Overview
The Successful message for 2-factor authentication settings lets your institution define the confirmation text that is shown to a user after the system successfully dispatches a one-time verification code during the Forgot Password process with two-factor authentication (2FA) enabled.
When a parent or guardian forgets their portal password, and 2FA is active for the forgot password flow, Classter guides them through a multi-step identity verification sequence. Once the verification code is sent to the user’s registered mobile phone, the message configured here is displayed on screen. It confirms to the user that the code has been sent and guides them on what to do next – typically, to check their phone and enter the code to complete the password reset.
This setting is a rich text field: you can apply basic text formatting (bold, italic, bullet lists) to the message. It is configured per institution, so each institution can define its own wording independently.
What This Setting Does
This setting holds a free-form text message that Classter displays on the portal screen once the 2FA verification code has been dispatched to the user’s registered mobile phone during the Forgot Password flow.
Key characteristics:
- Type: Rich text (supports formatted text)
- Scope: Configured independently per institution
- Applies only when the 2FA forgot password feature is enabled for parents/guardians (relatives)
- Displayed mid-flow: after the verification code is sent, while the user is about to enter the code
- If left empty, no custom message will appear at this step of the process
This setting works alongside a companion setting -the Unsuccessful message for 2-factor authentication -which is shown instead when the password has been changed but the account is disabled and login is not possible (for example, pending administrator reactivation). Together, the two settings allow institutions to communicate both outcomes of the 2FA password reset flow clearly.
Where It Is Used
Navigation path: Main Settings > General Settings > Security Settings > Basic Settings > Successful message for 2-factor authentication
The message configured here appears in the portal login area, at the step where the system has just sent a time-limited verification code to the user’s registered mobile phone number. The message is displayed on screen -not in the SMS or email -to prompt the user to retrieve and enter the code.
The 2FA forgot password feature applies exclusively to the Parents portal (also referred to as the Relatives or Guardians portal in some institutional contexts). It is intended for parents and guardians who manage access to their children’s records and need a secure, verified method to regain access if they forget their credentials. This message does not appear to student or staff portal users under this flow.
Business Logic / Behavior
The Forgot Password with 2FA flow
When 2FA is enabled for the Forgot Password process, the following sequence occurs:
- The user clicks the Forgot Password link on the portal login page.
- The user enters their username.
- Classter sends a password reset link to the user’s registered email address.
- The user clicks the link in the email and sets a new password. The password is changed at this point.
- Classter generates a time-limited, one-time verification code and sends it as an SMS to the mobile phone number registered in the user’s profile.
- If the SMS is sent successfully, the message configured in this setting is displayed on screen -prompting the user to check their phone and enter the code.
- The user enters the verification code. Once the code is verified, the process is complete, and the user can log in with their new password.
If there is a problem at step 6 -for example, the account is disabled, and login is not permitted even though the password was changed -the Unsuccessful message for 2-factor authentication is displayed instead, and a designated staff member receives an alert.
Business rules
- This flow applies only to Parent/Guardian (Relative) portal users. Staff and student users follow a standard password reset process.
- A valid mobile phone number must be registered in the user’s profile for the verification code to be delivered.
- The verification code is time-limited once sent. Users should enter it promptly.
- If the message field is left empty, no confirmation text is shown to the user at this step, which may cause confusion. It is recommended to provide a clear instruction.
K-12 Mode vs. Higher Education Mode
The behaviour of this setting is identical in both K-12 mode and Higher Education mode. The 2FA password reset flow and the message display logic are applied the same way regardless of which mode your institution uses.
K-12 mode (Enable Configuration for Higher Education is disabled): Parents and guardians use the Parents portal to monitor and manage their children’s records. This setting applies to those users during the Forgot Password flow.
Higher Education mode (Enable Configuration for Higher Education is enabled): Students in higher education are typically adults who manage their own portal accounts. However, institutions may still operate a Relatives or Guardians portal (for example, for billing or family communication purposes). This setting applies to those guardian accounts in the same way. The primary student-facing portal uses a standard password reset process not covered by this setting.
Examples
Example 1 -Verification code instruction
A school configures the following message:
“A verification code has been sent to your registered mobile phone. Please enter the code in the field below to complete your password reset. If you do not receive the code within a few minutes, please contact the school office.”
After the system sends the SMS, this message appears on screen. The parent knows immediately what happened and what to do next.
Example 2 -Message with a support reminder
An institution wants to help parents who might not receive the code (e.g., outdated phone number). They configure:
“Your new password has been set. We have sent a one-time verification code to your registered mobile number. Please enter the code to confirm your identity. If your mobile number has changed, please contact the academy administration to update your contact details.”
This approach gives the parent a clear next step and a path to resolve issues -reducing support calls from parents who are stuck.
Example 3 -Minimal, direct message
Some institutions prefer concise wording:
“Verification code sent. Please check your mobile phone and enter the code below.”
Brief and actionable. The setting accepts any text length that suits the institution’s communication style.
When to Use
Configure this setting when
- The 2FA forgot password feature is enabled for parent/guardian (relative) portal users.
- You want users to receive a clear, institution-branded confirmation that the verification code has been dispatched and understand what to do next.
- You want to include contact or support information in the message -such as instructions for users who do not receive the SMS.
- Your institution wants to reduce support calls by clearly communicating the next step after code delivery.
You may leave this setting empty when
- The 2FA forgot password feature is not enabled at your institution.
- Parent/guardian portal accounts are managed entirely by administrative staff, and end users are not expected to use the Forgot Password flow independently.
- No custom instruction text is needed and relying on the portal’s default behaviour is acceptable.
Notes
Prerequisites
The following must be in place before this setting has any visible effect:
- Enable 2FA for the Forgot Password flow. The “Use 2-factor authentication for relatives at forgot password process” setting (Main Settings > General Settings > Security Settings > Basic Settings) must be turned on. Without it, the standard email-only reset is used and no 2FA message is shown.
- Users must have a registered mobile phone number. Each parent or guardian using this flow must have a valid mobile phone number stored in their Classter profile. The verification code for the forgot password 2FA flow is sent via SMS to that number.
Related Settings
The following settings are closely related and should be reviewed together when configuring the 2FA forgot password experience:
Use 2-factor authentication for relatives at forgot password process
Main Settings > General Settings > Security Settings > Basic Settings
The master on/off switch for the entire 2FA forgot password flow. This setting has no effect unless this toggle is enabled.
Unsuccessful message for 2-factor authentication
Main Settings > General Settings > Security Settings > Basic Settings (ID: Two_Factor_Authentication_Message_At_Forgot_Password_On_Unsuccessful)
The companion message displayed when the password has been changed but the user account is disabled and login is not yet possible. Works in parallel with this setting to cover both outcomes of the 2FA reset flow.
Employee receiving notification for unsuccessful forgot password request
Main Settings > General Settings > Security Settings > Basic Settings (ID: Two_Factor_Authentication_At_Forgot_Password_Employee_Receiving)
Designates the staff member who receives an alert when a user’s forgot password request results in an unsuccessful outcome (for example, account is disabled). Works alongside the unsuccessful message setting.
Message type for 2-Factor Authentication
Main Settings > General Settings > Security Settings > Basic Settings (ID: TwoFactorAuthenticationType)
Specifies whether one-time codes for other 2FA actions (consents, profile changes, etc.) are delivered by email or SMS. Note: the forgot password 2FA flow uses SMS to the user’s registered mobile phone regardless of this setting.
Enable 2-Factor Authentication for the following actions
Main Settings > General Settings > Security Settings > Basic Settings (ID: TwoFactorAuthenticationActions)
A broader 2FA setting that controls whether 2FA is required for other portal actions such as profile changes, consents, quick admission, and digital signatures. Separate from the forgot password 2FA flow but part of the same Security Settings area.