How to Disable OTP Verification for an Account?

Disabling OTP Verification

If you wish to disable OTP (One-Time Password) verification for an account in Meritto CRM, follow these simple steps:

1. Navigate to the Settings icon located in the top-right corner of your screen.
2. Under the CRM section, find Lead Verification Settings.
3. Locate the toggle labeled "Enable OTP Verification" and switch it off.
4. Click on the Save button to apply the changes.

*Important*: 

Disabling OTP verification during registration or for widgets can significantly compromise the security and integrity of the system. Here's a breakdown of the risks:

1. Garbage Data in the System:

   • Without OTP, bots or malicious users can automate registrations or submissions, leading to fake or irrelevant data being entered into the system. This can clutter databases, affect analytics, and degrade system performance.

2. Unwanted Usage of Email/SMS/WhatsApp Credits:

   • If OTP is disabled, malicious users could flood your system with requests, consuming these credits unnecessarily. This may incur unwanted communication credit costs.

3. Unwanted Server Scaling or Outages:

   • When OTP is disabled, automated or bot-driven traffic can overwhelm the servers, resulting in high load and resource consumption. This can cause slower response times or even outages, and malicious traffic spikes and unwanted server costs.

Recommendation:

• It is strongly advised to keep OTP enabled and complete PE-TM chain binding, especially for registration and widgets, to protect the system from potential abuse. If PE-TM binding taking time, consider alternative methods such as CAPTCHA  as an additional layer of security without completely compromising on protection.

Enabling a captcha on the Registration Form

Please visit this page for the necessary steps.

Enabling captcha on Widget

Please visit this page for the necessary steps.