Skip to main content

General

  • What should I do if I suspect my account has been compromised?

    Plivo’s best-in-class security features include real-time payment and usage alerts, two-factor authentication at login, and geo permission restrictions for its services. However, you must take some actions yourself to protect your account and account credentials.

    How do I check whether my account has been compromised?

    Plivo sends out an email alert each time someone logs in to your account from a new device. Plivo also sends payment receipts each time a payment attempt is made, for both successful and failed attempts. Check your account email inbox or spam folder and compare any of these email messages to your recent behavior. 

    Alternatively, you can log in to your account and check the payment section. You can also review your usage by navigating to individual product screens (voice, SMS, Zentrunk, etc.) from the Plivo console. Each screen will have a summary of recent usage that you can compare with your expected usage.

    image.png

    How should I protect my account if I find it has been compromised?

    If you suspect your account has been compromised, Plivo recommends that you change your account settings immediately:

    1. Reset your password here.
    2. Change your Auth Token here.
    3. Review your geo permissions for
    4. Set up 2FA on your account.

    What practices should I follow to protect my account?

    Follow the advice in our security best practices document. Specifically, Plivo recommends that users:

    • Use a strong password with at least 12 characters and avoid sharing it with other users.
    • Plivo offers role-based access control that you can use to share certain tasks for your account with other team members at your organization.
    • If you must share credentials with multiple users, be sure to use a password manager.
    • Plivo APIs require a valid Authentication ID and Token. Your Auth Token should be stored securely and in an encrypted format. Make sure only authorized personnel can access it and avoid sharing it over public networks, public GitHub repositories, and web servers. 
  • Navigating the Plivo Console

    This video walks you through the Plivo console, so you can see where to locate key functions for your day-to-day operations.

     

  • Plivo Security Best Practices

    Looking to keep your account secure? Follow these recommended best practices to make sure your information stays safe.

    Plivo console security (for https://console.plivo.com)

    1. Choose a strong password that includes at least 12 characters: uppercase, lowercase, special characters, and numbers. 
    2. Enable two-factor authentication on your Plivo account.
    3. Leverage role-based access controls when adding new users to the account
    4. Don't use a group email address when registering a new account. We strongly recommend using an individual email for your Plivo account signup.
    5. Use an email account that's monitored regularly so that you receive alerts and security notifications in a timely manner.
    6. Auth ID and Auth Tokens are required to trigger SMS messages and voice calls. Auth Tokens should be treated as highly confidential as passwords and should not be published on open source platforms such as GitHub. 

    SMS security

    1. Enable Geo Permission under SMS > Settings > Geo Permissions to whitelist countries in which your users receive SMS notifications from you.
    2. Enable the setting Authorization To View SMS/MMS Content under SMS > Settings > Other Settings to authorize the Plivo customer success team to view your SMS content, help you debug, and detect fraud activity more effectively.
    3. Always redact incoming messages when creating a new application. Go to SMS > Applications > Add new application > Redact Incoming Messages to do that.

    Voice security

    1. Enable Geo Permission under Voice > Settings > Geo Permissions to whitelist countries in which your users receive voice calls from you.

    Zentrunk security

    1. When creating a password for your trunk, choose a strong password that includes at least 8 characters: uppercase, lowercase, special characters, and numbers.
    2. Only whitelist the IP addresses from your PBX and be sure to update these addresses if the PBX IP addresses changed.
  • Where can I find pricing by country?

    Pricing for Plivo products varies by country. You can check the prices on the Plivo console

    For pricing of inbound and outbound calls, click on Voice > Pricing.


    Screen_Shot_2020-05-20_at_7.46.49_PM.png

    You can select the country from the drop-down menu to see rates in the console or download a .csv file listing the inbound and outbound call rates for each country.

    Screen_Shot_2020-05-20_at_7.54.02_PM.png

    For pricing of inbound and outbound SMS text messages, click on Messaging > Pricing. You can select the country from the drop-down menu to see rates in the console or download a .csv file listing the inbound and outbound messaging rates for each country.

    You can also check Plivo pricing using our API.

  • How can I close my Plivo account?

    You can discontinue using Plivo’s services and close your account from the Plivo console. Navigate to Account > Service Address and click Close Account.Screen_Shot_2020-05-20_at_7.38.26_PM.png
    A pop-up will prompt you to enter your Plivo credentials to confirm that you want to close the account.

    Screen_Shot_2020-05-20_at_7.41.42_PM.png

    This process is irreversible. Once you close your Plivo account:

    • Plivo will permanently delete all of the account's applications, phone numbers, endpoints, and logs.
    • Credits remaining in the account will be refunded back to your card within 20 business days. Kindly note that the remaining credits can be refunded only if the recharge is made in the last 90 days.
    • Credits in trial accounts are not refunded.
    • Users invited to manage the account will no longer be able to access the closed account.

    Once a Plivo account is closed, a user with the same email address and phone number will no longer be able to sign up for a Plivo account. You must use a different email address and a phone number if you wish to create a new Plivo account.

    Plivo is legally required to retain all identifying information and proof of address provided by customers, including email address and phone number information, even after an account is closed. 

  • How can I change my password?

    You can change your password from the Plivo console. Click on Account > Settings > Security. Enter your old password for authentication and your new password twice, then Save Changes.

    Screen_Shot_2020-05-20_at_7.35.20_PM.png

    If you’ve forgotten your password and are unable to log in to your Plivo account, click on Forgot Password on the console login page. This will trigger an email to your registered email address. Click on the link provided in the email to enter a new password and log in.

      Screen_Shot_2020-05-20_at_7.36.40_PM.png 

  • How can I change my email address?

    Plivo uses the email address associated with your account to send important updates and notifications, so it's important to make sure the address is correct. Only the owner of an account can update the email address.

    To update the email address associated with your Plivo account:

    1. Log in to your Plivo account.
    2. Click on Accounts > Settings > User Profile.
    3. Click Update Email, enter the new email address, then click Update.Screen_Shot_2020-06-09_at_1.52.10_PM.pngScreen_Shot_2020-06-09_at_1.52.29_PM.png
    4. If there are no errors in the email address, you'll be prompted to authenticate your account.
    5. Once the account is authenticated, Plivo will send a one-time password to your email address. Screen_Shot_2020-06-09_at_1.52.49_PM.png
    6. Go to your email inbox to receive the message with the OTP. 
    7. Enter the OTP to validate and update the email address.
  • How can I enable two-factor authentication?

    Starting May 20, 2021, you must use a secure two-factor authentication (2FA) mechanism to log in to the Plivo console. 2FA provides an additional level of security by asking for a unique verification code to be sent to your mobile number when you log in into your account. This provides more protection for your profile and transaction information even when your user credentials are compromised.

    How can I enable 2FA on my account?

    In the Plivo console, visit Account > Settings > Security. Under Two Factor Authentication toggle the button from Disabled to Enabled.Screen_Shot_2020-04-01_at_4.05.30_PM.pngPlivo will send you a confirmation email message. The next time you log in, Plivo will send a one-time password via SMS to the phone number associated with the account. The OTP will be valid for only three minutes. If it expires, or if you don't receive the OTP, verify your phone number and click Try Again. You can also request the OTP via phone call.

    image.png

    Can I change the number after it’s set up?

    Yes. To change the number associated with your account for two-factor authentication, make sure you have access to both your old and new phone numbers. Please make sure the new number is a valid mobile number. In the Plivo console, click on Account > Settings > Security.

    2fa.png

    Click on Change Your Number. Enter your new phone number and click Update Number.

    Screen_Shot_2020-05-20_at_7.29.14_PM.png

    You'll receive a one-time password via SMS to the new phone number associated with the account. The OTP will be valid for only three minutes. If it expires, or if you don't receive the OTP, verify your phone number and click Try Again. You can also request the OTP via phone call.

  • How can I change my Auth ID or Auth Token?

    Plivo uses Auth ID and Auth Token credentials to authenticate the account from which an API request is triggered: 

    • Auth ID acts as your username.
    • Auth Token acts as your password.

    If another user gets access to your Auth ID and Auth Token, they'll be able to use your Plivo API to make calls and send messages to any destination. Make sure to keep your Auth ID and Auth Token private at all times and don't share them with any third party.

    Where can I find my Auth ID and Auth Token?

    You can find your Auth ID and Auth Token at the top of the home page of the Plivo dashboard. Click on the eyecon next to the Auth Token to make it visible.

    Screen_Shot_2020-05-20_at_7.22.54_PM.png

    How can I change my Auth ID or Auth Token?

    The Auth ID of any Plivo account cannot be changed. However, you can change the Auth Token by clicking to Account > Settings > Credentials and choosing either of the two options listed.

    Screen_Shot_2020-05-20_at_7.24.40_PM.pngWhen you click Generate Auth Token, Plivo will generate a new Auth Token that you can use as a password to authenticate your API requests.

    If you suspect your Plivo account has been compromised, or you see charges that don't reflect your usage, immediately change your Auth Token and your Plivo account password. On the Account Credentials page where you change your password you can also set up two-factor authentication for increased security.

  • How can I create a Plivo account?

    You can sign up for Plivo with a valid work email address and a phone number. We don’t allow signups from personal email domains (such as @gmail.com or @hotmail.com) or disposable email addresses, and you must not use a VPN to access Plivo’s console during the onboarding process. You’ll be asked to enter your name, and that name will appear on your invoices going forward. You’ll also need to set a password.

    SignUpScreen.png

     

    Activate your email address

    Once you complete the signup form, we’ll send an activation link to your registered email address. By clicking on that link, you can activate your account. If you don’t receive an email, check your spam or trash folder. Also check your mail server settings to make sure it’s not blocking emails from Plivo. You can try resending the verification link from the console.

    Verify your phone number

    To complete the registration process, you’ll need to verify your phone number as well. You won’t be able to access your account until you complete the phone verification process. We use this number for two-factor authentication — we send a unique verification code to the number every time you log in to your account for enhanced security. You must use a valid, SMS-enabled, non-VoIP number, and the number country should match the region you’re signing up from. Also, the number should not be associated with any other existing Plivo account. You can change the phone number associated with your account at any time after you complete onboarding.

     

    SetUpPhone.png

    We’ll send a one-time password (OTP) to the number to complete the phone verification process. If you’re unable to receive a code from Plivo via text message, you can select the option to receive a code via phone call. 

    Once you complete these steps you’ll have successfully registered your free trial account. After registering, you can use your account to test our voice and SMS services. 

    If you face any issues while signing up, please reach out to our support team for assistance. Learn more about our services from our documentation.

     

  • How can I to create a support ticket?

    To create a support ticket, start by navigating to the Plivo support homepage and clicking on Create New Ticket.

    Screenshot_-_2020-06-06T022005.941.png

    This brings you to a page that asks for:

    • Your email address 
    • A subject line that describes your query or issue
    • A description of the query or issue
    • The category of the query (to be selected from a drop-down menu)
    • The priority of the ticket (another drop-down)

    You can also add attachments. Click on Create a New Ticket to create the ticket. A member of our support team will investigate your request and reach out as soon as possible. You can check the status of a previous ticket from the support homepage by clicking on Check Ticket Status.