Skip to content

About the Issuer Administration Server

The issuer administration server allows multiple issuers and the system operator to share the same infrastructure and application while maintaining a completely separate view of the system. It enables issuers and the system operator to configure the system for their own purposes independently.

Access Levels

User access levels are controlled by assigning, one of six pre-defined, roles to the user. The user role determines which menu items and functions are accessible by the user.

A read only option is available, for all user roles, for example, for users in support roles that are not required to add records, edit details or upload files.

The access levels are:

person System administrator - the highest level of access in the system with access to system management, issuer management, user management, cardholder management, transactions, reporting and audit logs.

person Issuer administrator - provides access to member bank configuration options, cardholder management, transactions, reporting and audit logs for one, or a group of issuers.

person IT security - provides dedicated access to audit logs, for one or a group of issuers.

person Member administrator - provides dedicated access to the Admins section (administration user management), for one issuer or an issuer group.

person Business administrator - business level of access to the system provides access to cardholder management, transactions, reporting and audit logs, for one issuer or an issuer group.

person Helpdesk - provides cardholder management and transactions, for one issuer or an issuer group for helpdesk users.

Logging In and Logging Out

Login

To login to the ActiveAccess administration interface you must be previously registered as an administrative user and know your Username and Password. You must also have access to the required one-time passcode, if two-factor authentication is enabled for your user account.

  • From your Web Browser make a connection with the Intranet and access the ActiveAccess login page.

    The ActiveAccess administration Login screen is displayed.

    Warning

    If you have forgotten your password, contact your system administrator.

    If security has been compromised (such as when you suspect another person has logged in using your username and password) you can login and then change your password using the Edit Profile link situated on the top banner.

    Note

    If you experience login issues after an upgrade, clear your browser's cookies and try again.

  • Enter your Username and Password.

    Info

    Both Username and Password are case sensitive.

  • Click the Login button.

  • ActiveAccess supports two-factor authentication for logging into the Administration UI. By default, users are not forced to use two-factor authentication, unless this feature has been enabled during user creation or has been set up by the user in Edit Profile.

    Note

    To enable this feature, email notification messages must be enabled and configured in Settings.

    If two-factor authentication login is enabled for your user account, enter your one-time Passcode.

    Google Authenticator for two-factor authentication login

    To use this feature, you must have Google Authenticator installed on a mobile device and have the provided QR code scanned on the app.

    If a System Administrator enables this feature for a user, the QR code will be sent to the user's email address. If a user enables this function for their own account, the QR code will be displayed when enabling the feature.

    Refer to Install Google Authenticator for setup instructions of Google Authenticator.

  • Click the Login button.

    Upon entering your username and password (and passcode, if required) successfully, you are verified and the first admin page will be displayed. The page that you see will depend on the access rights assigned to your username (system administration, issuer administration, business administration, IT security, member administrator or helpdesk).

    Note

    If the user logging in does not belong to an Issuer or Issuer Group with a valid license installed, they will not be able to access any administration pages and will be shown the following message:

    The user 'username' does not belong to an Issuer or Issuer Group with a valid 3-D Secure enabled or Device enabled license installed.
    Please contact your System Administrator.

Logout

When you have finished using ActiveAccess administration, it is important that you logout from your account, to prevent other users from performing tasks with your username and access level privileges. The Logout function is accessed via the Logout link displayed on the right of the title bar area.

Warning

It is also important that you logout while leaving your PC unattended.

  • Click the Logout link.

    The Administration Login screen is displayed.

  • You may now close your browser window.

Issuer Administration Environment

The appearance of the issuer administration pages is consistent throughout, with each being made up of a number of common components.

A banner area at the top of the screen displays the access level and the username of the user currently logged in; the system version; Time zone, Edit Profile and Logout links; and the main menu items as tabs.

Clicking on a menu tab displays the sub menu options on the left side of the page, with the first sub menu item highlighted.

Clicking on the required sub menu option displays the first page for that sub section.

The following example shows the key features of an typical ActiveAccess Administration page.

Typical page features

Issuer Administration Options

Use the menu tabs on the ActiveAccess Issuer Administration title bar to access the administration options. The complete set of options available is:

  • System Management - set up and maintenance of system settings, issuer administration servers, issuers and issuer groups, authentication management, issuer public and encryption keys, exchange configuration and archive management.

  • Security - set up and maintenance of issuer signing certificates, Authentication History Server (AHS) certificates, CAAS (Remote Issuer) certificate, Issuer SDK certificate, Directory Server certificate, OOB Certificate, Risk Certificate, Decoupled Authenticator certificate, and trusted Certificate Authorities (CA).

  • Servers - set up and maintenance of ACS, Administration, Authentication History Servers and CAAS Servers.

  • Utilities - upload, manage and run system utilities.

  • Issuers - set up and maintenance of specific member bank details including card details, rules, custom pages and key management.

  • Rules - set up and manage business rules and the settings for risk based authentication.

  • Admins - set up and maintenance of ActiveAccess administrative users.

  • Cards - registration and maintenance of individual cards.

  • Transactions - for accessing transactions, when required for cardholder support purposes, dispute resolution, etc.

  • Reports - provides reports for card, enrolment and merchant activity, authentication, purchase volume, devices, admins and summary reports.

  • Audit Log - provides a record of administrative user activity. It includes an extensive log of critical actions performed by the administrative staff.

Tip

The audit log section is available to system administrators and issuer administrators only. System administrators have access to an audit log of all events and issuer administrators have access to events relating only to their specific issuer or issuer group.