On this page:
Extended security mechanism (PIN)
Feature description
The PIN security feature for authenticating system access via the Linchpin mobile app introduces an additional prompt before any system content can be accessed via the app.
The PIN security feature requires users to set up a 4-digit PIN code. Users can’t access the Linchpin Mobile app without the PIN. The 4-digit code must be confirmed before it is enabled.
Users can optionally enable facial or fingerprint recognition to authenticate themselves.
The PIN security feature is available for the Linchpin mobile app as well as for branded custom mobile apps created for our clients.
To use this feature, you need Linchpin Mobile 2.17.0 or above and the Linchpin Intranet Suite 1.2.0 or above.
When do users need to enter the PIN?
The PIN security feature is triggered by the following user actions in the mobile app:
- Setting up a new login to a system.
- Logging in to a connected system.
- Opening the Linchpin mobile app after it has been running in the background (e.g. after switching apps).
The PIN security feature will only be triggered in those situation if the extended security feature is enabled.
Limitations
Current limitations of the PIN security feature include:
- You can only set a numeric PIN code of four digits.
- There is no technical check for “weak” digit combinations (e.g. “0000” or “1234”).
- A 4-digit PIN code set for a system is valid for the entire app from that time onwards.
- You cannot assign different PIN codes for multiple systems or logins.
- Once a PIN code has been set, it cannot be changed or deleted.
Face & fingerprint recognition is only available for iOS devices. The Android app currently only supports PIN codes.
How can I activate the PIN security feature?
Log in to your Confluence / Linchpin instance as administrator.
Navigate to Confluence administration → Linchpin Mobile → Configuration.
There you can activate the toggle switch Enable extended app security features to enable PIN protection for all mobile devices connected to your instance from the next login on.
What happens after the extended security feature is enabled?
If a user wants to add a new login to this system in the mobile app, the PIN security feature must be set up on this device.
- If the PIN security feature has already been configured, the user must enter their PIN code or use face / fingerprint recognition to add the new login.
- If the PIN security feature has not yet been configured, the user must set it up before they can add the new login.
If the user has an existing login to this system in their mobile app, the PIN security feature is activated for this login when the extended security feature is enabled in the administration area:
- There may be a short delay before the PIN security feature is enabled on the mobile device.
- The user will then need to enter their PIN code in the mobile app for any user actions in this system as described above.
In the mobile app, securely protected systems or logins can be identified in the system overview by the small “lock” icon displayed behind the protected system’s name.
What happens if a user forgets the PIN code?
For security reasons, it is not possible to simply reset a forgotten PIN code.
In this case, the user must therefore completely uninstall the app, download it again from the respective app store and set up a new login. In this context, the user must also set a new PIN code.
On Android devices, it might be neccessary to not only re-install the app, but also to clear the phone’s cache after uninstalling the app and before re-installing it.
Simply uninstalling the app on an Android device might not delete all app data, so you will have to do it yourself.
What happens if I disable the extended security feature again?
After you disable the extended security feature again, there may be a short delay before users are no longer required to enter their PIN codes. But the users won’t have to change anything, the request to enter the PIN will simply disappear.
Link to this page: https://seibert.biz/linchpinmobilepin
