How to add a user to an existing IB Key instance - iOS
Overview:
This page covers the steps required to add a user to the Authentication section in the IBKR Mobile app for iOS devices.
Requirements:
- The IBKR Mobile app must be installed and IB Key Authentication already activated on this iOS device.
- For more information on the installation and activation on iOS devices, please refer to KB2278.
Instructions:
1. On your iOS device, open the IBKR Mobile app.
1.a. If the app opens with the login screen (Figure 1), tap on Services on the top-left corner (red arrow) and proceed with step 2.
1.b. If the app opens with your Home Page, Portfolio, Watchlists, or similar, tap on More on the bottom-right corner (Figure 2). Then tap on Two-Factor Authentication (Figure 3), followed by Add User (Figure 4) and proceed with step 3.
Figure 1. Figure 2. Figure 3.
(1).jpeg)
.jpeg)
.jpeg)
Figure 4.
2. Tap on Authenticate (Figure 5) and then on Add User (Figure 6).
Figure 5. Figure 6.
3. Read the instructions and then tap on Continue (Figure 7).
Figure 7.
3. Enter your Username and Password, and then tap on Continue (Figure 8).
Figure 8.
4. An Authentication Code will be sent via SMS to the mobile phone number listed on your account (Figure 9). Enter this Authentication Code in the Activation Code field and tap on Activate (Figure 10).
Figure 9. Figure 10.
5. Depending on your smartphone's security settings, you will be asked to use your Passcode, Touch ID, or Face ID (Figure 11).
Figure 11.
6. If the activation has been successful, you will see a confirmation screen. Finally, tap on Done to complete the procedure (Figure 12).
Figure 12.
.jpeg)
Secure Login with Digital Security Card+
Overview:
Securely log into any IBKR application, including TWS, Client Portal or WebTrader, using IBKR's Digital Security Card+.
NOTE: The buttons on your security card are not touch sensitive, but rather require to be pressed.
1. When logging in to your account, enter your user name and password as usual (Point 1 of Figure 1). If successful, a 6-digit Challenge Code will appear (Point 2 of Figure 1).
Figure 1.
2. Turn on your device by pressing the “press” button until the 'PIN>' display appears (Figure 2), enter the 4-digit PIN code you specified at the time you requested the device, then press the “OK” button (Figure 3).
Figure 2. Figure 3. 
.jpg)
3. When the 'CHALLNG>' display appears on the device (Figure 4), enter the 6-digit Challenge Code from the login screen (step 1.) into the device, then press the "OK" button (Figure 5).
Figure 4. Figure 5.
.jpg)
4. A response code will appear (Figure 6)
Figure 6.
5. Enter the 8 digits of the response code into the login screen (Figure 7). Select the Login button to proceed. If the passcode expires, start over from step 1. above.
Figure 7.
NOTE: The Security Code field will look slightly different depending on the application you are logging in to.
References
- See KB1131 for an overview of the Secure Login System
- See KB2636 for information and procedures related to Security Devices
- See KB2481 for instructions about sharing the Security Login Device between two or more users
- See KB2545 for instructions on how to opt back in to the Secure Login System
- See KB975 for instructions on how to return your security device to IBKR
- See KB2260 for instructions on activating the IB Key authentication via IBKR Mobile
- See KB2895 for information about Multiple 2Factor System (M2FS)
- See KB1861 for information about charges or expenses associated with the security devices
- See KB69 for information about Temporary passcode validity
How to use Voice callback for receiving login authentication codes
Background:
If you have SMS enabled as two-factor authentication method, you may use Voice callback to receive your login authentication codes. This article will provide you steps on how to select voice callback when logging in to our platforms.
How to use Voice callback
You may select Voice if you do not receive your login authentication code. You will then receive your login authentication code via an automated callback. Follow the instructions below, depending on which platform you are trying to login to.
Client Portal
1. Click on "Didn't receive a security code?"
2. From the two options, select "Voice" and wait for the callback.
3. After selecting Voice, you should receive the callback within a minute. Please wait for the callback and be ready to write down the code that will be provided over the callback.
TWS
1. Click on "Request new Security Code"
2. From the two options, select "Voice" and click on OK. Then wait for the callback.
3. After selecting Voice, you should receive the callback within a minute. Please wait for the callback and be ready to write down the code that will be provided over the callback.
Note: Voice callback for the TWS is only available in the LATEST and BETA version.
IBKR Mobile - iOS
1. Click on "Request New Code"
2. From the two options, select "Voice" and wait for the callback.
3. After selecting Voice, you should receive the callback within a minute. Please wait for the callback and be ready to write down the code that will be provided over the callback.
IBKR Mobile - Android
1. Click on "Request New Security Code"
2. From the two options, select "Voice" and wait for the callback.
3. After selecting Voice, you should receive the callback within a minute. Please wait for the callback and be ready to write down the code that will be provided over the callback.
References:
- How to login using SMS authentication
- Overview of Secure Login System
- Information and procedures related to Security Devices
- IBKR Mobile Authentication
IB Key Challenge / Response method and missing notifications
In case your smartphone is unable to receive IB Key notifications, you can still complete the login process using the IB Key Challenge/Response method, described on the following pages (according to your device operating system):
The same information applies to you if your phone has no Internet connectivity (you are in roaming, out of coverage, without an active mobile data plan, etc.)
If your smartphone is unable to receive IB Key notifications despite having Internet connectivity, we recommend you to perform the steps outlined in IBKB3234.
I am not receiving text messages (SMS) from IBKR on my mobile phone
Background:
Once your mobile phone number has been verified in the Client Portal, you should immediately be able to receive text messages (SMS) from IBKR directly to your mobile phone. This article will provide you with basic troubleshooting steps in case you are unable to receive such messages.
1. Activate the IBKR Mobile Authentication (IB Key) as 2-Factor security device
In order to be independent of wireless/phone carrier-related issues and have a steady delivery of all IBKR messages we recommend to activate the IBKR Mobile Authentication (IB Key) on your smartphone.
The smartphone authentication with IB Key provided by our IBKR Mobile app serves as a 2-Factor security device, thereby eliminating the need to receive authentication codes via SMS when logging in to your IBKR account.
Our IBKR Mobile app is currently supported on smartphones running either Android or iOS operating system. The installation, activation, and operating instructions can be found here:
2. Restart your phone:
Power your device down completely and turn it back on. Usually this should be sufficient for text messages to start coming through.
Please note that in some cases, such as roaming outside of your carrier's coverage (when abroad) you might not receive all messages.
3. Use Voice callback
If you do not receive your login authentication code after restarting your phone, you may select 'Voice' instead. You will then receive your login authentication code via an automated callback. Further instructions on how to use Voice callback can be found in IBKB 3396.
4. Check whether your phone carrier is blocking the SMS from IBKR
Some phone carriers automatically block IBKR text messages, as they are wrongly recognized as spam or undesirable content. According to your region, those are the services you can contact to check if a SMS filter is in place for your phone number:
In the US:
- All carriers: Federal Trade Commission Registry
- T-Mobile: Message Blocking settings are available on T-Mobile web site or directly on the T-Mobile app
In India:
- All carriers: Telecom Regulatory Authority of India
In China:
- Call your phone carrier directly to check whether they are blocking IBKR messages
References:
- How to login using SMS authentication
- Overview of Secure Login System
- Information and procedures related to Security Devices
- IBKR Mobile Authentication
How to log in to IBKR Mobile when the IB Key is enabled on another phone
Background:
This article is intended for clients who have activated the IBKR Mobile authentication on their smartphone and possess as well an additional mobile device, on which they desire to trade.
Clients with this setup will be able to log in to the IBKR Mobile trading platform on their secondary device, using their smartphone to complete the Two-Factor Authentication step.
For the purposes of this article, we will use the following naming convention:
Authentication device: this is the smartphone on which you activated the IBKR Mobile Authentication (IB Key)
Trading device: this is where you want to use IBKR Mobile app for trading.
Procedure
Please click on one of the link below according to your phone operating system:
Apple iOS
1. On your Trading device, launch the IBKR Mobile app. Enter your your credentials in the login screen and tap Log In
Figure 1
2. Tap Two-Factor Authentication (Figure 2). A Challenge code will be displayed (Figure 3)
Figure 2 Figure 3
.png)
3. On the Authentication device, launch the IBKR Mobile app
Figure 4
.png)
4a. If you are not automatically logged in, tap Services (Figure 5) on the top left, then tap Authenticate (Figure 6).
Figure 5 Figure 6
4b. If you are already logged in, tap on the More button on the bottom right. Then, scroll down and tap on Authenticate
Figure 7
5. Enter the Challenge code you obtained at point 2. Then tap Generate Response (Figure 8). Once you have provided your security element (Figure 9), you will receive a Response String (Figure 10).
Figure 8 Figure 9 Figure 10
6. On your Trading device, enter the Response String into the "Enter response code" field and tap Send to finalize the authentication process.
Figure 11
.png)
Android
1. On your Trading device, launch the IBKR Mobile app. Enter your your credentials in the login screen and tap Log In
Figure 1
2. Tap on the option Two-Factor Authentication (Figure 2). You will see a Challenge code (Figure 3)
Figure 2 Figure 3
(1).png)
3. On the Authentication device, launch the IBKR Mobile app
Figure 4
4a. If you are not automatically logged in, tap Services (Figure 5) and then tap Authenticate (Figure 6).
Figure 5 Figure 6
.png)
4b. If you are already logged in, tap the Menu button (Figure 7), scroll down and tap Authenticate (Figure 8).
Figure 7 Figure 8
.png)
.png)
Figure 7 Figure 8
5. Enter your IBKR Mobile PIN and the Challenge code you obtained at point 2. Then tap Generate Response (Figure 9). A Response String will be displayed (Figure 10)
Figure 9 Figure 10
.png)
Figure 9 Figure 10
6. On your Trading device, enter the Response String in to the "Enter response code" field and then tap Log In to finalize the authentication process.
Figure 11
How to enable and use SMS as Two-Factor Authentication method
Overview:
SMS as Two-Factor method is a quick and easy way to carry out your authentication tasks. This article explains how to set up your mobile phone number to receive authentication codes via SMS.
How to Enroll into SMS authentication
To enroll into SMS Two-Factor Authentication, you would need to have a verified mobile phone number on record. If the verification of your phone number was not completed during the account application, you can complete it at any time by following these steps:
- Log in to Client Portal.
- From the side menu, click on Settings and then on User Settings. Click on the configuration gear correspondent to Mobile Number.
- Click on VERIFY
- Open your phone's text messages app and you will find the SMS with the Confirm Code we sent you.
NOTE: message delivery time may vary and in some circumstances it can take few minutes. A new SMS may only be requested every 2 minutes.
- Enter the Confirm Code you have received into the Confirmation Number field, then click CONTINUE.
- If the code has been accepted, a green check mark will appear in the column SMS Verified. Click CONTINUE to finalize the procedure.
- If your user does not have an active SLS device, it will be automatically enrolled in SMS for Two-Factor Authentication shortly afterwards.
Back to top
How to login using SMS authentication
Once SMS has been enabled as 2-Factor Authentication method, you will be able to use it in the following way:
- Launch the TWS or go to the Client Portal
- Enter your username and password in the correspondent fields and click Login
- You will then be prompted to enter the authentication code sent to you via SMS. Please open your phone's messages app and look for the message containing the code.
.png)
- Enter the authentication code in the Security Code field present on the login screen, and then click on Login or OK
.png)
.png)
IB TWS and IB Key Merger into IBKR Mobile
OVERVIEW
The migration for your user depends upon your current use of the apps as follows:
1. Your Smartphone is solely used for trading (IB TWS installed) - Click Here
2. Your Smartphone is solely used for authentication (IB Key installed) - Click Here
3. Your Smartphone is used for both trading and authentication (IB TWS and IB Key installed) - Click Here
4. Your Smartphone is used for Debit Card transactions (IB Key installed) - Click Here
You are a user of IB TWS
You have been trading on your smartphone with IB TWS and you have not used IB Key.
1. Upon first launch of the application you will see the following new Home Screen.
Figure 1 is the Home Screen of IBKR Mobile for iOS devices. Figure 2 is the Android device version.
Figure 1 Figure 2
2. Tap on the Trade button.
3. The rest of the application experience is identical to what you have already used in the past.
Access to the other functions from the Trading Screen
If you wish to access the other functions of the IBKR Mobile, such as the Authentication module or the
Debit Card functions:
For iOS (Figure 3)
1. Open the menu ‘More’ (lower right-hand corner of your screen).
2. Scroll to the very bottom of this page
For Android (Figure 4)
1. Open the Application menu
2. Scroll to the bottom section - App Settings
.png)
.png)
Figure 3
Figure 4
You are an IB Key user
Activation
1. Launch the IBKR Mobile and tap on Authentication.
2. The app will detect the installation of the IB Key and will suggest a course of action - either an
automated migration (Figure 5) on an update and then automated migration.
You can as well choose to manually migrate at a later point.
.png)
.png)
.png)
Figure 5 Figure 6 Figure 7
After the migration is completed, should you run the IB Key standalone application - the one you have
authenticated with in the past - you will see the following screen (Figure 8).
.png)
Figure 8
Daily Operation
A. Nothing changes in the daily login experience if you have an Internet connection - the Seamless
Authentication process will be used:
1. Enter your credentials in the corresponding fields (in the TWS, Account Management, WebTrader or
IBKR Mobile). Click on Login.
2. The system will send you a notification on your smartphone’s screen - tap on it.
3. Depending on your device, present your face to the camera or fingerprint on the sensor (iOS) or
enter your PIN code (Android). The system will the automatically proceed with the login.
B. If you have no Internet connection, you will use the IBKR Mobile in Challenge-Response mode:
1. Enter your credentials in the corresponding fields (in the TWS, Account Management, WebTrader or
IBKR Mobile). Click on ‘Login'.
2. Click on the link saying “I did not receive a notification”.
3. Launch the IBKR Mobile and tap on ‘Authentication’.
4. In the field Challenge of your smartphone application enter the values displayed on the Login
Screen. Tap the ‘Generate’ button.
5. Enter the values displayed by your smartphone app into the field Response string on the Login
Screen. Click ‘Login’.
You are a user of both IB TWS and IB Key
1. Please complete first the procedure for the activation of the Authentication module of the IBKR
Mobile app (Click Here).
2. Login to the trading screen by taping on the Trade button of the Home Screen in your new IBKR
Mobile app (Click Here).
You use an IB Debit Card
1. Please complete first the procedure for the activation of the Authentication module of the IBKR
Mobile app (Click Here).
2. On the Home Screen of the IBKR Mobile app tap on the Debit Card button. The rest of the experience
is identical to what you have already used in the past.
How to reactivate or transfer the IBKR Mobile authentication?
Overview:
This article details the steps needed to reactivate the IB Key authentication via IBKR Mobile.
This state of the application or its installation might be due, but not limited to, reinstallation of the app or the purchase of a new phone.
You can perform the reactivation without the involvement of IBKR Client Services in the following cases:
Case A) Reactivation on the same smartphone
-
You uninstalled and reinstalled the IBKR Mobile app on the same smartphone
Please click on one of the links below according to your phone operating system.
-
Android: IBKR Mobile PIN + Access to the mobile phone number originally used for the app activation
-
Apple iOS: Smartphone PIN / Fingerprint / FaceID + Access to the mobile phone number originally used for the app activation
Case B) Reactivation on a different smartphone
-
You are replacing your smartphone with a new one
-
You have lost your smartphone and you are now in possession of a new one
-
You activated the IBKR Mobile authentication on your primary smartphone but you now want to transfer
the activation (either temporarily or permanently) to the secondary one.
Please click on one of the links below according to your phone operating system.
Note: In the above cases (A, B) you will always be able to reactivate / transfer the IBKR Mobile Authentication (IB Key) when you possess an additional physical security device currently active for your user. With this setup, you will not need to have access to the mobile phone number originally used for the app activation, since the system will automatically prompt you to operate your physical security device instead of sending you a text message (SMS) during the reactivation / transfer procedure.
In any other case, we would kindly ask you to request a temporary account access by contacting IBKR Client Services (Secure Login department) on the phone number best suitable for your location, among the ones listed on ibkr.com/support
References:
- See KB2879, KB2260 for General information about IBKR Mobile Authentication (IB Key)
- See KB2260 for instructions on how to install/activate/operate the IBKR Mobile app
-
See KB2278 for instructions on how to operate your IB Key on an Apple iPhone
-
See KB2277 for instructions on how to operate your IB Key on an Android smartphone:
- See KB3279 for instructions on how to log in to IBKR Mobile when IB Key is enabled on another phone
Multiple 2-Factor System (M2FS)
Overview
This page covers specific points on what the Multiple 2-Factor System (M2FS) is and how it functions. For general questions on the Secure Login System, please refer to KB1131.
Table of contents
What is M2FS?
M2FS allows any client to maintain more than one active security device at the same time. You no longer need to choose between a physical security device and the IBKR Mobile app as either can be used interchangeably. If you already possess an active security device, any further device activation will result in both devices remaining simultaneously active.
Activation
In case you currently use the Security Code Card / Digital Security Card+: if you use a physical security device, you may download and activate the IBKR Mobile app. Please refer to the directions for Android and iOS.
In case you currently use the IBKR Mobile app: If you use the IBKR Mobile app and have an account with a balance equal or greater than USD 500K, you qualify for the Digital Security Card+ . You may log in to Client Portal and request the DSC+ by following the instructions here.
Operation
Once you have both a physical device and the IBKR Mobile app enabled, M2FS is represented by a drop-down menu upon login. You can now choose the device you wish to authenticate with, following the below steps:
1. Enter your username and password into the trading platform or Client Portal login screen and click Login. If the credentials have been accepted, a drop down will appear, allowing you to Select Second Factor Device. If you log in to the TWS, please notice that the M2FS is supported from version 966.
TWS:
Client Portal:
.png)
2. Once you select a security device, you will now be presented with the corresponding screen for authentication. Refer to the directions for:
- IB Key via IBKR Mobile (iOS)
- IB Key via IBKR Mobile (Android)
- Security Code Card
- Digital Security Card+
3. If the second factor authentication succeeds, the Log-in will now automatically proceed.
Withdrawal limits
The device used to authenticate your withdrawal will define your withdrawal limits, according to the below table:
|
Security Device |
Maximum Withdrawal |
Maximum Withdrawal |
| Security Code Card1 | USD 200,000 | USD 600,000 |
| IBKR Mobile app | USD 200,000 | USD 600,000 |
| Digital Security Card1 | USD 1,000,000 | USD 1,500,000 |
| Digital Security Card+ | Unlimited | Unlimited |
| Gold Device1 | Unlimited | Unlimited |
| Platinum Device1 | Unlimited | Unlimited |
1: Represents a legacy device that is no longer issued.
Example: You have both the IBKR Mobile app and the Digital Security Card+ enabled and you need to withdrawal more than USD 200K. You can use either device to login to Client Portal but you will be required to use the Digital Security Card+ to confirm your withdrawal request.
Benefits
M2FS provides even more flexibility to IBKR's Secure Login System by allowing you to choose what security device you want to authenticate with. In addition to the convenience of using a device which is trusted and routinely accessible, you can eliminate delays associated with authenticating at times a trade needs to be entered quickly.
