...
To use Onfido identity verification in your Operation, you must modify your CAS configuration as described in this article.
NOTE: if you operate a Standalone CAS server,
expose TCP port 7743 (inbound) in your firewall.
Choose an option:
...
Option A: If you choose to use the GB Cloud Onfido account, select that option.
After saving your selection, skip to the next section.
Note |
---|
Onfido is a paid service.
|
...
Note |
---|
Install NGINX and Let’s Encrypt before continuing.A reverse proxy is required. |
...
Activate Onfido in your Organization settings:
...
Api Key: Setup your account with them to acquire the necessary API key.
You’ll need a verification website with this option. Now you face two more choices:
...
use https://coin.cz/onfido
, or
...
Verification Site URL: guidelines found here on our Github page.
Onfido region: EU, US, or CA (default = “EU”)
...
Change your AML/KYC settings
...
the customer Identity will be added to “Registered”:
...
Save the AML/KYC setting
...
!
...
How Onfido works at the BATM:
Your customer chooses Registration during a transaction.
Their (required) phone number is collected.
Your customer will be sent further instructions via SMS (from Onfido). The link expires in 90 minutes.
They click through and submit the requested documents.
They’re notified of the results via SMS.
...
Registration procedure on CAS:
...
See https://generalbytes.atlassian.net/l/c/FmAMHNPM for more details about Custom Strings.
...
Troubleshooting:
If you use a Standalone CAS, and the SMS link steers you to a blank page, please check your configuration.
The file /batm/config/hostname
must be present and contain your server's domain name:
Code Block |
---|
cat /batm/config/hostname |
that should return your domain name. If empty, add the default to CAS by using:
Code Block |
---|
su -c 'hostname > /batm/config/hostname' |
If you know your domain name, and wish to enter it specifically (recommended), use:
Code Block |
---|
su -c 'echo your.host.name > /batm/config/hostname' |
replace “
your.host.name
" with the fully qualified domain name (e.g. example.yourcasdomain.com).
...
Notes:
Onfido results | CAS status of |
---|
Identity | ||
---|---|---|
1 | CLEAR | Registered |
when auto-registration |
is enabled. When auto-registration is disabled, the Identity becomes: Awaiting Registration |
1 | Onfido results | CAS status of |
---|
Identity | ||
---|---|---|
2 | SUSPECTED_COMPROMISED_DOCUMENT | Identity rejected |
3 | SUSPECTED_DATA_CONSISTENCY | |
4 | SUSPECTED_POLICE_RECORD
| |
5 | SUSPECTED_VISUAL_CONSISTENCY | |
6 | SUSPECTED_DATA_VALIDATION | |
7 | SUSPECTED_FACE_COMPARISON |
Onfido results | CAS status of |
---|
Identity | ||
---|---|---|
1 | REJECTED_AGE_VALIDATION | Rejected. |
The customer will need to retry the registration process again. | |
2 | REJECTED_IMAGE_INTEGRITY |
Onfido results | CAS status of |
---|
Onfido results
CAS status of identity
Identity | ||
---|---|---|
1 | CAUTION_VISUAL_CONSISTENCY | Awaiting registration. |
Demands manual verification, even if auto registration set up. | |
2 | CAUTION_IMAGE_INTEGRITY |
3 | CAUTION_DATA_COMPARISO |
4 | CAUTION_FACIAL_COMPARISON |
5 | CAUTION_DATA_VALIDATION |
6 | CAUTION_DATA_CONSISTENCY |