This article describes the new Whispir Identity and new Login Screen.
⚠️ Please note: This update does not affect SSO Customers.
To enhance and reinforce our authentication security posture, Whispir is releasing a new login experience with new underlying identity technology.
The new identity work will enable us to maintain a high degree of security whilst also ensuring industry standards are up to date.
How will the new identity affect my access to the Whispir platform?
Our new Identity experience will be available in two phases.
-
The first phase, which is the current method of authentication, will have minimal effect on your current login flow; your existing credentials will remain valid. All changes will be transparent to our current login experience.
-
With our second phase providing even further improvements and functionality will be announced shortly. This phase will contain the majority of the look and feel changes which we believe will enhance your login experience on our platform.
Are there any changes to the login requirements?
No, you can use your email or username along with your password to access the platform.
What happens if I change my password?
As we release more of the final feature state, the appearance and feel of these process flows will gradually evolve. But, functionality will remain the same, and you will be able to change your password through two separate user flows: Forgot Password at the login page and Change Your Password via the Whispir Platform's profile settings page.
These flows will enable you to change your password and will continue to be your primary password management technique.
What is the new "Forgot Password Flow"?
Part of the work of updating our login experience is changing the forgot password flow; the new flow will be as follows:
-
Click "Forgot Password"
-
Enter your valid email (Associated with your Whispir Account)
-
You will receive an email with a link to reset your password
-
Add and Confirm your new password
Please note: Changing your password through the new "Forgot Password" flow will have password complexity requirements: 8 Characters Long, Including 1 Upper Case Letter, 1 Lower Case Letter and a Number.
What happens to my 2FA?
If you have our 2FA module enabled on your company accounts, you will continue to be able to utilise the existing login flow, post the login screen you will be challenged with the request for OTP.
What happens to the existing login URLs?
All existing login URLs will remain as is, and each region will have its designated URL, so any bookmarks or saved flows with the Whispir login URL will continue working as normal.
Can I still access Whispir Mobile Apps?
If you are currently utilising any of our Mobile apps your login and authentication will continue to work with no interruption to service.
Can I still access secured Rich Messages?
If you have Rich Messages that have the 'Enforce Login' module enabled, you will still be presented with the original Login Screen with no changes, and you will be able to access it using your existing credentials.
How does this impact my SSO access?
If you use SSO to login to the Whispir platform no changes will affect your login flow, your login experience will remain as is.
Will the new Authentication System impact my API Access?
No, your existing API Integration will continue to function without interruption to the service.
Will there be any changes that will impact my platform usage?
Session Timeout
We are introducing a new standardised Session Timeout period of 30 minutes of inactivity, which means if you don't actively use the platform for 30 minutes you will need to re-authenticate. This is part of our implementation of security industry standards which will help us secure your accounts better.
As always please contact Whispir Support if you have any questions, concerns or issues.