Funds Transfer Passwords
What's changing
From 16 September 2024, Funds Transfer Passwords (FTP) will be replaced with SMS One Time Password (OTP) functionality. We must ensure our Members using online banking have the most secure two-factor authentication. SMS OTP provides exactly that. Every time you make a "high risk" transaction you will receive a password on your mobile phone.
To prepare for this change, there are a couple of things you need to do.
What you need to do depends on your circumstances
Frequently asked questions
SMS OTP (Short Message Service One-Time Password) is a security protocol that relies on a single-use password sent via text to a mobile phone.
This password is required to complete an Internet Banking password reset or ‘high-risk’ transaction, ensuring that access or authorisation is granted only to Members who carry the registered mobile device with Bank First.
Following a review, a decision has been made to retire the Funds Transfer Password (FTP) functionality.
FTP as an option has served its purpose, however a true two-factor authentication option is today’s preferred and most secure option. It allows for increased protection from fraudulent and/or ‘high-risk’ transactions.
The SMS OTP process is triggered when you attempt to access a secure service or complete a ‘high-risk’ transaction requiring authentication beyond a username and password.
You initiate a session by logging into online banking and attempts to complete a ‘high-risk’ transaction.
Once the initial login is successful, the authentication server generates a one-time password which is sent by text to the Australian mobile phone number listed in your online banking profile.
Once an OTP is used, it cannot be reused. This single-use limit is crucial for the security of the OTP method.
No. All Members who currently use FTP will be automatically moved to SMS OTP on 16 September 2024.
Your internet banking will be set to 'read only' and you will not be able to transact.
Yes.
It’s important to ensure your mobile phone number is listed in your online banking profile - via Internet Banking. This option is not available in the Bank First App.
See video guide for assistance.
No.
Your personal details, including updating your mobile phone number can only be completed using Internet Banking. See video guide for assistance.
You must update your mobile phone number using Internet Banking - not available via the Bank First App.
Unfortunately, no. Your Internet Banking will be set to 'read only' and you will not be able to transact.
You will not be able to:
Pay an existing Payee or Biller (at time of payment)
Pay a new Payee or Biller (at time of payment)
Add a new Payee or Biller (via address book)
Change a saved Payee or biller (via address book)
View /change contact details
Update email confirmation flag (ON or OFF)
Identify pending authorisations
International
No.
However, SMS OTP will only work with an Australian mobile phone number.
If you are permanently based overseas, you can receive an SMS OTP on your mobile phone with an Australian SIM card which allows global roaming in the country you reside in.
The two options are:
Use an Australian SIM card with global roaming to receive the SMS OTP.
Nominate an ‘authorised person’ to do your banking in Australia. The ‘authorised person’ needs to have an Australian mobile phone number registered in your Internet Banking profile.
SMS OTP is available in Australia. However, it’s important to note that if you live, or are travelling, in an area with poor mobile coverage, you may not be able to receive SMS OTP.
If you’re travelling overseas and can send and receive SMS’s on your mobile phone and your Australian SIM card allows global roaming in the country/countries you are visiting, you will be able to receive the SMS OTP.
Please check with your SIM card/mobile phone provider for global roaming and mobile coverage before leaving the country.
If you are travelling for a short period, we recommend you schedule your future payments in Internet Banking before leaving.