To enhance security, myHSA has implemented the use of an Authenticator app for all users. Adjudicators and Advisors have already had this feature rolled out and implemented.
Beginning April 21, 2026 Plan Administrators will have the option to set up an Authenticator app connection for their Plan Admin account. This optional period will run until July 2, 2026 at which time it will become mandatory to set up.
Follow these steps below to set up:
Setting Up the Authenticator App
Initial Setup: After you have completed your regular Multi-Factor Authentication (MFA) login on myhsaaccess.com , you will be taken to a new screen. Here, you will see a QR code.
2. Scan the QR Code: Use the authenticator app of your choice to scan the QR code. Google Authenticator is a free option that works across different device types. Other options include Authy, Microsoft Authenticator, etc.
Please note: the QR code in the image above is an example and cannot be scanned. You will need to scan the unique QR code that is displayed on the page in your portal.
3. Verification: After scanning the QR code, you’ll need to enter the code generated by your authenticator app into the system.
4. Confirm Setup: Click on the “Verify MFA Setup” button. Once verified, you will see a confirmation screen indicating that the setup was successful.
Using the Authenticator for Future Logins
Frequency: You will need to use the authenticator app's code every time MFA is required. Typically, this will happen:
Every 2 weeks if you are using the same device.
Every time you switch to a new device.
Testing Your Setup: If you want to confirm that everything is set up correctly, you can open a private browser window or use a different browser and log in. You should be prompted to enter the code from your authenticator app, similar to the existing phone/email verification screen.
Please note that after setting up the Authenticator, the previous email and phone MFA options will no longer be available. This new process aims to strengthen our already robust security, and protect users from having their information accessed by anyone else but themselves.
Should you encounter any issues or have questions, feel free to reach out to our support team for assistance at support@getmyhsa.com or open up a live chat.