Enhanced Security Login and MFA

by

EARLY ACCESS ONLY

Building on the 2-step login process that was released previously, your organization can now require users to use the enhanced security login feature and optionally, on a user-by-user basis, require multi-factor authentication (MFA).

Enabling Enhanced Security Logins

Currently, the enhanced security login feature must be enabled by a Dentrix Ascend support technician.

Important: Each user that you want to have migrated to the enhanced security login process must have a unique email address entered for his or her user account in Dentrix Ascend.

User’s First Login With Enhanced Security

The first time a user logs in after the enhanced security login feature is enabled, the user logs in as they normally have with the previous 2-step login process.

1. Enter the organization ID and username.

2. Click Continue.

The login page changes.

3. Enter the password.

4. Click Login.

The user account is then migrated automatically to the enhanced security login.

User’s Subsequent Logins With Enhanced Security

Now, every time the user logs in, the new login process is used.

1. Enter the organization ID and username.

A screenshot of a login screen AI-generated content may be incorrect.

2. Click Continue.

A different login page opens.

A screenshot of a login page AI-generated content may be incorrect.

3. Enter the Password.

4. Click Continue.

Enabling MFA for a User

After a user has been migrated to the enhanced security login process, if you want to require the user to use multi-factor authentication, you can do so by editing the user’s account (Settings > User Accounts, and then select an account). Set the Multi-Factor Authentication switch to Yes, and then click Save.

A screenshot of a computer AI-generated content may be incorrect.

Authenticator App

The user must install and configure the applicable authenticator app (such as Microsoft, Google, or Duo) on his or her mobile phone.

User’s First Login With MFA

When a user logs in for the first time after MFA is enabled, the user must scan a QR code to create an authenticator app account and provide a one-time passcode during the login process.

1. Enter the organization ID and username.

A screenshot of a login screen AI-generated content may be incorrect.

2. Click Continue.

A different login page opens.

A screenshot of a login page AI-generated content may be incorrect.

3. Enter the Password.

4. Click Continue.

The Secure Your Account page opens.

5. To create an account in the authenticator app and get a one-time code, open the authenticator app on the phone, and then scan the QR code.

6. In the Enter your one-time code box, enter the code from the authenticator app on the phone.

7. Click Continue.

User’s Subsequent Logins With MFA

Now, the user can use an existing authenticator app account to provide a one-time passcode during the login process.

1. Enter the organization ID and username.

A screenshot of a login screen AI-generated content may be incorrect.

2. Click Continue.

A different login page opens.

A screenshot of a login page AI-generated content may be incorrect.

3. Enter the Password.

4. Click Continue.

The Verify Your Identity page opens.

A screenshot of a login AI-generated content may be incorrect.

5. In the Enter your one-time code box, enter the code from the authenticator app on the phone.

6. Click Continue.

Resetting an MFA Device

You can reset a user’s MFA device, such as when the user gets a new phone or a different authenticator app needs to be used.

1. Access the user’s account details (Settings > User Accounts, and then select an account), and then click the Reset MFA Device link next to the Multi-Factor Authentication switch.

2. On the confirmation message that appears, click Ok.

The user then can log in using the method described in “User’s First Login With MFA.”

Using a PIN With Enhanced Security

With the enhanced security login feature enabled, a user can specify a PIN for his/her account, which he/she can use (instead of password) to authorize the following actions: 

  • Unlocking a transaction (procedure, charge adjustment, credit adjustment, or payment) 
  • Unlocking a transaction’s date 
  • Unlocking a procedure’s amount 
  • Unlocking a procedure’s insurance estimate overrides 
  • Signing a clinical note 
  • Signing a treatment consent form 

To create a PIN for your user account 

1. While you are logged in to Dentrix Ascend, on the User menu, select My Account to open the My Account page. 

2. Select the PIN tab (formerly the Change Password tab). 

3. In the New PIN and Confirm PIN boxes, enter a 6-digit PIN. 

4. Click Save PIN

Note: When the PIN is saved, an email message to notify you that your PIN has been updated is sent to the email address that is associated with your user account. 

To change your PIN 

1. While you are logged in to Dentrix Ascend, on the User menu, select My Account to open the My Account page. 

2. Select the PIN tab. 

3. In the Current PIN box, enter your current 6-digit PIN. 

4. In the New PIN and Confirm PIN boxes, enter your new 6-digit PIN.

5. Click Save PIN

To reset your PIN 

1. While you are logged in to Dentrix Ascend, on the User menu, select My Account to open the My Account page. 

2. Select the PIN tab. 

3. Click Reset PIN to send an email message to the email address that is associated with your user account. 

4. Click the Set your PIN link in the email message, log in to Dentrix Ascend.

5. Complete the steps for “To create a PIN for your user account.”