ACTION REQUIRED: Changes Coming to Your CMS Enterprise Portal Account

Health Insurance Marketplace® sent this bulletin at 05/27/2022 09:57 AM EDT

agents and brokers - selling in the healthcare dot gov marketplace

Enable MFA for your CMS Enterprise Portal Account

ACTION REQUIRED: Agents and brokers should immediately ensure they have enabled a multi-factor authentication (MFA) device for their Centers for Medicare & Medicaid Services (CMS) Enterprise Portal account (https://portal.cms.gov/) to avoid any upcoming interruptions to CMS system access.

To adhere with the Zero Trust mandate, an MFA device will be required to log in to the CMS Enterprise Portal (https://portal.cms.gov/) starting in early June. The CMS Enterprise Portal is a single sign-on platform that provides access to numerous CMS applications. This step is especially critical for users enrolling consumers through the Classic Direct Enrollment (DE) pathway. If you do not set up an MFA device, the “double redirect” process will fail, and you will not be able to log in to HealthCare.gov after being redirected from a private website.

What To Do Now

Log in to the CMS Enterprise Portal (https://portal.cms.gov) and complete set up of an MFA device. For instructions on how to enable an MFA device, view the Enterprise Portal User Guide.

Users are encouraged to set up multiple MFA methods and confirm that all contact information including the email in their agent/broker profile is up-to-date to avoid any interruptions in CMS system access. You will then be able to select any of the five methods listed below:

SMS Authentication: Users enter a code texted to their phone.
Email Authentication: Users enter a code sent in an email.
Google Authenticator: Users enter a code from their Google Authenticator app.
Okta Verify: Users enter a code from their Okta Verify app.
Voice Call Authentication (Interactive Voice Response – IVR): Users receive a phone call from a computer-operated phone system.

What To Expect in Early June

If you do not enable MFA by early June:

Users that have signed in since account creation: Email will be assigned as your default MFA device. Users are encouraged to set up multiple MFA methods and confirm that the email in their agent/broker profile is up-to-date.
Users that have NOT signed in since account creation: You will receive a prompt to set up an MFA device when you sign in to the CMS Enterprise Portal (https://portal.cms.gov). When prompted, you will see the following screen after logging in with your User ID and Password. You will then be able to select any of the five devices listed above.

New users: Starting in early June, new users will be guided to set up an MFA device as part of the “New User Registration” process for creating a CMS Enterprise Portal account. Upon completion, you will be prompted to log back into the CMS Enterprise Portal and select your preferred MFA device.

Have additional questions? Contact the Marketplace Service Desk at 1-855-267-1515.

This message is paid for by the U.S. Department of Health and Human Services. It was created and distributed by the Centers for Medicare & Medicaid Services. You're receiving this message because you signed up for email updates from the HealthCare.gov Team. You can update your preferences, receive fewer emails or pause emails until the next Open Enrollment period, or use our 1-click unsubscribe to stop receiving messages from the HealthCare.gov Team. Please contact support@subscriptions.cms.hhs.gov if you have questions or problems with your subscriptions.