Work Around
Here is what I do when I need to &verify& a customer as well as suggestions I made to my resellers:
Here is what I do:
When a customer requests help which will require changes to his/her account, I ask for the username/password as if I have it on file.
I then quickly attempt to access his/her cPanel. If I am able to access his/her cpanel, the customer, in my opinion, is verified.
Suggestion # 1:
When an order is placed, most merchant companies will allow you to see at least the first or last (or both) 4 digits of the CC number used. Keep this info on file and use this for verification.
Suggestion # 2:
When you send your customer a welcome message, let them know that they MUST keep their original password on file as the ORIGINAL password will ALWAYS be used for verification.
Suggestion # 3:
If a customer forgets the ORIGINAL password, ask him/her to create a file within his account and have hom/her name it a certain name, one that is not a real word (i.e. - has710sn.htm). If the customer has access to do this, again, it is assumed that he/she is verified.
Suggestion # 4:
When sending the customer a welcome message, include a UNIQUE Client ID & Verification Password. Inform the customer to keep this info on file for verification purposes.
Suggestion # 5:
If you and the customer have access to a fax machine, ask him/her to send you a copy of their State ID (license, passport, etc). This does not necessarily mean that the person sending this info is the original owner, however, you will now have the name, address, and in most cases, either the social security number, or license number, of the person making the request. (Unless you host sites for well-known companies, government officials, and so on, I dont thing the person requesting help will make an effort to create a fake ID to fax to you.
I hope this info gives you a few ideas and solutions to your dilemna (sp?).
