How can we help?

Or log in to submit or review a request.

Articles in this section

Getting a new phone? Register a second EPCS token first. (Experian-proofed providers)

Updated

Purpose: This article explains how to add a second authenticator (token) to your EPCS account before switching to a new device, so you can avoid losing access to e-prescribing for controlled substances.
Audience: Prescribers who completed EPCS onboarding through Experian and need to register an additional token before upgrading or trading in their smartphone or tablet.

Note: This article does not apply to iPrescribe users who completed identity proofing via ID.me.

Before You Begin

If you are getting a new phone, register a second token before you turn in your old device.

Your authenticator app on your new phone has a different serial number and must be registered before you can use it to e-prescribe controlled substances.

If you turn in your phone that has your only token without registering a second token first, you must re-enroll in EPCS to restore access.

If you already have a second token registered, you can log in to your prescriber dashboard and add your new phone's token without re-enrolling.

Confirm the following:

  • You have your NPI number and EPCS passphrase.
  • You have access to an existing registered token to complete two-factor authentication.
  • You have your new token (authenticator app installed or physical key fob in hand).
  • DEA requirement: Your authenticator must be installed on a separate device from the one you use to e-prescribe controlled substances.

Not sure what kind of token you have? See Answers to common token questions.

Step 1: Log in to Token Management

Access Token Management using one of the following paths:

  • EPCS Gold: Open the application and log in from the login screen.
  • Rcopia: Go to Utilities > Token Management.

1. Log in with your NPI number and existing passphrase.

EPCS_Login.png
EPCS Prescribe Dashboard login

2. Complete two-factor authentication:

  • From the Token drop-down menu, select an existing registered token.
  • Enter the one-time pin (OTP) — the temporary 6-digit code generated by your token.
1_EPCSPush_Screen1.png
EPCS Prescriber Dashboard two-factor authentication login page

Step 2: Add a new token

3. Select the Tokens tab, then select Add New Token.

EPCSGold_TokensTab_AddNewToken.png
Add New Token button

4. Select Add for the token type you want, then follow the matching path below.

  • Push Notification (iPrescribe Authenticator): App that generates a one-time pin ("soft token")
  • Code Generator: A physical key fob that generates a one-time pin ("hard token")
EPCSGold_ (Code Gen v. Auth).png
Select Your 2FA Method screen
Path A: Push Notification — iPrescribe Authenticator (app)

1. Scan the QR code. This action installs iPrescribe Authenticator on your device, or takes you to Open Scanner if you already have the iPrescribe app installed.

IDP_6a_iPresribeAuth_QRcode.png
QR Code

2. When prompted, accept push notifications and allow camera access to open Scanner.

IDP_iPrescribe Auth Pairing_Open Scanner Screen.PNG
Open Scanner button

Note: Alternatively, go to your phone's Settings to enable push notifications from iPrescribe Authenticator, then go to the app's main menu > Settings > iPrescribe Authenticator to allow camera access and open Scanner.

click settings.png IDP_iPrescribeAuth_MenuItem.PNG

iPrescribe Settings > iPrescribe Authenticator selection

3. Enter a nickname for this token, then select Bind Device.

Tip: Choose a nickname you will recognize later (example: "iPhone Auth"). The nickname appears each time you e-prescribe controlled substances and helps you identify which token you are using when you have more than one registered. Do not use an underscore ( _ ) in your token nickname.

IDP_6a_iPrescribeAuth_QRcode+Nickname.png
Device Nickname field

4. Using iPrescribe Authenticator as a camera (the Open Scanner view you kept open from step 2), scan the Cronto code (colorful dot-matrix) that appears on the screen.

IDP_Cronto code.png
Cronto code

5. Select No, Continue Setup if you do not have an iPrescribe Authenticator username and password.

IDP_NextStepPassword.png
No, Continue Setup button

6. On the next screen:

  • Single practice: You will see a Create a password screen. Create your password.
  • Multiple practices: Select your practice and select Continue to reach the Create a password screen.

iP_Auth_Account_found_screen.png iP_Auth_Create_password_screen.png

Create a password

7. The Login Details screen prompts you to check your email to retrieve your iPrescribe Authenticator username. You can log in to the app at any time to complete setup.

A screenshot of a login.png
Login Details screen

8. Back on the web page, confirm your token status shows as Activated. Select Add Token to add a second token (recommended). Once finished, select Continue.

IDP_7_WarningScreen.png
Add second token warning
Path B: Code Generator — Physical Key Fob from DrFirst

1. Fill out the fields on the Add Two-Factor Authentication Token screen, then select Save.

ECPSGold_OnespanTokenEntry.png
Add Two-Factor Authentication Token screen

Note: Enter your token's serial number or Credential ID in the exact format required for your token type. 

  • OneSpan hard token — Enter the number from the back of the fob, no dashes: ########
  • Symantec hard token — Enter the serial number from the back of the fob, no spaces: AVT######## or FT########
  • Symantec VIP Access app — Enter the Credential ID shown at the top of the app, no spaces: SYMC###########, SYMZ###########, or VSST###########
  • See Answers to common token questions for details about different token types.

Important: Three failed save attempts will lock your account. Enter your serial number or Credential ID exactly as shown for your token type above.

  • One-Time Pin (OTP) — Enter the temporary 6-digit code currently displayed on your authenticator.

2. Confirm your token was successfully paired:

  • On the app: A pop-up message confirms the token was paired to your account.
  • On the web page: Your token status shows as Activated.

If you do not see a confirmation, try again.

3. Select Add Token to add a second token (recommended), then select Continue.

Step 3: Disable your old token

Complete this step after your new token is active and you are ready to retire your old device.

1. On the Tokens tab, locate your old token.

2. Select the Disable icon or link and enter the reason for disabling.

EPCSGold_TokensTab_DisableToken.png
Token Disable icon

3. Confirm the token status changes to Inactive.

Was this article helpful?
3 out of 10 found this helpful

Comments

0 comments

Article is closed for comments.