Access to CMS Systems and Identity Management (IDM) System

CMS has established a new Identity Management (IDM) System to provide MAPD Business Partners with a process to apply for, obtain approval, and receive a single User ID that is valid for access to one or more CMS applications.

Identity Management (IDM) EPOC Report Role

On April 4, 2022, a new IDM “EPOC Report” will be available for MAPD EPOCs. This new report will allow an EPOC to download a user access report that supports their access review procedures, helping to keep the EPOC in compliance with CMS security and privacy policies. Please refer to the MAPD Tailored EPOC Report Role (PDF) in the "Downloads" section below for instructions on requesting a new role and generating a report. 

IDM Account Registration

If you do not have a User ID and password, you will have to register by providing personal information and create a User ID and password of your own choosing.  After successfully completing and submitting the request, you will receive a confirmation email.

Note: Plan users that submit files through GENTRAN cannot have any special characters in their User ID.

The following is a quick overview of the key steps in registering for a User ID and password.

1. Navigate to https://portal.cms.gov.
2. On the CMS Enterprise Portal page, select the New User Registration link.
3. Select your Application (MARx – Medicare Advantage & Prescription Drug System)
4. Agree to Terms and Conditions
5. Click the Next button.
6. Provide the information requested on the Register Your Information page.
7. Create a User ID and password on the Create User ID, Password & Security Question/Answer page.
   • Note: The password to access the MARx UI must meet the following criteria: 

     • Passwords must be at least 15 characters in length with a maximum of 60 characters.

     • Passwords must include an uppercase letter.

     • Passwords must include a lowercase letter.

     • Passwords must include a number (0 - 9).

     • Special Characters are optional.

       • The following special characters are acceptable: “ ! # $ % & ‘ ( ) * + , - . ? / \ : ; < = > ? @ [ ] ^ _ ` { | } ~

       • Passwords must not contain a space.

       • Passwords must not be one of the user’s last 6 passwords.

       • Passwords must not contain parts of the user’s First Name, Last Name, or User ID.

       • 24 hours must have elapsed since the last password change.

       • Passwords will become permanent and non-expiring, so long as the account remains active.

         • To ensure your account stays active please login to your account at least once every 60 days. Otherwise, the system will disable your account and you will have to reset your password using an IDM self-service procedure or by contacting the MAPD Help Desk.

8. Submit User information on the New User Registration Summary. You will receive an email acknowledging a successful registration.

Additional information regarding account registration, including instructions with screenshots can be found in the IDM User Guide on the IDM Guides and Documentation website. The link to this website is in the "Related Links" Section below.

IDM Password Reset Instructions

The following are the basic step-by-step instructions on how to use the “Forgot Password?” feature to create a new password.

1. Navigate to https://portal.cms.gov.
2. Select Forgot Password?
3. Enter your User ID and select Next.
4. Select recovery method.
5. If recovering by email:
   • Select email from the recovery drop down menu
   • Click Send Recovery Email
   • Locate password reset email
   • Follow instructions listed in email
   • Note: You will need to know your Security Question/Answer to complete the password reset.
6. If recovering by SMS/IVR:
   • Select SMS or IVR from the drop down menu
   • Click Send Code
   • Enter code received
   • Answer the Security Question and then click Submit
   • Create new password and confirm

Multi-Factor Authentication (MFA)

Multi-Factor Authentication (MFA) is a security mechanism that is implemented to provide an extra layer of protection, such as a security code, when logging in with your User ID and Password.  Please refer to the IDM Guides and Documentation website in the “Related Links” section for more information about MFA.

Remote Identity Proofing (RIDP)

The identity verification process, also known as Remote Identity Proofing (RIDP), is necessary for roles that require a higher level of security to access. Identity Verification is done by asking you questions based on your personal information.  Please refer to the IDM Guides and Documentation website in the “Related Links” or the RIDP Tips for Success (PDF) in the “Downloads” section for more information about RIDP.