SMS Authentication for Login Deprecation Notice
Deprecation date: September 1, 2026
Arc XP is removing the option to use text‑message (SMS) verification codes when signing in through Okta. This change enhances security and aligns with industry‑recommended authentication methods.
Why is this important?
SMS one-time codes are increasingly vulnerable to threats such as SIM‑swapping and interception, making them a weaker form of multi-factor authentication. Moving to stronger factors—such as authenticator apps and FIDO2‑based security keys—helps better protect user accounts and Arc XP systems from unauthorized access. This change ensures a more secure and reliable authentication experience for all users.
What you need to do
Before September 1, 2026, all users who currently rely on SMS for multi‑factor authentication must switch to a supported authenticator app, such as:
An authenticator app (e.g., Okta Verify, Google Authenticator)
A FIDO2‑compliant security key or device
At the time of login, users will follow the same process they do today, but instead of receiving a text message, they will enter a verification code from their authenticator app or biometric method. No other changes are required, and your existing usernames, passwords, and login URLs will remain the same.
Resources: