Two-factor authentication (2FA) is an extra layer of security that requires you to enter a one-time code, in addition to your username and password, each time you log into the TELUS Collaborative Health Record (CHR). This makes it harder for unauthorized individuals to access your account and patient database.

If two-factor authentication is enabled for your account, when you log in to the CHR, after you enter your username and password, you're sent a 2FA code through SMS (text) or email. You must verify yourself by entering the 2FA code you receive. This code expires as soon as you log into the CHR.

If you have the Google Authenticator app, and you link it to the CHR, you can use the code provided by the app.

📌 Note: Codes received through SMS (text) are valid for 5 minutes and codes received through email are valid for 10 minutes. Your authenticator app automatically changes the code every 30 seconds. However, either code expires immediately when you use it to log into the CHR.

Regardless of your permission level in the CHR, you can enable or disable two-factor authentication for yourself. You can also change how you receive two-factor authentication codes (see Customizing your personal two-factor authentication method).

You can enable or disable two-factor authentication for all users in your clinic (see Disabling two-factor authentication (2FA) for another user).