The most common way for users to log into a system, a username and password, often leads to poor account security, as users are prone to selecting easily guessed passwords. As remembering passwords is a challenge for many, a passwordless option such as Push Authentication can enhance both security and user convenience by allowing customers to authenticate using their mobile phones.
Push Authentication, a feature of SAP Customer Data Cloud’s Customer Identity offering, provides a passwordless login experience. Instead of entering a password, customers confirm a push notification on their mobile phones to authenticate.
The Push Authentication flow involves several key steps:
- Standard Registration – Initially, the customer registers on your website using their email or username and creates a password. This is a one-time setup.
- Mobile App Login – The customer logs into your mobile app using the same email or username they used during website registration.
- Opt-in for Push Notifications – Within the mobile app, the customer chooses to enable push notifications. This grants permission for the app to send authentication requests.
- Website Login Choice – When logging into your website, the customer is presented with the option to authenticate using either their password or push notification.
- Push Notification Sent – If the customer selects push notification, a notification is immediately sent to their registered mobile device.
- Authentication Confirmation – By confirming the notification on their mobile phone, the customer is automatically authenticated on your website.
For more information, refer to the Push Authentication documentation in the SAP Help Portal.