Make sure you are prepared for the new MFA login authentication!
The CMS Enterprise Identity Management System (EIDM) is implementing a Multi-Factor Authentication (MFA) requirement to help improve CMS’ ability to ensure system security.
As of June 19, 2016, all Novitasphere Portal users will need to use MFA when logging into both EIDM and the Novitasphere website.
To prepare for this new level of security and avoid log in issues on June 19, we are strongly encouraging customers to set up their MFA device NOW. Once your device is registered, you will be required to enter a security code from your device each time you log in to Novitasphere and EIDM.
What is MFA?
- MFA is a type of login authentication that, in addition to a User ID and Password, requires another “factor” such as a PIN. To comply with the CMS Policy, Novitasphere users will need to establish a second login “factor” to meet this level of security.
Who does this affect?
Novitasphere Portal customers who:
- Have a Novitasphere role that was approved before May 8, 2016
- Do not have any EIDM roles which already require MFA
Novitasphere customers who are approved after May 8, 2016:
- You will be able to set up your MFA device as of the Friday following your Novitasphere role approval.
- Example: For a customer whose Novitasphere role is approved on May 31, 2016, they will be able to set up MFA starting on June 3, 2016.
How do I add an MFA device?
For your reference, a document titled “Existing Novitasphere Portal Users Adding Multi-Factor Authentication (MFA)” has been added to the Novitasphere Center, with detailed instructions for an existing user to add an MFA device. If you have questions on the MFA process and registering a device, please review the guide to learn more.
You may also wish to view CMS’s EIDM Training Video: MFA Registration and Use. (This video is hosted by YouTube, a 3rd party vendor not affiliated with Novitas Solutions, Inc. In order to view YouTube videos, your company must allow this. If you receive a message that the video is blocked, please contact your network administrator to request an exception. YouTube videos are also accessible via mobile devices, which is an alternate method you may choose to view these.)
We strongly encourage you to register more than one type of device, with one of them being the IVR option. Due to known latency issues with the e-mail option, we do not suggest having this as your sole MFA device.
Customers who have a role which already requires the use of MFA should follow the instructions here: