Your iTrustCapital account is the gateway to managing a self-directed IRA with exposure to digital assets and physical metals. A clean login habit—verifying the website, enabling two-factor authentication (2FA), and safeguarding recovery options—helps ensure that your retirement savings remain protected against phishing, credential stuffing, and device compromise. This presentation walks you through the experience, from locating the correct sign-in page to resolving common sign-in issues without risking account integrity.
Open the sign-in portal.
From the homepage navigation, click Sign In. Confirm you’re still on the official domain before entering credentials.
Enter your email and password.
Avoid copying from random clipboards or screenshots. If a password manager fills the fields automatically on the correct domain, that’s a good sign.
Complete Two-Factor Authentication (2FA).
Open your authenticator app and type the current code. If you’re using SMS 2FA, make sure your carrier account is secure and SIM-swap-protected.
Review the dashboard.
After login, scan recent activity and notifications. If anything looks unfamiliar, change your password and contact support immediately.
Tip: If the site ever asks for your email code and then your authenticator code on a page that looks “off,” stop and re-load the official homepage. Phishing portals often chain prompts to harvest factors.
Recovering Access Without Risk
Forgot Password
Use the Forgot password link on the official sign-in page. You’ll receive a secure email link to reset. Do not follow reset links sent unexpectedly; instead, initiate the reset yourself from the site.
Best Practice
Reset from a known device and network.
Create a new, unique passphrase (16+ chars) with a manager.
Rotate 2FA secrets if you suspect compromise.
Lost 2FA Device
If you lose access to your authenticator, use your saved backup codes or contact support through the official site. Expect identity verification; this protects your IRA from unauthorized access.
Preventive Moves
Store 2FA backup codes offline (paper or secure vault).
Register a secondary device authenticator, if supported.
Suspicious Activity
Change your password immediately and review session history. Then head to the help center via the official website to open a security ticket.
Never share full passwords, 2FA seeds, or recovery codes with anyone—support will not ask for them.
After You Log In: Navigate With Confidence
Area
What You’ll Do
Security Angle
Dashboard
View balances, performance, and recent transactions.
Verify recent logins match your activity timeline.
Funding
Contribute, rollover, or transfer in accordance with IRA rules.
Confirm instructions via official channels only.
Trading
Place buy/sell orders for supported assets.
Double-check order details and confirmations.
Documents
Download statements, tax forms, and confirmations.
Store files in encrypted locations; avoid public devices.
Settings
Manage profile, password, 2FA, and alerts.
Enable login alerts and review authorized devices.
Keep your profile details up-to-date so important account alerts reach you promptly, reducing response time in the event of a security incident.
Security Deep-Dive for Your IRA
Strong Authentication
An authenticator-app-based 2FA typically offers better resilience than SMS because codes are generated locally on your device. If your provider offers hardware-based keys (e.g., FIDO2/U2F), consider enrolling one as a primary or backup factor.
Browser & Device Hygiene
Keep a dedicated browser profile for financial tasks to minimize extension risk.
Use automatic OS and browser updates; patch promptly.
Enable disk encryption on laptops and strong PIN/biometric on phones.
Network & Phishing Awareness
Prefer trusted networks and a reputable DNS resolver. Always type or use a bookmark for the official site and verify the domain before entering credentials. Be skeptical of urgent emails that ask you to “secure your account” by clicking links—go to the site yourself.
Reminder:
Your retirement account deserves the same level of protection you’d give a safe deposit box—slow down, verify, and proceed deliberately.
Common Login Issues & Quick Fixes
“Invalid Credentials”
Confirm caps lock, check your password manager entry, and reset if necessary from the official site.
2FA Codes Not Working
Ensure your phone’s time is set to automatic. TOTP codes drift if your device clock is off.
Locked Out After Attempts
Wait for the cooldown, then initiate a password reset, or contact support through the official help page.
If you think malware may be involved, switch to a clean device, run a reputable malware scan, and only then attempt to sign in again.
FAQs — iTrustCapital Login & Account Access
Can I sign in on mobile?
Yes—use your mobile browser and navigate directly to the official website, then tap “Sign In.” Keep your phone updated and protected with a strong unlock method.
Should I save my password in the browser?
Password managers are safer than reusing passwords or memorizing short ones. If using a browser manager, secure the device itself and use a strong master password.
What if I suspect a phishing site?
Do not enter anything. Close the tab, clear your cache for safety, and re-open the official homepage from your bookmark:
itrustcapital.com.
How do I contact support safely?
Access support links starting at the official website to avoid spoofed phone numbers or fake chat widgets.
Official Links (Use These Only)
All links below go to the official iTrustCapital website. Open in a new tab and verify the address bar.
For sign-in, always start at the homepage above and choose Sign In from the site menu. Avoid searching for third-party “login” pages—these are a common phishing vector.