in the Business Banking system have been designed to support a resolution of 1024 x 768 pixels or higher.
• You must enable Java in your browser. In all cases, the system supports ONLY the Java Virtual Machines supplied with the browsers – at present, no 3rd-party plug-ins are supported.
• You must enable cookies in your browser.
Sample questions to ask a commercial client having login issues:
• Do you have Java enabled?• Do you have cookies enabled?• What browser and version are you using?
Page 7Intuit Proprietary and Confidential
Business Banking Certification: Overview
Common Field Formats
• Phone numbers are automatically formatted with parentheses for the area code and a dash for the number. The extension is maintained as a separate field.
• Email addresses must contain an @ sign and a period. Email help will reference [email protected] as the example.
• Dollar amounts are automatically formatted with a dollar sign, comma, and decimal where appropriate. NOTE: You must enter a decimal and the cents for amounts that are not a whole dollar amount (for example, “100” is formatted to be “$100.00” as opposed to “$1.00”).
• ZIP Codes are 5 digits (additional 4 are optional and are automatically formatted with a dash).
• Dates are automatically formatted as mm/dd/yyyy.
Page 8Intuit Proprietary and Confidential
Business Banking Certification: Overview
The Wildcard Feature
• When you place the wildcard at the beginning of the search string, it means that a data string must exactly match the pattern at the end in order to qualify as a match.
• When you place the wildcard at the end of the string, it means that the beginning of the data string must exactly match the pattern at the beginning in order to qualify as a match.
Search String Matches Does not match
abc* abc, abcdef 1abc, abner
*abc abc, 123abc abcd, crab
*abc* abc, abcd, 1abc abner, crab
Page 9Intuit Proprietary and Confidential
Business Banking Certification: Overview
Common Button Formats
• Add - adds a new database record.
• Update - saves changes to an existing database record.
• Delete - removes a record from the database.
• Reset - removes changes to data-entry fields and returns the field values to their prior settings within the record.
• Submit - sends a request or initiates an action other than add, update, or delete.
• Main - returns the user to the Administration Menu in the Financial Institution Administration Platform or the user’s main screen in the Commercial Customer Platform.
• List - displays a summary of all database information pertaining to the current screen.
Page 10Intuit Proprietary and Confidential
FIAP SecurityEncryption• Data encryption is a way of translating data into a form that is unintelligible without a
deciphering mechanism; helps to protect against proprietary information getting into unauthorized hands.
• Intuit Financial Services requires browsers to have 128-bit encryption.
User Authentication – One Factor•Two-part login: a User ID and password are required for access.•Password expiration is set to 30 days.•Access to the FIAP is denied after three (3) incorrect passwords. The Super User must contact Intuit Financial Services to get reset. Financial institution administrators must contact the Super User. Note: A failed login attempt results from an invalid User Password entry or an invalid MFA challenge response.
User Authentication – Multi-factor (above plus just one of the options below)1. Phone OTP:
• For financial institutions that do not have the Business Banking VIP product • Uses a one-time passcode (OTP) sent to voice mail, text or email• Required for all FI Administrators upon every login
2. Token OTP:• For financial institutions that have the Business Banking VIP product • Uses a one-time passcode obtained from a physical token device• Required for all FI Administrators upon every login
IP Address Restriction•Option to whitelist the external IP addresses where you do your administrative maintenance•Consider setting up VPN-only access.
Inactivity Timeout Feature •Business Banking automatically logs the FI Administrator off of the system after 30 minutes of inactivity. •This setting can not be changed.
Access Rights•Option to configure Dual Admin controls to reduce the rights of any one FI Administrator.•Always provision unique login credentials for FI Administrators and educate users to never share credentials.
Business Banking Certification: Overview
Page 11Intuit Proprietary and Confidential
CCP Security
Business Banking Certification: Overview
Encryption•Same requirements as for FIAP (see previous page).
User Authentication – One Factor•A Company ID and password and User ID and password are required for access. The first part identifies the business and the second part identifies the individual user. •The financial institution may choose to disable the Company Password, thus creating a three-part login for all businesses.•Password expiration is set by the financial institution.•Access to the CCP is denied after three (3) incorrect passwords. The Company Administrator must contact the financial institution to get reset. Other company users must contact the Company Administrator or a User Administrator. Note: A failed login attempt results from an invalid User Password entry or an invalid MFA challenge response.
User Authentication – Multi-factor (above plus just one of the options below)1.Phone OTP (“Enhanced MFA” in your contract)
• Uses a one-time passcode (OTP) sent to voice mail, text or email • Users can enroll a computer to bypass this requirement for future logins
2.Token OTP (“Business Banking VIP” in your contract) • Uses a one-time passcode obtained from a physical token device• Required for all users at the business, at every loginNote: A financial institution can enable Phone OTP for some businesses and Token
OTP for other businesses if both products are in the contract.
Inactivity Timeout Feature •Business Banking automatically logs users off of the system after a designated period of inactivity. •The Company Administrator and/or User Administrator can specify the length of inactivity for their business, which then applies to all users at that company. If no timeout is set, the default timeout is 10 minutes.
Separation of Duties for Wire/ACHFor ACH, EFTPS, and Wire Transfer, it is suggested to enable:•“Require Approval” - requires an explicit approval for each initiated transaction•“Require Approval by Other User” - if approval is required for any initiated transaction, an authorized user other than the initiator must give the approval•“Restrict Initiation if User Limits are Exceeded” - users cannot exceed their set daily or transaction initiation limits ever
Page 12Intuit Proprietary and Confidential
Visit the Security section of the Client Site for information on various security topics, such as:
• Encryption• Network Security (e.g. firewalls)• Security Bulletins• Data Center Operations webcast• Consumer materials• Intuit Financial Services' security products
Security
Business Banking Certification: Overview