Sections to Review

Session Timeout is a security timeout for the system based upon inactivity by a user. System Default is 10 minutes of inactivity by the user before the system will log them out of the system. Please confirm or update the time and select Save Changes.

If you have an API integration with the system, selection of Process Structured CDAs on Intake allows for structured CDA documents received in Intake to be automatically downloaded according to your intake download settings, and marked as processed. After selecting this option, select Save Changes. If no selection is made, users will process structured CDAs manually from My Intake.

Selection of Require Two-Factor Authentication enforces the use of a second level of security for all users associated with your organization. See What is Two-Factor Authentication, and how do I configure it? for more information. Upon first login attempt, users will be required to select a multifactor authentication method, to which a code will be sent. After the multifactor authorization option has been confirmed, users will be required to enter their password and a security code to access their account.

If fax is enabled for your organization, selection of Suppress Default Fax Cover Sheet does not send the default fax cover sheet provided by the system. If your organization wishes to send their own cover sheet, this can be done by suppressing the default fax cover sheet and adding your own cover sheet as the first attachment of a fax. If the box is unchecked, the default cover sheet will be sent with each fax.

If fax is enabled for your organization, selection of the Suppress Default Metadata Pages does not send these pages with the fax. These pages include the message body/comments and attachment descriptions. If the box is unchecked, the default metadata pages will be sent with each fax.

If you wish to remove .xsl attachments, selection of Delete .xsl attachments upon receipt will automatically delete .xsl attachments from a clinical message upon receipt, leaving only the clinical documents. See Delete .xsl Attachments Upon Receipt for more information.

The Assigning Authority OID represents the object ID for the system that issues your patient IDs and your EHR uses to identify that the corresponding value is a Patient ID. When sending or downloading a message that uses the system to generate a CDA from unstructured content, this value is seen in the “root” attribute of RecordTarget > PatientRole > ID. If no value is specified, a default value is used and the patient ID may not be unique or recognized by your system. NOTE: When a new instance is created, a default value is automatically assigned, however, should be edited to represent your specific object ID.

Health Service Area (HSA): HSAs are the smallest unit of healthcare monitored regions by the Centers for Medicare and Medicaid services. HSAs are comprised of multiple zip codes in a geographic area. This information is populated based on the zip code entered during the registration process.

Health Referral Region (HRR): HRRs are the largest unit of healthcare monitored referral regions by the Centers for Medicare and Medicaid services. HRRs are comprised of multiple HSAs in a geographic area. This information is populated based on the zip code entered during the registration process.

Client credentials are used by systems that will integrate with the system using a service account rather than users. Press “Create Client Credentials” to generate a client Key and Secret to be used by an authorized application integrating with the system. The Key and Secret should be treated as sensitive information similar to a username and password. The client Secret will not be displayed on subsequent visits to the page and regenerating the credentials will require you to update any service that is using the credentials.

Whitelist IPs are used to filter requests to those coming from authorized networks. Enter the public IP that your service will use to contact the system. To add your current IP address, select the drop down arrow next to the Add IP Address button, then click to select the current IP address displayed and click Save IP Addresses. Up to six whitelist IP addresses may be added. An IP address can be deleted by removing it from the field and clicking Save IP Addresses.

Each external process using these credentials will require a unique Application ID with a valid license. Refer to the Add-On Management section for more information.