How can we help?

Or log in to submit or review a request.

Articles in this section

Did you get a new phone? Know before you upgrade

Updated

Note: This article does not apply to iPrescribe users.

During the identity proofing (IDP) and electronic prescribing for controlled substances (EPCS) onboarding process with Experian, you registered at least one authenticator ("token") to your EPCS account. 

BEFORE trading in your current smart phone or tablet with your authenticator app ("soft token") on it,  register a second authenticator application to your EPCS account.

  • Authenticator applications/soft tokens do not upgrade automatically on your new device, causing you to lose access to your authenticator app and the ability to e-prescribing controlled substances. 
  • If you do not already have a second authenticator registered to your EPCS account, you'll need to repeat identity proofing and EPCS onboarding to restore access.

Add tokens to your EPCS account 

Depending on your integration, access the login screen either directly from EPCS Gold or from Rcopia > Utilities > Token Management.

1. Log in with your NPI number and existing passphrase.

EPCS_Login.png

(click to enlarge)

 

2. To finish the login process:

  • From the Token drop-down menu, select an existing EPCS two-factor authenticator.
  • Enter the one-time-pin (OTP) from that authenticator. 

1_EPCSPush_Screen1.png

(click to enlarge)

3. Click the Tokens tab, then click the Add New Token button. 

EPCSGold_TokensTab_AddNewToken.png

(click to enlarge)

4. You will see options to add 2 types of authenticators to your account. Click Add to choose an option: 

  • Push Notification (iPrescribe Authenticator): App that generates a one-time pin ("soft token") 
  • Code Generator: A physical key fob that you ordered from DrFirst and that generates a one-time pin ("hard token") 

EPCSGold_ (Code Gen v. Auth).png

(click to enlarge)

Push Notification (iPrescribe Authenticator) > Add

If you are adding the iPrescribe Authenticator first:  

1. Scan the QR code. This action either installs the iPrescribe Authenticator to your device or takes you directly to Open Scanner if you already had iPrescribe Authenticator on your device. 

Note: DEA requires you install your authenticator ("token") on a separate device from the device you use to e-prescribe controlled substances. 

IDP_6a_iPresribeAuth_QRcode.png

(click to enlarge)

2. Once you have installed iPrescribe Authenticator, the app should prompt you to accept push notifications and authorize access to your camera to Open Scanner.

IDP_iPrescribe Auth Pairing_Open Scanner Screen.PNG

(click to enlarge)

Note: Alternatively, you can get here manually by going to your phone's settings to enable push notifications from this app and then going to the app's main menu > Settings > iPrescribe Authenticator to allow the app to access your camera and Open Scanner. 

click settings.png  IDP_iPrescribeAuth_MenuItem.PNG

 (click to enlarge)

3. Back on the screen, enter a nickname for this authenticator ("token") and click Bind DeviceTip: Do not use an underscore ("_") in your token nickname to avoid error messages. 

IDP_6a_iPrescribeAuth_QRcode+Nickname.png

(click to enlarge)

4. Using your iPrescribe Authenticator as a camera ("Open Scanner" view that you've kept open from step 2), scan the next QR code ("cronto code") that appears on the web page.

IDP_Cronto code.png

(click to enlarge)

5. Next, click No, Continue Setup if you do not have an iPrescribe Authenticator username and password.  

IDP_NextStepPassword.png

(click to enlarge)

6. You will then either see an Account found screen (if you are part of more than one organization) or a Create a password screen. For multi-practice users, select your practice and click Continue to get to the Create a password screen. 

mceclipleft.png  mceclip2right.png

 (click to enlarge)

7. You will get a confirmation screen asking you to check your email to retrieve your username.

Log in to iPrescribe Authenticator anytime to set up the app. 

A screenshot of a login.png

(click to enlarge)

8. Back on the web page, you will see a screen listing your token's status as activated. You will also be prompted to click Add Token to add a second token to your account (recommended). After you've added a second token, you will be able to Continue

IDP_7_WarningScreen.png

(click to enlarge)

Code Generator > Add 

1. If you are adding the key fob you received from DrFirst, fill out the required fields. Then click Save

ECPSGold_OnespanTokenEntry.png

(click to enlarge)

Field

Selection Options
Token Manufacturer 
  • SYMANTEC, 
  • ONESPAN, or 
  • RSA 
Token Issuer DRFIRST
Token Type
  • OTP HARD TOKEN (select if you have a physical token)
  • OTP SOFT TOKEN (select if you have an app)
  • SECURID (only for RSA-manufactured tokens) 
Token Name

Create a 'nickname' of your choice for the token, so you can identity it in the future (e.g. "iPhone SYMC app"). You will see this nickname each time you e-prescribe controlled substances. 

Do not use an underscore ("_") in your nickname. 
Serial Number (S/N) or Credential ID
  • OTP Hard Token (key fob) has a serial number on the back.
  • OTP Soft Token (app) may have a Credential ID at the top of the screen. 

Use the appropriate format when entering your token information:

Token Serial Number/Credential ID Format
OneSpan (hard token) 

Enter the numbers on the back without dashes: 

######## (no dashes) 

SymantecVIPToken.png

OneSpanTokenID.png
Symantec (hard token)

Enter the serial number on the back without spaces: 

  • AVT######## (no spaces)
  • FT######## (no spaces) 
Symantec (VIP Access app/soft token) 

Enter credential ID listed at the top without spaces:

  • SYMC########### (no spaces) 
  • SYMZ########### (no spaces) 
  • VSST########### (no spaces) 
One-time pin (OTP) Enter the security code generated by your authenticator ("token").

2. On the app, you will see a pop up message saying your token was successfully paired to your account. Otherwise, try again.  

On the web page, you will see a screen listing your token's status as activated.

3. Click Add Token to add a second token to your account (recommended). Once you have done this, click Continue

If you return to the Token tab, you should see your new token listed as Active

5. Now that you've added a second authenticator ("token") to your account, you're ready to upgrade to your new smartphone or tablet.

6. Since the authenticator application ("token") installed on your old device will no longer be valid, you can disable it by returning to the Tokens tab. Here, click on the Disable icon or hyperlink and enter the Reason for disabling.

EPCSGold_TokensTab_DisableToken.png

(click to enlarge)

7. Once you've successfully disabled your old authenticator, it should appear as Inactive for your old device.

Types of authenticators ("tokens") available 

The following authenticators each generate a one-time passcode every 30 seconds. The token you select for use depends on the DrFirst software and integrations you use: 

Note: DEA requires that you e-prescribe controlled substances on a separate device from your authenticator. 

Token type Manufacturer Name Get token Installation

App

("soft token") 

 Onespan/DrFirst iPrescribe Authenticator

Within Rcopia's notification center  

Google Play or Apple app store

 Click here 

App

("soft token") 

 ID.me ID.me Authenticator iPrescribe app > Settings Click here 

App

("soft token") 

 Symantec  VIP Access  Google Play or Apple app store Follow in-app instructions 

Physical fob

("hard token") 

 Symantec  N/A  Submit a request to DrFirst  None; received in the mail 

Physical fob

("hard token") 

 Onespan  Digipass GO7 Submit a request to DrFirst  None; received in the mail 
Was this article helpful?
3 out of 10 found this helpful

Comments

0 comments

Article is closed for comments.