Actions for Symantec VIP ePCS Authentication Method

Action	Description
Add	Registers a provider’s credential for NextGen® Enterprise applications use by associating a token with the provider.
Remove	Disassociates the token from a provider. The credential is no longer registered for NextGen® Enterprise applications use and is removed from the NextGen® Enterprise database.
Status	Displays information about the token’s status.
Synchronize	Re-synchronizes a token that is out of sync with the server. A token becomes out of sync when a provider has not authenticated with the credential for an extended period.
Validate	Verifies a provider’s ability to perform two-factor authentication with the credential.
Unlock	Unlocks a provider's credential. A credential in a locked state is unavailable for validation. The locked state is automatically set by the system based on the account validation settings.
Deactivate	Disassociates the token from a provider so the token is no longer registered for NextGen® Enterprise applications use. You must deactivate a lost token. If the token is found later, you can reactivate the token by adding it.

NextGen® Enterprise EHR Help

Add Two-factor Authentication Credentials for Symantec VIP

Select a provider, and then on the General tab, select ePCS. The ePCS Authentication and Authorization Setup window displays the Credentials tab. If the provider has active credentials, those credentials appear under Symantec VIP Tokens. Under Token Actions, select Add. The User Login window opens. The provider enters NextGen Healthcare login credentials and then selects Login. The Activate Credential window opens. In the Security Key Serial Number field, the provider enters the serial number from the token. In the Security Code #1 field, the provider enters the security code from the token. In the Security Code #2 field, the provider enters the next sequential security code from the token. Select Activate before the second security code changes. A confirmation message appears. Select OK. The credentials appear on the Registrar and Credentials tabs. Close the ePCS Authentication and Authorization Setup window. Actions for Symantec VIP ePCS Authentication Method Parent topic: Two-Factor

System Administrator Help

Actions for Symantec VIP ePCS Authentication Method

The following table describes the actions you can perform with credentials for Symantec VIP: Action Description Add Registers a provider’s credential for NextGen® Enterprise applications use by associating a token with the provider. Remove Disassociates the token from a provider. The credential is no longer registered for NextGen® Enterprise applications use and is removed from the NextGen® Enterprise database. Status Displays information about the token’s status. Synchronize Re-synchronizes a token that is out of sync with the server. A token becomes out of sync when a provider has not authenticated with the credential for an extended period. Validate Verifies a provider’s ability to perform two-factor authentication with the credential. Unlock Unlocks a provider's credential. A credential in a locked state is unavailable for validation. The locked state is automatically set by the system based on the account validation settings. Deactivate Disassociates the token from a provider so t

System Administrator Help

Add Two-factor Authentication Credentials for Symantec VIP

Select a provider, and then on the General tab, select ePCS. The ePCS Authentication and Authorization Setup window displays the Credentials tab. If the provider has active credentials, those credentials appear under Symantec VIP Tokens. Under Token Actions, select Add. The User Login window opens. The provider enters NextGen Healthcare login credentials and then selects Login. The Activate Credential window opens. In the Security Key Serial Number field, the provider enters the serial number from the token. In the Security Code #1 field, the provider enters the security code from the token. In the Security Code #2 field, the provider enters the next sequential security code from the token. Select Activate before the second security code changes. A confirmation message appears. Select OK. The credentials appear on the Registrar and Credentials tabs. Close the ePCS Authentication and Authorization Setup window. Actions for Symantec VIP ePCS Authentication Method Parent topic: Two-Factor

NextGen® Enterprise EHR Help

Remove a Two-factor Authentication Credential

You can remove a credential if a token or registered device can no longer be used, for example if a provider leaves the practice, a token or device is broken or replaced. Removing a credential for IdenTrust or Imprivata removes the IdenTrust or Imprivata mapping from the NextGen Healthcare provider account. Removing a credential for Symantec VIP disassociates the token from the provider. Select a provider, and then on the General tab, select ePCS. The ePCS Authentication and Authorization Setup window displays the Credentials tab. In the Two-Factor Credentialing section, do one of the following: For IdenTrust or Imprivata, select Remove. For Symantec VIP, select a token from the Symantec VIP Tokens list, and then do the following: Select Remove. In the Select Credential window, select the token serial number you want to remove. Select Select. Parent topic: Two-Factor Authentication Credentials for ePCS

System Administrator Help

Remove a Two-factor Authentication Credential

You can remove a credential if a token or registered device can no longer be used, for example if a provider leaves the practice, a token or device is broken or replaced. Removing a credential for IdenTrust or Imprivata removes the IdenTrust or Imprivata mapping from the NextGen Healthcare provider account. Removing a credential for Symantec VIP disassociates the token from the provider. Select a provider, and then on the General tab, select ePCS. The ePCS Authentication and Authorization Setup window displays the Credentials tab. In the Two-Factor Credentialing section, do one of the following: For IdenTrust or Imprivata, select Remove. For Symantec VIP, select a token from the Symantec VIP Tokens list, and then do the following: Select Remove. In the Select Credential window, select the token serial number you want to remove. Select Select. Parent topic: ePCS Setup

NextGen® Enterprise EHR Help

Two-Factor Authentication Credentials for ePCS

According to the Drug Enforcement Administration (DEA) regulations, providers who want to send Electronic Prescriptions of Controlled Substances (ePCS) must be identity-proofed by appropriate persons within a practice. As a step in this process, you, as an administrator, must associate a two-factor authentication (TFA) credential with the provider’s NextGen Healthcare user ID and activate that credential. The credential works only with NextGen Enterprise applications. You can activate a provider's token or devices to enable TFA. The token can be an issued Symantec VIP, software token that was downloaded to a device, or a push notification to a device. Because at least one ePCS registrar must have TFA to grant ePCS prescriber rights to a provider, non-ePCS prescribers can also have TFA credentials activated. For activation, the provider must be present with you. Although providers can have multiple credentials, only one credential is necessary. Note: If you do not set up a credential fo

Actions for Symantec VIP ePCS Authentication Method

Recommendations

Add Two-factor Authentication Credentials for Symantec VIP

Actions for Symantec VIP ePCS Authentication Method

Add Two-factor Authentication Credentials for Symantec VIP

Remove a Two-factor Authentication Credential

Remove a Two-factor Authentication Credential

Two-Factor Authentication Credentials for ePCS

Add Two-factor Authentication Credentials for Symantec VIP

Actions for Symantec VIP ePCS Authentication Method

Add Two-factor Authentication Credentials for Symantec VIP

Remove a Two-factor Authentication Credential

Remove a Two-factor Authentication Credential

Two-Factor Authentication Credentials for ePCS