App Authentication & Security

App Authentication & Security

Overview

The mobile application maintains long sessions to ensure a smooth user experience without requiring frequent full logins. While this provides convenience, it introduces security risks if a device is left unattended or accessed by someone other than the authorized user.
To address this, the App Authentication and Security feature adds a re-authentication layer using Face ID/Biometrics, and a Quick PIN. This ensures that even with an active session, only the correct person can access the app. For better oversight, every re-authentication attempt is captured, allowing administrators to track when and how the app is being used.

Plan & Permissions

The security features are available to all users on the mobile application.
  1. Device Requirements: To use these features, your mobile device must have the necessary hardware and have them enabled in your system settings. Specifically, Face ID is available for iOS devices, while Fingerprint authentication is available for Android devices.
  2. Fallback Support: If your device does not support biometrics, or if they are disabled, the app will utilize the Quick PIN as the primary authentication method.
  3. Administrative Control: Admins can monitor all authentication attempts, successes, and failures through the Meritto Audit Logs under the User Manager module.

Core Functionalities

  1. Explicit vs. Implicit Authentication: The app makes a clear distinction between logging in and simply verifying your identity. An Explicit Login requires your full username and password, which only happens during your first setup, after a manual logout, or if your long-term session expires. Implicit Authentication is the quicker method, using Face ID, Fingerprint, or a Quick PIN to re-verify you whenever you relaunch the app.
  2. Quick PIN Management: The 4 digit Quick PIN is your primary backup for all biometric methods. You will be prompted to set this up during your initial security configuration, and it stays active as a fallback if biometrics are disabled or not working. For security, entering an incorrect PIN three times will trigger an automatic logout, requiring a full password login to get back into your account.
    Important: Your Quick PIN is a personal security credential. We strongly recommend that you do not share this PIN with anyone to ensure your account and student data remain protected.
  3. Multi-Method Biometric Support: You can enable Face Recognition or Fingerprint scanning directly within the app settings based on what your phone supports. To prevent you from getting stuck, the app will automatically switch to the Quick PIN option if your biometric scan fails.
  4. Device-Specific Security: Your security settings are stored locally on each phone or tablet rather than on our servers. This means if you use a second device, you will need to configure your Biometrics and Quick PIN specifically for that hardware. Because the app leverages the existing security capabilities of your smartphone, there is no need to install any external hardware or third-party software to protect your account. You can simply use these built-in features to ensure your app remains secure and professional. 
  5. Screenshot and Screen Recording Restrictions: App screenshots and screen recordings can now be restricted. This is managed through the permission Restrict Screenshots and Screen Recording. When enabled for a specific permission template, the capture of any on-screen information will be blocked for all users assigned to that template.

Benefits of the Functionalities

  1. Secure Long-Term Access: Maintaining a long-term session keeps the app ready for use without requiring your full password every single day. By adding a re-authentication layer, we eliminate the security risk of an unattended device. You get the convenience of staying logged in with the peace of intelligence that your student data is still protected by a biometric or PIN lock.
  2. Faster Verification: Re-authentication is designed to be quick and unobtrusive. Using Face ID or a Fingerprint scan takes only a second, allowing you to jump back into your counseling tasks or student follow-ups immediately.
  3. Reliable Fail-Safe Options: You are never stuck if your biometric scan fails or if you are wearing a mask or gloves. With the Quick PIN acting as a constant backup, you always have a manual way to verify your identity. This multi-method approach ensures that security never becomes a roadblock to getting your work done on the move.
  4. Full Accountability and Visibility: Every time you unlock the app using biometrics or a PIN, the action is recorded. This gives administrators a clear and accurate history of app usage, including the device type and IP address used. It turns a simple login into a transparent trail of activity, making it easy to verify that the right person is accessing the system.
  5. Unified Security Across Devices: Because security settings like the Quick PIN are stored directly on your phone, your protection is tailored to the hardware you are using. Whether you are on a tablet or a smartphone, the app utilizes the best security features available on that specific device, ensuring a consistent and professional safety standard across all your mobile tools.

Conclusion

App Authentication and Security provides a professional-grade layer of protection that does not get in the way of daily productivity. By utilizing the built-in security features of modern smartphones, the app ensures that the enrollment journey remains secure from end to end while keeping the login process simple for the user.


    • Related Articles

    • WhatsApp Authentication Templates

      Secure OTP Verification via WhatsApp (WABA) Overview Meritto now allows institutes to send One-Time Passwords (OTPs) directly on WhatsApp using WhatsApp Authentication Templates through the official WhatsApp Business API (WABA). Marketing messages ...

    • In-App Calling Best Practices and Important Checks

      Overview Meritto’s In-App Calling feature ensures that all call logs are properly recorded and synced to the system. However, to ensure smooth functionality and avoid any conflicts with other apps or device settings, certain best practices and checks ...

    • Overview - App Telephony

      Overview What is App Telephony? App Telephony is a calling feature in Meritto that lets users place calls through the Meritto Android app. You can either initiate the call directly from the app or trigger it from the web interface. When initiated ...

    • My Workspace || Mobile App

      Overview The My Workspace feature in the Meritto Mobile App enables you to manage, analyze, and interact with personalized dashboards and reports effortlessly. While previously accessible only through the web, this feature now empowers you to ...

    • Telephony Call from Mobile App

      Overview This article explains how to initiate Telephony calls to leads or applicants using the Meritto Android Mobile App. You can seamlessly make calls through the configured Telephony vendor, ensuring an integrated and efficient calling ...