Secure Login with Digital Security Card+
Overview:
Securely log into any IBKR application, including TWS, Client Portal or WebTrader, using IBKR's Digital Security Card+.
NOTE: The buttons on your security card are not touch sensitive, but rather require to be pressed.
1. When logging in to your account, enter your user name and password as usual (Point 1 of Figure 1). If successful, a 6-digit Challenge Code will appear (Point 2 of Figure 1).
Figure 1.
2. Turn on your device by pressing the “press” button until the 'PIN>' display appears (Figure 2), enter the 4-digit PIN code you specified at the time you requested the device, then press the “OK” button (Figure 3).
3. When the 'CHALLNG>' display appears on the device (Figure 4), enter the 6-digit Challenge Code from the login screen (step 1.) into the device, then press the "OK" button (Figure 5).
4. A response code will appear (Figure 6)
Figure 6.
5. Enter the 8 digits of the response code into the login screen (Figure 7). Select the Login button to proceed. If the passcode expires, start over from step 1. above.
Figure 7.
NOTE: The Security Code field will look slightly different depending on the application you are logging in to.
References
- See KB1131 for an overview of the Secure Login System
- See KB2636 for information and procedures related to Security Devices
- See KB2481 for instructions about sharing the Security Login Device between two or more users
- See KB2545 for instructions on how to opt back in to the Secure Login System
- See KB975 for instructions on how to return your security device to IBKR
- See KB2260 for instructions on activating the IB Key authentication via IBKR Mobile
- See KB2895 for information about Multiple 2Factor System (M2FS)
- See KB1861 for information about charges or expenses associated with the security devices
- See KB69 for information about Temporary passcode validity
How to use Voice callback for receiving login authentication codes
Background:
If you have SMS enabled as two-factor authentication method, you may use Voice callback to receive your login authentication codes. This article will provide you steps on how to select voice callback when logging in to our platforms.
How to use Voice callback
You may select Voice if you do not receive your login authentication code. You will then receive your login authentication code via an automated callback. Follow the instructions below, depending on which platform you are trying to login to.
Client Portal
1. Click on "Didn't receive a security code?"
2. From the two options, select "Voice" and wait for the callback.
3. After selecting Voice, you should receive the callback within a minute. Please wait for the callback and be ready to write down the code that will be provided over the callback.
TWS
1. Click on "Request new Security Code"
2. From the two options, select "Voice" and click on OK. Then wait for the callback.
3. After selecting Voice, you should receive the callback within a minute. Please wait for the callback and be ready to write down the code that will be provided over the callback.
Note: Voice callback for the TWS is only available in the LATEST and BETA version.
IBKR Mobile - iOS
1. Click on "Request New Code"
2. From the two options, select "Voice" and wait for the callback.
3. After selecting Voice, you should receive the callback within a minute. Please wait for the callback and be ready to write down the code that will be provided over the callback.
IBKR Mobile - Android
1. Click on "Request New Security Code"
2. From the two options, select "Voice" and wait for the callback.
3. After selecting Voice, you should receive the callback within a minute. Please wait for the callback and be ready to write down the code that will be provided over the callback.
References:
- How to login using SMS authentication
- Overview of Secure Login System
- Information and procedures related to Security Devices
- IBKR Mobile Authentication
IBKR Mobile Authentication (IB Key) Use Without Notifications
In case your smartphone is unable to receive IBKR Mobile notifications, you can still complete the login process using the IBKR Mobile Authentication (IB Key) Challenge/Response method, described on the following pages (according to your device operating system):
The same information applies to you if your phone has no Internet connectivity (you are in roaming, out of coverage, without an active mobile data plan, etc.)
If your smartphone is unable to receive IBKR Mobile notifications despite having Internet connectivity, we recommend you to perform the steps outlined in the IBKR Knowledge Base.
I am not receiving text messages (SMS) from IBKR on my mobile phone
Background:
Once your mobile phone number has been verified in the Client Portal, you should immediately be able to receive text messages (SMS) from IBKR directly to your mobile phone. This article will provide you with basic troubleshooting steps in case you are unable to receive such messages.
1. Activate the IBKR Mobile Authentication (IB Key) as 2-Factor security device
In order to be independent of wireless/phone carrier-related issues and have a steady delivery of all IBKR messages we recommend to activate the IBKR Mobile Authentication (IB Key) on your smartphone.
The smartphone authentication with IB Key provided by our IBKR Mobile app serves as a 2-Factor security device, thereby eliminating the need to receive authentication codes via SMS when logging in to your IBKR account.
Our IBKR Mobile app is currently supported on smartphones running either Android or iOS operating system. The installation, activation, and operating instructions can be found here:
2. Restart your phone:
Power your device down completely and turn it back on. Usually this should be sufficient for text messages to start coming through.
Please note that in some cases, such as roaming outside of your carrier's coverage (when abroad) you might not receive all messages.
3. Use Voice callback
If you do not receive your login authentication code after restarting your phone, you may select 'Voice' instead. You will then receive your login authentication code via an automated callback. Further instructions on how to use Voice callback can be found in IBKB 3396.
4. Check whether your phone carrier is blocking the SMS from IBKR
Some phone carriers automatically block IBKR text messages, as they are wrongly recognized as spam or undesirable content. According to your region, those are the services you can contact to check if a SMS filter is in place for your phone number:
In the US:
- All carriers: Federal Trade Commission Registry
- T-Mobile: Message Blocking settings are available on T-Mobile web site or directly on the T-Mobile app
In India:
- All carriers: Telecom Regulatory Authority of India
In China:
- Call your phone carrier directly to check whether they are blocking IBKR messages
References:
- How to login using SMS authentication
- Overview of Secure Login System
- Information and procedures related to Security Devices
- IBKR Mobile Authentication
How to Log in to IBKR Mobile when IBKR Mobile Authentication (IB Key) is Enabled on Another Phone
Background:
This article is intended for clients who have activated the IBKR Mobile Authentication (IB Key) on their smartphone and possess as well an additional mobile device, on which they desire to trade.
Clients with this setup will be able to log in to the IBKR Mobile trading platform on their secondary device, using their smartphone to complete the Two-Factor Authentication step.
For the purposes of this article, we will use the following naming convention:
Authentication device: this is the smartphone on which you activated the IBKR Mobile Authentication (IB Key)
Trading device: this is where you want to use IBKR Mobile app for trading.
Procedure
Please click on one of the link below according to your phone operating system:
Apple iOS
1. On your Trading device, launch the IBKR Mobile app. Enter your your credentials in the login screen and tap Log In
Figure 1
2. Tap Two-Factor Authentication (Figure 2). A Challenge code will be displayed (Figure 3)
Figure 2 Figure 3
.png)
3. On the Authentication device, launch the IBKR Mobile app
Figure 4
.png)
4a. If you are not automatically logged in, tap Services (Figure 5) on the top left, then tap Authenticate (Figure 6).
Figure 5 Figure 6
4b. If you are already logged in, tap on the More button on the bottom right. Then, scroll down and tap on Authenticate
Figure 7
5. Enter the Challenge code you obtained at point 2. Then tap Generate Response (Figure 8). Once you have provided your security element (Figure 9), you will receive a Response String (Figure 10).
Figure 8 Figure 9 Figure 10
6. On your Trading device, enter the Response String into the "Enter response code" field and tap Send to finalize the authentication process.
Figure 11
.png)
Android
1. On your Trading device, launch the IBKR Mobile app. Enter your your credentials in the login screen and tap Log In
Figure 1
2. Tap on the option Two-Factor Authentication (Figure 2). You will see a Challenge code (Figure 3)
Figure 2 Figure 3
(1).png)
3. On the Authentication device, launch the IBKR Mobile app
Figure 4
4a. If you are not automatically logged in, tap Services (Figure 5) and then tap Authenticate (Figure 6).
Figure 5 Figure 6
.png)
4b. If you are already logged in, tap the Menu button (Figure 7), scroll down and tap Authenticate (Figure 8).
Figure 7 Figure 8
.png)
.png)
Figure 7 Figure 8
5. Enter your IBKR Mobile PIN and the Challenge code you obtained at point 2. Then tap Generate Response (Figure 9). A Response String will be displayed (Figure 10)
Figure 9 Figure 10
.png)
Figure 9 Figure 10
6. On your Trading device, enter the Response String in to the "Enter response code" field and then tap Log In to finalize the authentication process.
Figure 11
How to enable and use SMS as Two-Factor Authentication method
Overview:
SMS as Two-Factor method is a quick and easy way to carry out your authentication tasks. This article explains how to set up your mobile phone number to receive authentication codes via SMS.
How to Enroll into SMS authentication
To enroll into SMS Two-Factor Authentication, you would need to have a verified mobile phone number on record. If the verification of your phone number was not completed during the account application, you can complete it at any time by following these steps:
- Log in to Client Portal.
- From the side menu, click on Settings and then on User Settings. Click on the configuration gear correspondent to Mobile Number.
- Click on VERIFY
- Open your phone's text messages app and you will find the SMS with the Confirm Code we sent you.
NOTE: message delivery time may vary and in some circumstances it can take few minutes. A new SMS may only be requested every 2 minutes.
- Enter the Confirm Code you have received into the Confirmation Number field, then click CONTINUE.
- If the code has been accepted, a green check mark will appear in the column SMS Verified. Click CONTINUE to finalize the procedure.
- If your user does not have an active SLS device, it will be automatically enrolled in SMS for Two-Factor Authentication shortly afterwards.
Back to top
How to login using SMS authentication
Once SMS has been enabled as 2-Factor Authentication method, you will be able to use it in the following way:
- Launch the TWS or go to the Client Portal
- Enter your username and password in the correspondent fields and click Login
- You will then be prompted to enter the authentication code sent to you via SMS. Please open your phone's messages app and look for the message containing the code.
.png)
- Enter the authentication code in the Security Code field present on the login screen, and then click on Login or OK
.png)
.png)
How to reactivate or transfer IBKR Mobile Authentication (IB Key)?
Overview:
This article details the steps needed to reactivate the IB Key Authentication (IB Key) via IBKR Mobile.
This state of the application or its installation might be due, but not limited to, reinstallation of the app or the purchase of a new phone.
You can perform the reactivation without the involvement of IBKR Client Services in the following cases:
Case A) Reactivation on the same smartphone
-
You uninstalled and reinstalled the IBKR Mobile app on the same smartphone
Please click on one of the links below according to your phone operating system.
-
Android: IBKR Mobile PIN + Access to the mobile phone number originally used for the app activation
-
Apple iOS: Smartphone PIN / Fingerprint / FaceID + Access to the mobile phone number originally used for the app activation
Case B) Reactivation on a different smartphone
-
You are replacing your smartphone with a new one
-
You have lost your smartphone and you are now in possession of a new one
-
You activated the IBKR Mobile Authentication (IB Key) on your primary smartphone but you now want to transfer
the activation (either temporarily or permanently) to the secondary one.
Please click on one of the links below according to your phone operating system.
Note: In the above cases (A, B) you will always be able to reactivate / transfer the IBKR Mobile Authentication (IB Key) when you possess an additional physical security device currently active for your user. With this setup, you will not need to have access to the mobile phone number originally used for the app activation, since the system will automatically prompt you to operate your physical security device instead of sending you a text message (SMS) during the reactivation / transfer procedure.
In any other case, we would kindly ask you to request a temporary account access by contacting IBKR Client Services (Secure Login department) on the phone number best suitable for your location, among the ones listed on ibkr.com/support
References:
- See KB2879, KB2260 for General information about IBKR Mobile Authentication (IB Key)
- See KB2260 for instructions on how to install/activate/operate the IBKR Mobile app
-
See KB2278 for instructions on how to operate IBKR Mobile Authenticaton (IB Key) for iPhone
-
See KB2277 for instructions on how to operate your IBKR Mobile Authentication (IB Key) for Android:
- See KB3279 for instructions on how to log in to IBKR Mobile when IBKR Mobile Authentication (IB Key) is enabled on another phone
Multiple 2-Factor System (M2FS)
Overview
This page covers specific points on what the Multiple 2-Factor System (M2FS) is and how it functions. For general questions on the Secure Login System, please refer to KB1131.
Table of contents
What is M2FS?
M2FS allows any client to maintain more than one active security device at the same time. You no longer need to choose between a physical security device and the IBKR Mobile app as either can be used interchangeably. If you already possess an active security device, any further device activation will result in both devices remaining simultaneously active.
Activation
In case you currently use the Security Code Card / Digital Security Card+: if you use a physical security device, you may download and activate the IBKR Mobile app. Please refer to the directions for Android and iOS.
In case you currently use the IBKR Mobile app: If you use the IBKR Mobile app and have an account with a balance equal or greater than USD 500K, you qualify for the Digital Security Card+ . You may log in to Client Portal and request the DSC+ by following the instructions here.
Operation
Once you have both a physical device and the IBKR Mobile app enabled, M2FS is represented by a drop-down menu upon login. You can now choose the device you wish to authenticate with, following the below steps:
1. Enter your username and password into the trading platform or Client Portal login screen and click Login. If the credentials have been accepted, a drop down will appear, allowing you to Select Second Factor Device. If you log in to the TWS, please notice that the M2FS is supported from version 966.
TWS:
Client Portal:
.png)
2. Once you select a security device, you will now be presented with the corresponding screen for authentication. Refer to the directions for:
- IB Key via IBKR Mobile (iOS)
- IB Key via IBKR Mobile (Android)
- Security Code Card
- Digital Security Card+
3. If the second factor authentication succeeds, the Log-in will now automatically proceed.
Withdrawal limits
The device used to authenticate your withdrawal will define your withdrawal limits, according to the below table:
|
Security Device |
Maximum Withdrawal |
Maximum Withdrawal |
| Security Code Card1 | USD 200,000 | USD 600,000 |
| IBKR Mobile app | USD 1,000,000 | USD 1,000,000 |
| Digital Security Card1 | USD 1,000,000 | USD 1,500,000 |
| Digital Security Card+ | Unlimited | Unlimited |
| Gold Device1 | Unlimited | Unlimited |
| Platinum Device1 | Unlimited | Unlimited |
1: Represents a legacy device that is no longer issued.
Example: You have both the IBKR Mobile app and the Digital Security Card+ enabled and you need to withdrawal more than USD 200K. You can use either device to login to Client Portal but you will be required to use the Digital Security Card+ to confirm your withdrawal request.
Benefits
M2FS provides even more flexibility to IBKR's Secure Login System by allowing you to choose what security device you want to authenticate with. In addition to the convenience of using a device which is trusted and routinely accessible, you can eliminate delays associated with authenticating at times a trade needs to be entered quickly.
IBKR Mobile Authentication (IB Key) Reinstallation on the Same Phone
Background:
The recovery procedure explained in this article is required in case:
A) You have reinstalled the IBKR Mobile app on the same smartphone
B) Your smartphone Operating System has been updated
Procedure:
In order to re-enable IBKR Mobile Authentication (IB Key), please click on one of the below links, according to your smartphone Operating System
Apple iOS
-
Launch the IBKR Mobile app. Whenever possible, the app will ask you to recover the setup. Tap Yes
-
According to your phone hardware capabilities, you will be prompted to provide the security element originally used to secure the app (Fingerprint, Face ID, PIN). Please follow the on-screen instructions for this step
-
If the reactivation has been successfully completed, you will see a confirmation message. Tap Done to finalize the procedure
.png)
Android
-
Launch the IBKR Mobile app. Whenever possible, the app will ask you to recover the setup. Tap Recover Setup
-
Review the Recovery directions and tap Continue
-
Enter your credentials and tap Initialize Recovery
-
You will receive an text message (SMS)containing an Activation Token. Enter it in the Activation Code field. According to your phone operating system and hardware capabilities, you might be prompted to provide as well the security element you originally used to secure the app (PIN, Fingerprint). Once done, tap Submit
.png)
-
If the reactivation has been successfully completed, you will see a confirmation message. Tap Done to finalize the procedure
References
Cache Maintenance for IB apps on Android
Background:
This procedure has proved to work as a solution for several issues, since it produces a complete reset of the malfunctioning IBKR app.
For Android OS 6.0 (Marshmallow) and higher
1. Go to your phone's Settings Menu
2. Below the Phone section, select Applications 
Application Manager
3. Scroll down and select the corresponding IB app which needs to be reset.
.png)
4. Tap on Storage
.png)
5. Tap on Clear Data OK
.png)
.png)
6. Confirm Data has been cleared.
.png)
7. Reboot the phone
8. Re-Launch app
For Android OS 5.0 (Lollipop) and previous versions
- Go to your phone Settings Menu
- Below the Device section, select Apps
- Scroll down and select the corresponding IB app which needs to be reset.
- Tap on Clear data OK
- Confirm Data has been cleared
- Reboot Phone
- Re-Launch app
Note: If after clearing the cache, manually adjusting the permissions and restarting your Android Device, the issue persists, please contact IB Customer Service for further troubleshooting.
Related Articles:
- For IB Key on Android overview refer to KB2277
- For IB Key Recovery process on Android refer to KB2748
