Grant ePCS Prescriber Access

NextGen® Enterprise EHR Help

ePCS Prescriber Access

ePCS prescribers can digitally sign and send Electronic Prescriptions of Controlled Substances (ePCS). Access to the ePCS prescriber role is restricted. Two ePCS registrars are required to grant or remove a provider's ePCS prescriber access, and one of these registrars must use two-factor authentication as part of the process. The ePCS prescriber access authorization process involves steps by both the system administrator and the two ePCS registrars. Granting ePCS prescriber access is logged as part of the ePCS audit trail, which is available as a report in NextGen® Enterprise. For information about the ePCS Auditable Events report, go to NextGen Healthcare Success Community and download the latest Reports Guide for NextGen® Enterprise EHR . Before you can grant ePCS prescriber access to a provider, the following setups must be completed on the General tab for a provider: Assigned provider has retail service level of ePCS. Provider's relationship with the user is set up as self. If the

System Administrator Help

Grant ePCS Prescriber Access

Select a provider, and then on the General tab, select ePCS. The ePCS Authentication and Authorization Setup window opens. Select the Access tab. In the ePCS Prescriber Authentication section, select Authenticate next to the Registrar A (Pwd-Only) field. The User Login window opens. The first registrar enters NextGen Healthcare login credentials and then selects Login. The Registrar A (Pwd-Only) field displays the NextGen Healthcare username of the first registrar. Select Authenticate next to the Registrar B (TFA) field. The provider enters NextGen Healthcare login credentials and then selects Login. The provider completes the two-factor authentication (TFA) process based on the ePCS authentication method set up for the provider. For Symantec VIP, the Enter Password window opens, and the provider enters the number from token and then selects Login. For IdenTrust MAS, the IdenTrustMAS Authentication window displays the provider’s username in the IdenTrustMAS Username field and prompts t

NextGen® Enterprise EHR Help

Add Two-factor Authentication Credentials for IdenTrust MAS

Before you can add the credentials for IdenTrust Mobile Authentication Service (MAS) of a provider, the following conditions must be met: Provider’s username is registered with IdenTrust MAS. Devices to be used by the provider for Electronic Prescriptions of Controlled Substances (ePCS) are registered with IdenTrust MAS. For information about the IdenTrust MAS setup process, visit the IdenTrust website for the IdenTrust MAS Setup (https://www.identrust.com/partners/nextgen) or contact NextGen Healthcare Support. Select a provider, and then on the General tab, select ePCS. The ePCS Authentication and Authorization Setup window displays the Credentials tab. In the Two-Factor Credentialing section, select Add. The IdenTrustMAS Authentication window opens. Enter the IdenTrust MAS username and then select Authenticate. The IdenTrustMAS Authentication window displays the number of devices registered with IdenTrust MAS and prompts to swipe Approve on the device the provider wants to use for e

System Administrator Help

Add Two-factor Authentication Credentials for IdenTrust MAS

Before you can add the credentials for IdenTrust Mobile Authentication Service (MAS) of a provider, the following conditions must be met: Provider’s username is registered with IdenTrust MAS. Devices to be used by the provider for Electronic Prescriptions of Controlled Substances (ePCS) are registered with IdenTrust MAS. For information about the IdenTrust MAS setup process, visit the IdenTrust website for the IdenTrust MAS Setup (https://www.identrust.com/partners/nextgen) or contact NextGen Healthcare Support. Select a provider, and then on the General tab, select ePCS. The ePCS Authentication and Authorization Setup window displays the Credentials tab. In the Two-Factor Credentialing section, select Add. The IdenTrustMAS Authentication window opens. Enter the IdenTrust MAS username and then select Authenticate. The IdenTrustMAS Authentication window displays the number of devices registered with IdenTrust MAS and prompts to swipe Approve on the device the provider wants to use for e

System Administrator Help

Two-Factor Authentication Credentials for ePCS

According to the Drug Enforcement Administration (DEA) regulations, providers who want to send Electronic Prescriptions of Controlled Substances (ePCS) must be identity-proofed by appropriate persons within a practice. As a step in this process, the NextGen Healthcare administrator must associate a two-factor authentication (TFA) credential with the provider’s NextGen Healthcare user ID and activate that credential. The credential works only with NextGen® Enterprise applications. You can activate a provider's token to enable TFA. The token can be either an issued VIP or IndenTrust hard token or a software token that was downloaded onto a smartphone. Because at least one ePCS registrar must have TFA to grant user ePCS prescriber rights, non-ePCS prescribers can also have TFA tokens activated. The user must be present for the activation. Although users can have multiple credentials, only one is necessary. Note: If you do not set up a credential for a provider, the provider can send the p

NextGen® Enterprise EHR Help

Add Two-factor Authentication Credentials for Imprivata Confirm ID

Select a provider who is configured to use Imprivata Confirm ID, and then on the General tab, select ePCS.The ePCS Authentication and Authorization Setup window displays the Credentials tab. If the provider has activated credentials, those credentials display in the Imprivata ConfirmID User In the Two-Factor Credentialing section, select Add. The Imprivata ConfirmID Authentication window opens. Enter the username registered with Imprivata Confirm ID and then select the adjacent arrow.The authentication section updates with the second factor authentication field. The provider does one of the following: If a fingerprint reader is not set up, the provider enters the associated password and then selects the adjacent arrow. If a fingerprint reader is set up, then the provider uses the reader to scan the appropriate finger. If authentication is successful, the Imprivata ConfirmID Authenticationwindow automatically closes. The Imprivata Confirm ID username appears in the Imprivata ConfirmID U

Grant ePCS Prescriber Access

Recommendations

ePCS Prescriber Access

Grant ePCS Prescriber Access

Add Two-factor Authentication Credentials for IdenTrust MAS

Add Two-factor Authentication Credentials for IdenTrust MAS

Two-Factor Authentication Credentials for ePCS

Add Two-factor Authentication Credentials for Imprivata Confirm ID

ePCS Prescriber Access

Grant ePCS Prescriber Access

Add Two-factor Authentication Credentials for IdenTrust MAS

Add Two-factor Authentication Credentials for IdenTrust MAS

Two-Factor Authentication Credentials for ePCS

Add Two-factor Authentication Credentials for Imprivata Confirm ID