Skip to main content
Search

Manage Your GTR Account

Configure 2FA

  • GTR will ask users to set up Two-Factor Authentication (2FA) if you haven't when you sign in. You can always skip the process and register the 2FA later, however, some of our services require you to have 2FA registered to continue.
  • Currently, only Google Authenticator is supported. You could get it from Google Play Store or iOS App Store;
  • The 2FA registration page will show up automatically once you sign in.
    • Alternatively you could navigate to the Security Center to enable 2FA.
  • Follow the instructions provided to register your 2FA account using Google Authenticator.
  • Once the Google verification code is confirmed, your 2FA is successfully registered with your account. You will be asked to enter both email verification code and Google verification code each time on sign in or performing sensitive operations, such as creating or deleting API keys.

Change Email

If you want to update your login email address in GTR, please follow the below guide. The process involves verification steps to ensure account security while allowing seamless transition to your new email address.

Entry Point: Log in to your GTR account and navigate to the [My Account] menu, and click the "Change" button next to your current email address.

  • Step 1: Verify Previous Email Address
    • A 6 digits verification code will be sent to your current email address
    • Enter the code in the Email Verification Code field and click the Submit button to proceed
  • Step 2: Enter New Email Information
    • Enter your new email address in the New Email field and re-enter it again to confirm
    • Enter your new GTR account password in the Password field and re-enter your password again to confirm
    • Important Note: your new account password is supposed to be different from your previous password for a security reason
  • Step 3: Complete Security Verification
    • Enter the new verification code sent to your new email address
    • If Google Authenticator is enabled, then enter the 6-digit GA code
  • Step 4: Confirmation
    • Upon successful completion, you will see "Email address updated" message

Now, you may log in with your new email address and don't forget to update any saved login credentials in your browser or password manager.

Reset Password

  • You can reset your password on the Sign In page, by clicking the provided "Forgot Password" hyperlink in the left-bottom corner.
    • Alternatively, you could navigate to the Forgot Password page directly.
  • Enter the email address you registered with for your GTR account.
  • A verification code will be sent to your email address. Check your mailbox and enter the code from the email you received.
    • Check the junk/spam box or update the allowlist settings if you do not see the email. It comes from no-reply@travelrule.sdtaop.com.
    • If you did not receive the email, click "Resend Code" to request a new verification email. Please make sure that you always use the latest verification code as the old code will expire once the new code is sent.
  • Once the verification passes, you will be requested to provide the new password.
    • The new password has to be unique from the 3 previously used passwords, in order to provide maximum protection for your account.
  • If the account is registered with Two-Factor Authentication, you will be required to complete the Two-Factor Authentication verification as well, in order to provide maximum protection for your account.
  • Once verification is passed, your password is changed successfully and you should also receive a notification via Email from no-reply@travelrule.sdtaop.com.

Operator Account

For the purpose of technical configuration or any other operational activity, you can add a member of your team as an Operator Account.

What does an Operator Account do?

An Operator Account is capable of operating on following activities. Any changes / updates will be sent to the email of your Main Account.

MenusFunctionalities
API Info✔️ Add API Keys
✔️ View API Usage Statistics
✔️ View API History
Security Center✔️ Bind / Unbind Google Authenticator
Settings✔️ Configure IP Whitelist
✔️ Configure Public Key
✔️ Configure Callback URL
✔️ Change VASP Network Visibility
✔️ Change Travel Rule Support Capability
✔️ Configure Required PII Settings (Non-TRSP clients only)
✔️ Configure Supported PII Verification (Non-TRSP clients only)
Integration Test✔️ View and Run Integration Test Steps
VASP Member✔️ Member VASP Management (TRSP clients only)

How to add an Operator Account?

Only the Main Account of your VASP is allowed to manage Operator Accounts. To add a new Operator Account, please follow below steps.

  • Entry point: [My Account] -> [Profile] -> [Account Management]
  • Press the Edit button, input the email of your member, and save.
  • An activation email will be sent to the corresponding email box.
  • The email owner is supposed to click the activation link in the email and complete the activation process within 48 hours.
  • You, as the Main Account of your VASP, are able to see the "Verified" / "Unverified" status on the page. If the activation link is expired, you can simply remove the row and add it again. A new activation email shall be triggered.

Please be noted, your VASP can have up to 10 Operator Accounts. Enjoy!

Integrate GTR Website to OKTA

Configuring the GTR website into your firm's workspace OKTA offers several benefits. Your colleagues can access GTR with the same set of credentials. This enhances user experience and reduces password fatigue. Access permissions to GTR website can be easily managed in your OKTA, aiding compliance and monitoring access behaviors for auditing purposes of your firm.

Properly configure GTR website into your firm's OKTA

Only the Main Account of your VASP is allowed to manage OKTA settings. To configure OKTA settings properly, please follow the below steps.

  • Entry point: [My Account] -> [Settings] -> [OKTA]
  • Fill in "Metadata URL" and switch ON. ("Metadata URL" can be found in your firm's OKTA > SAML 2.0 area)
  • "Single-sign on URL" and "SP Entity ID" are automatically generated by GTR system. You will copy and share them with your OKTA GTR App admin.

Once your OKTA admin created the GTR App, there are still several things that need to be set up. In your firm's OKTA > GTR App > SAML Setting:

Sync your firm's OKTA identities into GTR?

OKTA SCIM, or System for Cross-domain Identity Management, is an open standard technique that GTR leverages to synchronize your firm's OKTA user identity with GTR. To enable OKTA SCIM:

First, please enable this feature on the GTR website.

  • Entry point: [My Account] -> [Settings] -> [OKTA]
  • Fill in "SCIM Sync Token" and switch ON. Save this "SCIM Sync Token" to somewhere else, you will need it later.
  • "SCIM Sync URL" is automatically generated by the GTR system.

Once completed, your OKTA GTR App admin needs to do a few more setup in your firm's OKTA GTR App.

  • In OKTA > GTR App > General > App Settings > Provisioning, set "Provisioning" as "SCIM".
  • In OKTA > GTR App > Provisioning > To App, tick on the "Create User" checkbox.
  • In OKTA > GTR App > Provisioning > Integration,
    • Fill in "SCIM connector base URL": refer to GTR prepared "SCIM Sync URL" on [My Account] -> [Settings] -> [OKTA].
    • Set "Unique identifier field for users" as "email".
    • Set "Supported provisioning actions" as "Push New Users".
    • Set "Authentication Mode" as "HTTP Header".
    • Fill in HTTP Header: refer to "SCIM Sync Token" on GTR website [My Account] -> [Settings] -> [OKTA].

Inviting more members accessing GTR?

Once your GTR App in your firms' OKTA is properly configured, you may wish to allow more members to navigate to GTR Website from your OKTA. To archive this, 2 simple actions:

Firstly, inviting them as an Operator Account, and they're required to complete Operator Account activation. Please refer to How to add an Operator Account? for more detail.

After activation is done, your OKTA GTR App admin can grant OKTA GTR App access to new members.