To further protect the security of your MyDHL+ account, MyDHL+ will introduce DHLPass Multi-Factor Authentication (MFA).
DHLPass is an integrated login system designed to provide enhanced security and seamless access to multiple DHL applications using a single account.
Enhanced Security with OTP Authentication:
When a potential security threat is detected, such as logging in from a different region or country, OTP (one-time password) authentication is triggered for added protection.
Streamlined Access to DHL Applications:
With DHLPass, users can sign in to multiple applications using a single account. Currently, MyDHL+ and MyGTS are linked, with plans to integrate additional applications like MyBill, ODD, and DHL Express Mobile in the future.
Changes to the Sign-Up Process:
With the integration of DHLPass, MyDHL+ registration is now completed through DHLPass, and mobile phone verification is mandatory during the sign-up process.
- Mobile Number Entry: Enter your mobile phone number as '20 ********' (do not include '020').
- Single Account per Mobile Number: A mobile phone number CANNOT be linked to multiple DHLPass accounts. If you attempt to use an already registered number for a new account, the existing account will be deactivated.
Temporary Password (OTP) Authentication Process:
When is OTP Authentication Performed?
OTP (temporary password) authentication is triggered when a security threat is detected. The OTP is sent to your MyDHL+ login email or registered mobile phone number.
1. Basic Conditions (Always):
- Registering as a new member
- Changing your password
- Logging in for the first time from a different region or device
Note: OTP authentication will not occur every time you log in from a new device or location. It is required only the first time you sign in from a specific region or device.
Additional Note: OTP may still be sent if you log in on another PC within the same office, especially when using a new Wi-Fi or internet network with no prior connection history.
2. Additional Conditions (Not Always):
OTP authentication may occur if the web browser blocks the request to allow location information.
3. Risk-Based OTP Triggering:
Refusal to allow location information increases the risk score, which may heighten the likelihood of OTP authentication. Note: To prevent misuse, the specific risk score calculation logic is not disclosed.
4. Authorized Email for OTP:
OTPs are only sent to the email address registered as your MyDHL+ ID. They cannot be sent to alternative email accounts.
5. OTP Sending Limits:
OTPs can be sent up to 8 times per hour via email or SMS. If this limit is exceeded, OTP sending will resume after a 1-hour cooldown.
6. Account Lock Policy:
If an incorrect OTP is entered more than 10 times, your account will be locked. To unlock it, contact essnz@dhl.com.
Steps to Take If Your Company Blocks OTP Authentication Emails:
1. Resend Code:
In some cases, the OTP code may fail to send due to server or internet issues.
2. Check Spam Folder and Email Settings:
- Look in your spam, trash, or junk folders for the OTP email.
- Review personal and in-house email automation settings.
- Disable rules such as “Automatically delete emails if the sender's address contains ‘noreply’” or “Delete messages containing specific phrases in the email body.”
3. If you don't have an in-house IT or security team:
Contact your domain or hosting provider for help with troubleshooting and ensuring that OTP emails are not being blocked or filtered.
4. If you still can't receive the OTP email:
Attach the email receipt record, and log for the relevant time period, and forward it to selecom@dhl.com for further assistance.
How to Change OTP Authentication Option (Email or SMS):
After connecting to MyDHL+, click on the top right corner of the screen, select 'My Profile' → 'DHL Express Login Profile' → 'Verification Options'.
You can only add one mobile number to receive SMS. During the initial migration, only email authentication is available. After the migration, you can change the authentication method to SMS.
Yes, if login is detected continuously from different locations, it will be considered a potential hacking threat, and the OTP authentication process may be triggered repeatedly.
Yes, up to 3 people can log in to the same account simultaneously. If more than 3 users log in, the first user will be automatically logged out.
Even if the sender is the same, OTP emails may not be delivered if they are sent from different IP addresses. This can happen if your internal security measures have blocked specific IP addresses. You should contact your internal IT or security team to unblock DHL domains and IP addresses.
DHLPass can be used on up to 5 devices. OTP authentication will only be triggered the first time you log in from each device. If you enroll more than 5 devices, the least used device will be unenrolled. If you use an unenrolled device again, OTP authentication will be required.
This feature is currently not available, but it is under development.
Yes, MyGTS is linked to DHLPass, so you can access MyGTS with your DHLPass account. Other applications will be integrated in the future.
You are required to change your password once every year. You will be prompted to update it one year after your last password change.
Yes, if you don’t log in via DHLPass for one year, your account will be converted to a "human status." If you don’t log in for 360 days after being converted, your account will be permanently deleted.
Please provide the error message received for further assistance.
Contact your internal IT/security team and request them to "Allow access to the DHL domain (https://dhlpass.dhl.com/) and remove attachment restrictions."
