Configure Email Notifications

To help increase security, you can configure the Cloud Authentication Service to automatically send a confirmation email to users when specific events occur. The following table describes what happens when you enable each configuration option.

Configuration Option Result When Enabled
Authenticator registration

Emails are sent following user action related to registered iOS, Android, and Windows authenticators only. They are not sent for user management of other authenticators, such as FIDO authenticators.

Authenticator deletion

Emails are sent after a user adds or deletes a credential or deletes a registered authenticator.

If an administrator deletes a user's credential or authenticator, the user is notified in the iOS, Android, or Windows app but does not receive an email.

Emergency Access Code generated

Emails are sent when the administrator generates the Emergency Access Code in the Cloud Administration Console. The emails are not triggered by any other administrator or user action, such as when the user enters the OTP to authenticate.

Hardware Authenticator registration Emails are sent after a user registers a hardware authenticator with the Cloud Authentication Service.
SecurID DS100 registration Emails are sent after a user registers SecurID DS100 FIDO or OTP credential.
Change Password Emails are sent after a user changes their passwords successfully.
Send OTP in Email for Admin Assisted Emails are sent to users with a reset link and a one-time code that enables them to reset their password. The email notification also includes the expiration time of the code.

The emails are sent in the language of the registered device containing an authentication app. For example, if the device uses Spanish, the emails are sent in Spanish. If an administrator generates an Emergency Access Code for a user and the user did not register a device, the emails are sent in English.

Before you begin

  • You must be a Super Admin in the Cloud Administration Console.

  • (Optional) Select a custom logo to include in the email. The image file must be JPG or PNG format, and no larger than 50 KB. The maximum logo size is 220 x 80 pixels.


  1. In the Cloud Administration Console, click My Account > Company Settings and select the Email Notifications tab.

  2. (Optional) Click Upload Logo, and select the logo to include in the email.

    If you do not specify a logo, the email does not include a logo. To delete an existing logo, click the minus sign.

  3. In the From Email Address field, specify the email address from which the email will be sent.

  4. In the From Display Name field, specify the display name of the sender, for example, Jan Smith.

    The From email address is You cannot change it. Using the example above, the email address looks like this: Jan Smith <>

    If necessary, be sure to whitelist, so the emails are delivered to users.

  5. (Optional) In the Signature field, specify the signature that appears at the bottom of the email. For example, you might add a name, job title, address, or contact information.

  6. Select the events for which you want to send emails:

    • Authenticator registration

    • Authenticator deletion

    • Emergency Access Code generated

    • Hardware Authenticator registration

    • RSA DS100 registration

    • Change Password

    • Send OTP in Email for Admin Assisted

    You can select multiple events. To read the email, click Preview Email. You cannot modify the subject or body of the email.

  7. Click Save Settings.

  8. (Optional) Click Publish Changes to activate the settings immediately.