Multi-factor authentication (MFA) strengthens your ID.me account security by requiring two methods to verify your identity. These factors can include something you know, like a username and password, plus something you own, like a smartphone. MFA requirements vary between healthcare systems.
How it works:
When you want to sign in to your account, you'll need to provide two pieces of information: first, your username and password; and then, either enter a verification code or approve a push notification from your trusted device, such as an iPhone, Android, or other smartphone.
By entering the code or approving the push notification, you are verifying that you are both in possession of the device and accessing your account. For example, if you have an iPhone and are signing into your account, you'll be prompted to enter your password and approve the login event by entering the verification code that's automatically displayed on your iPhone.
A trusted device is a device that you've already used for multi-factor authentication. Trusted devices like smartphones and tablets can be used to verify your identity.
Trusted phone numbers:
A trusted phone number is a number that can be used to receive verification codes by text or phone call. You must verify at least one trusted phone number to enroll in multi-factor authentication.
A verification code is a numeric code sent to your trusted device or phone number. When this MFA authentication method is used, a 6-digit code is sent to your enrolled phone. You will then enter that code to complete login. (A verification code is different from the device passcode you may enter to unlock your device.)
A push notification is a prompt that appears on your enrolled trusted device when you log in. You’ll tap and approve the push notification to complete login.