Passwords
The Secure Payment application's payment module allows you to assign passwords to protect the terminal from unauthorized use. All terminal passwords are 6 numeric (numbers only) characters in length to provide security without slowing down the overall time it takes to process a transaction.
The terminal has 3 types of user passwords:
Administrator (Admin): Configured during initial terminal activation
Merchant: Configured during initial terminal activation
Operator: Configured when creating one or more terminal operators
For more information on specific password procedures, click any of the following links:
Understanding Password Hierarchy
The terminal uses passwords for different user levels. The user levels follow a hierarchy, and a “higher” level password can enable a function (or override a password) for a “lower” level user.
For example, an operator can use the Merchant password to enable a password-protected sale, while an Administrator password can unlock functions that require a Merchant password.
The hierarchy of passwords is the following:
User Level
Description
Administrator
Configured when you activated your terminal, the Administrator password can protect the terminal against unauthorized reimbursements in the Secure Payment application's payment module. You can use the Administrator password for any function that requires a Merchant or Operator password.
Merchant
Configured when you activated your terminal, the Merchant password protects the terminal from completing certain sales and reimbursement functions without authorization. You can use the Merchant password to complete a transaction when Operator identification requires a password to process a sale.
Operator
Assigned when creating one or more terminal operators. Can be enabled to protect unauthorized sales when paired with the associated operator ID.
Password Requirements
When setting passwords on your payment terminal, you must respect the following parameters:
Passwords must be 6 characters long
The Administrator and Merchant passwords cannot be the same (can’t match)
You cannot use the same digit 6 times consecutively (for example: 111111 or 777777)
You cannot use 6 consecutive numbers, either ascending or descending (for example: 123456 or 987654)
Incorrect Password Entries
If you enter a password incorrectly, the terminal displays an Access refused error message.
Touch the error message to return to the Password field and re-enter the required password.
If you are unable to remember the required password, you can use the Merchant or Administrator password, depending on which password you can't remember. Refer to Understanding Password Hierarchy or Forgotten Passwords for more information on which passwords can "override" others.
Forgotten Passwords
If a user forgets a password, the password reset procedure depends on the terminal user profile. The following table explains who can reset which password and which procedure to use:
Terminal user
Who can reset
What to do
Administrator
PayFacto Support
The Administrator password can only be reset with a Superuser password, which requires the assistance of Technical Support.
Refer to the Obtaining Support procedure.
Merchant
Administrator
A Merchant password can be reset using the Admin password.
Operator
Administrator or Merchant
Operator passwords can be reset using the Admin or Merchant password.
Change Administrator Password
As part of your original terminal activation, you set an Administrator password. The Administrator password provides access to advanced terminal functions and can also enable password-protected operations. You can change the Administrator password whenever you feel it necessary.
NOTE: Do not forget the new Administrator password; the only way to reset it is to contact PayFacto support.
To change the terminal's Administrator password:
From the main screen, touch Settings.
Enter the merchant password and touch Confirm.
Scroll to the Configure application section.
Touch Passwords.
Scroll to the Set passwords section.
Touch Administrators.
Enter the current Admin password in the Password field and touch Confirm.
Enter a new 6-digit numeric Admin password in the Password field. Keep in mind the password requirements when setting the new Admin password.
Re-enter the new password in the Confirm new password field.
If you have more than one terminal, repeat steps 1 to 10 for each additional terminal where you want to change the Admin password.
Change Merchant Password
As part of your original terminal activation, you set a Merchant password. The Merchant password protects against unauthorized users performing certain operations. You can change the Merchant password whenever you feel it necessary.
NOTE: Do not forget the new Merchant password; the only way to reset it is to use the Admin password or to contact PayFacto support.
To change the terminal's Merchant password:
From the main screen, touch Settings.
Enter the merchant password and touch Confirm.
Scroll to the Configure application section.
Touch Passwords.
Scroll to the Set passwords section.
Touch Merchant.
Enter the Admin password in the Password field and touch Confirm. Requiring the Admin password prevents unauthorized changes to the Merchant password.
Enter a new 6-digit numeric Merchant password in the Password field. Keep in mind the password requirements when setting the new Merchant password.
Re-enter the new password in the Confirm new password field.
If you have more than one terminal, repeat steps 1 to 10 for each additional terminal where you want to change the Merchant password.
Change Operator Password
When you create an operator, you assign them a unique password. In the event that the operator has forgotten their password, or as part of a regular security hygiene program, you can change the quickly password.
NOTE: If you use more than one terminal, you will need to change the same operator password on each terminal.
To change a terminal operator password:
From the main screen, touch Settings.
Enter the merchant password and touch Confirm.
Scroll to the Configure application section.
Touch Application options.
Scroll to the Clerk section.
Touch Clerk management. The Clerk management screen appears, listing any existing operators.
On the operator's configuration page, scroll to the Change password section and enter the current operator password in the Old password field.
Enter a new 6-digit numeric password for the operator in the New password field. Keep in mind the password requirements when setting the operator's new password.
Re-enter the new password in the Confirm new password field.
Touch the Save button; the new password is saved and the Clerk management screen appears.
NOTE: If the current password is incorrect or you enter the new password incorrectly when confirming, a message appears and the terminal remains on the operator's configuration screen. Re-enter the password(s); if needed, touch the Show password icon to ensure you entered the correct password.
If you have more than one terminal, repeat steps 1 to 11 for each additional terminal where you want to change the operator's password.
Password Protection for Functions and Transactions
For added security, you can require the Merchant password for certain functions or transactions before the operation can proceed. By default, this security measure is enabled for the following functions and transactions:
Reimbursements (refund and void)
Sales transactions (cash, force post, swipe)
By default, all of the operations listed above have password protection enabled. Reimbursement transactions are always password protected, but you can select if the transaction requires the Admin or Merchant password.
You can disable the password protection on certain sales transactions and exiting the Secure Payment application if desired, but that leaves the terminal vulnerable to unauthorized use where any person could perform those functions.
NOTE: To ensure the security of your transactions, it is strongly recommended that you enable the use of passwords for the selected functions.
Reimbursement Passwords
As a security measure, the Secure Payment application's payment module requires a password before processing reimbursement transactions. You can choose which password to require (Admin or Merchant) or you can disable passwords for reimbursements, depending on your preference. By default, refunds require the Admin password and voids require the Merchant password.
IMPORTANT! If you disable passwords for reimbursement transactions, anyone can process a refund or a void without supervisory or management knowledge or approval. To prevent possible fraudulent reimbursements, you should maintain password protection as part of the reimbursement process.
To set the required password for reimbursements:
From the main screen, touch Settings.
Enter the merchant password and touch Confirm.
Scroll to the Configure application section.
Touch Passwords.
Scroll to the Require password for transactions section.
Touch Refund transactions; the Password on refunds screen appears.
Select the desired password by touching Merchant or Admin or touch No password to disable password protection for refunds.
Touch the Back icon to return to the Passwords screen.
Touch Void transactions; the Password on voids screen appears.
Select the desired password by touching Merchant or Admin or touch No password to disable password protection for voids.
If you have more than one terminal, repeat steps 1 to 10 for each additional terminal where you want to set the required passwords for reimbursement transactions.
NOTE: If you disable password protection in either step 7 or 10, you can re-enable the password by using this procedure and selecting the desired password for each transaction type where you disabled the password.
Sales Transaction Passwords
By default, less commonly used sales transactions (cash sale, force post, and swiping the payment card) require the Merchant password before they can be processed. You can choose whether or not to require the Merchant password, depending on your preference.
To select password protection for certain sales transactions:
From the main screen, touch Settings.
Enter the merchant password and touch Confirm.
Scroll to the Configure application section.
Touch Passwords.
Scroll to the Require password for transactions section.
Enable the use of the Merchant password by toggling the following switches to the right:
Force post
Cash
Swipe
Disable the use of the Merchant password by toggling the previously listed switches to the left.
If you have more than one terminal, repeat steps 1 to 7 for each additional terminal where you want to set password usage for sales transactions.
Application Exit Password
By default, the Secure Payment application's payment module requires the Merchant password before you can exit. You can choose whether or not to require the Merchant password, depending on your preference.
NOTE: Be aware that if you disable this function, the Secure Payment application's payment module can be closed at any time by anyone, whether intended or not.
To enable or disable the Merchant password before exiting:
From the main screen, touch Settings.
Enter the merchant password and touch Confirm.
Scroll to the Configure application section.
Touch Terminal options.
Scroll to the General section.
Enable the use of the Merchant password before closing the payment module by toggling the Ask password on exit switch to the right.
Disable the use of the Merchant password before closing the payment module by toggling the Ask password on exit switch to the left.
If you have more than one terminal, repeat steps 1 to 7 for each additional terminal where you want to set whether or not to use the Merchant password before exiting the application.
Last updated