Summary
M-Systems' implementation of Multi-Factor Authentication for patient portal logins provides an additional layer of security to prevent unauthorized users from accessing existing patient portal accounts.
Description
When logging into the patient portal, a unique code is sent to the email associated with the user's account after the username and password have been successfully verified. This unique code must be entered and verified within a pre-determined time frame to complete the login process.
Prerequisites
Existing patient portal username and password with associated email address. The user must be able to access the associated email account.
Action Upon Success
User is granted a portal session.
Action Upon Failure
A failure notice is displayed with contact instructions.
Additional Notes
Session timeout will require a new login with MFA. Multiple failures will result in the account being locked.