Actionist·Authentica
Authentica

Authentica

· #330 most-used

Plug-and-play authentication: OTP, biometrics, and SSO in one API

CommunicationHRDeveloperSecurityAutomation

Authentica is a Saudi-born identity-verification platform that gives developers a single JSON API for every major authentication method — SMS OTP, WhatsApp OTP, Email OTP, Face biometrics, Voice biometrics, and full Single Sign-On with Nafath support. Connect it to Actionist and your agents can trigger OTP sends, verify biometric results, audit authentication events, and gate downstream workflows on identity — without your team touching a dashboard or writing credential-handling code.

Try Authentica with ActionistVisit Authentica
Average time saved
6 hours
per person · per month
≈ 1 workdays back

Eliminates manual work. Agents eliminate manual OTP re-sends, credential audits, and identity-check follow-ups that previously required developer or ops intervention.

Schedule

What your Authentica agent runs on autopilot

A week of scheduled jobs your Actionist agent will execute on your behalf.

28Scheduled jobs
7Agents at work
24/7Always on
Agents
TueThu
Tue
Wed
Thu
7a
8a
9a
10a
11a
12p
1p
2p
3p
4p
5p
6p
Multi-app workflows

Authentica × every other app you use

End-to-end automations that span multiple apps — each one a real business outcome.

6Workflows
8Apps spanned
~21 hrsSaved / week
6Personas served
For hr
Featured3 apps

New-hire identity enrolled before day one

When a new employee is added to the HRIS, the HR agent fetches their phone and email details, sends a face and voice enrolment prompt, calls Enrol User Face Print and Enrol User Voice Print once the samples arrive, and logs biometric completion in the HRIS record. By the time the employee walks in on day one, every biometric-gated system is ready for them — no IT queue, no paper forms.

~8 hrs

Time saved for your team — every week, on autopilot

The flow
Trigger·When a new hire record is created in the HRIS
Trigger
Step 1
BambooHR
Detect new employee record created
write
Step 2
Authentica
Send Email OTP to verify email address
write
Step 3
Authentica
Enrol User Face Print from onboarding selfie
write
Step 4
Authentica
Enrol User Voice Print from audio sample
write
Step 5
BambooHR
Update employee record with biometric enrolment status
write
Step 6
Slack
Notify IT that biometric enrolment is complete
Result
Send Email OTP to verify email addressEnrol User Face Print from onboarding selfieEnrol User Voice Print from audio sampleUpdate employee record with biometric enrolment statusNotify IT that biometric enrolment is complete
The win
Saved per run
~1 hrs
Runs / week
~8×
Every new hire is biometrically enrolled before they sit down
Driven byHuman Resources Agent
ROI

Savings

What your team gets back — two angles: what you stop doing manually, and what that's worth.

Without Actionist

What you do manually today

With Actionist

What your agent runs for you

  • Sales
    10 min / week
    Manual proposal access control

    Reps send proposal links with no identity gate — anyone with the URL can view the document, and there is no record of who actually opened it.

    Sales Agent
    0 min
    Agent gates every proposal behind OTP

    The agent sends an OTP to the prospect before releasing the proposal link. Only verified recipients can open the document, and the verification timestamp is logged in the deal record.

  • Marketing
    30 min / week
    Ghost registrations inflate event headcount

    Anyone with the registration link can sign up with a fake email — event headcount is inflated and the post-event follow-up list is full of bad contacts.

    Marketing Agent
    0 min
    Agent verifies every registrant via OTP

    Every registration triggers an OTP challenge. Unverified registrants are automatically removed from the active attendee list, giving the team a clean, real headcount before the event.

  • Customer Support
    25 min / week
    Security questions answered from guesswork

    Support agents rely on knowledge-based questions to verify callers — questions that are easily researched from social media or previous data breaches.

    Customer Support Agent
    0 min
    Agent confirms identity with OTP before disclosure

    Before disclosing any account information or making changes, the agent sends an OTP to the customer's registered number. The ticket remains gated until the code is verified.

  • Human Resources
    40 min / week
    Biometric enrolment scheduled separately

    New hires visit IT on day one for a biometric enrolment session — adding 45 minutes to the onboarding day and blocking IT staff from other work.

    Human Resources Agent
    0 min
    Agent enrolls biometrics during onboarding workflow

    The HR agent sends face and voice enrolment prompts as part of pre-arrival onboarding. Biometrics are registered before day one, so no IT session is needed on arrival.

  • Finance
    20 min / week
    High-value payments approved by email reply

    Wire transfers above threshold are approved via an email chain — no identity verification on the approver, and approval emails can be spoofed or forwarded.

    Finance Agent
    0 min
    Agent sends step-up OTP before releasing payment

    The agent gates every high-value payment behind an SMS OTP to the authorised signatory. The verification result is logged alongside the payment record — a clean approval trail.

  • Operations
    30 min / week
    Departed employee sessions closed manually

    IT revokes SSO sessions by logging into each system individually — a 30-minute checklist that sometimes runs hours after the employee's last day.

    Operations Agent
    0 min
    Agent revokes sessions within a minute of departure confirmation

    When departure is confirmed in the HRIS, the agent calls Revoke User Session and logs the termination time. Access ends within about a minute — no IT checklist required.

  • Legal
    15 min / week
    Contract signings rely on email confirmation only

    External signatories receive a signing link by email — there is no check that the person who clicks the link is actually the person named in the contract.

    Legal Agent
    0 min
    Agent sends OTP to verify the signer before releasing the link

    The agent sends a WhatsApp OTP to the signer's registered number before releasing the signing link. The verification event is recorded in the contract record as identity evidence.

+ 100s of other Authentica automations
Average time saved
17 hrs / person / month
Calculator

Calculate what your team saves

Team size
5 people
Hourly rate
$75 / hr
Hours saved / week
8
Hours saved / year
375
Annual ROI
$28,125

Based on Authentica's typical team usage — the visible tasks plus a few other automations the agent runs: ~1.5 hrs / person / week of admin work automated.

Connect

How to plug Authentica into Actionist

Pick the connection method that suits your environment.

Authentica uses a single API key passed via the X-Authorization header. Generate one in your Authentica dashboard and paste it here — Actionist will authenticate all requests on your behalf.

1
Open your Authentica dashboard

Log in at authentica.sa and navigate to Settings → API Keys.

2
Generate an API key

Click Generate Key, copy the value immediately — it is shown only once. Store it in a secrets manager.

3
Paste into Actionist

Paste the key into the API Key field below and click Test connection. Actionist will call a lightweight read endpoint to confirm the key is valid.

Credentials you'll need
API Key*
Authentica dashboard → Settings → API Keys → Generate key
Actions

14 actions your agent can call

Read and write operations available to your Actionist agent.

Triggers

0 events your agent can react to

Events your agent watches for, and the actions it kicks off in response.

This app has no triggers yet.
FAQs

Questions about Authentica + Actionist

How does Actionist connect to Authentica?
Go to the Apps tab, find Authentica, and click Connect. Authentica uses API key authentication — paste your API key from the Authentica dashboard (Settings → API Keys → Generate Key) into the field provided. Actionist runs a lightweight read call against your account to confirm the key is valid before saving. All requests are made with your key passed in the X-Authorization header, so your credentials are never exposed to downstream workflow steps.
Which OTP channels does Authentica support, and how does the agent choose between them?
Authentica supports SMS, WhatsApp, and Email OTP. In Actionist, each channel is a separate action — Send SMS OTP, Send WhatsApp OTP, and Send Email OTP — so the agent picks the channel you configure for each workflow step. You can build channel fallback logic by chaining Get OTP Delivery Status after a send: if the first channel shows as undelivered, the next step triggers a send on the fallback channel. The agent handles the retry logic without any human intervention.
What biometric methods does Authentica offer, and when should I use each?
Authentica provides Face biometrics (Verify Face Biometric, Enrol User Face Print) and Voice biometrics (Verify Voice Biometric, Enrol User Voice Print). Use face verification for asynchronous digital flows — document signing, KYC, high-assurance logins — where the user is in front of a camera. Use voice verification for phone-channel interactions — call-centre authentication, voice-authorised payments — where a microphone is the natural input device. Both require a prior enrolment step; Actionist can run the enrolment during onboarding so verification is available from the first interaction.
Can I use Authentica to meet regulatory identity verification requirements?
Authentica's authentication log provides timestamped records of every OTP send, verification result, biometric check, and session event. Using Get Authentication Logs, your Actionist agent can export those records to a compliance folder, legal management system, or audit spreadsheet on any schedule — building a rolling evidence trail without manual work. Authentica's support for Nafath (Saudi National Identity) is particularly relevant for Saudi-regulated sectors such as financial services, government, and legal platforms where a verified national ID check may be required.
What is the credit system and how do I make sure I never run out?
Authentica bills OTP sends and biometric checks in credits — the free tier starts with 100 credits on sign-up. Your Actionist Finance Agent can call Get Credit Balance on a weekly schedule, compare the balance to your average weekly consumption, and post a Slack alert when you drop below a two-week runway. This gives you time to authorise a top-up before any OTP sends fail. The balance is also logged to a cost-tracking spreadsheet so finance can reconcile spend against the Authentica invoice each month.
How does Actionist handle a failed OTP or biometric verification in a workflow?
When Verify OTP Code or Verify Face Biometric returns a fail result, your workflow can branch: re-send on an alternative channel, increment a failure counter and lock the account after three attempts, escalate to a human agent, halt a pending transaction, or log the failure to an audit trail. Actionist treats the verification result as a conditional gate — the agent decides what happens next based on the pass/fail outcome, and every branch is configurable without writing code.
How quickly does Authentica terminate a session after I call Revoke User Session?
Within about a minute of the Revoke User Session call completing, the targeted SSO session is invalidated and the user will be required to re-authenticate on their next access attempt. This makes it suitable for time-sensitive offboarding and incident response. For employee departures, pair Revoke User Session with deprovisioning actions in your HRIS and identity provider so that the Authentica session termination is one automated step in a broader access revocation workflow rather than the only control.
Does Authentica support SSO with Nafath, and what does that mean in practice?
Yes. Authentica's SSO layer includes Nafath as one of its supported authentication channels alongside Face Recognition, Voice Recognition, SMS OTP, Email OTP, and WhatsApp OTP. Nafath is the Saudi national digital identity system, trusted by government platforms, banks, and regulated businesses. When a user authenticates via Authentica SSO, they can select Nafath as their method — completing the challenge in the Nafath government app — and Authentica returns a verified JWT to your workflow. This is particularly useful for workflows requiring a national-ID-level identity assurance rather than just phone possession.