Multi-Factor Authentication (MFA) provides an extra layer of security to your HealthSherpa for Agents account.
In this article we cover:
Enabling MFA
Follow these steps to enable MFA within your unique HealthSherpa for Agents account.
Step 1
Go to the gear icon of your dashboard and select the Account Settings menu option.
Step 2
Select the Account login tab.
Step 3
From the two-factor authentication section, select Enable authentication.
Step 4
From the two-factor authentication set-up page, you will decide how you'd like to receive your authentication code during future log-ins.
Select the 'Set up' button next to your desired authentication method to proceed:
Text messages:
After selecting the 'Set up' button next to the Text message method, you will land on the Text message two-factor authentication page.
Enter your mobile phone number then select the 'Send code' button.
You will receive a success banner at the top of the screen and a text message will generate to the phone number provided. The text message will include an authorization code.
Enter the authentication code into the 'Auth code' section of the Text message two-factor authentication page.
Enter your current HealthSherpa for Agents account password into the 'Current password' section of Text message two-factor authentication page.
Select the 'Enable two-factor auth' button to finalize MFA setup.
Recovery codes will be presented. We strongly suggest you save these codes in a secure location. Select the 'Done' button when ready to proceed.
You will arrive back at the two-factor authentication set-up page. If you'd like to set up authentication using the Authenticator app as well, you may do so.
Authenticator app
After selecting the 'Set up' button next to the Authenticator app method, you will land on the Authenticator app two-factor authentication page.
Download the Google Authenticator app to your mobile device, then open the app and scan your unique QR code. A 6-digit authentication code will appear in the Google Authenticator app.
Enter the authentication code into the 'Auth code' section of the Authenticator app two-factor authentication page.
Enter your current HealthSherpa for Agents account password into the 'Current password' section of Authenticator app two-factor authentication page.
Select the 'Enable two-factor auth' button to finalize MFA setup.
Recovery codes will be presented. We strongly suggest you save these codes in a secure location. Select the 'Done' button when ready to proceed.
You will arrive back at the two-factor authentication set-up page. If you'd like to set up authentication using Text messages as well, you may do so.
Step 5
Select the 'Back to settings' button to return to your Dashboard.
Using MFA
After enabling MFA, you’ll be asked for two items when logging in:
Your email address and password
An authentication code
Accessing recovery codes
If you lose access to your mobile phone (i.e. it is lost, broken, not charged, etc.) you may not be able to receive your MFA authentication code required at log in. A recovery code will be required in these instances in order to log into your account.
Recovery codes are presented after successfully enabling MFA. These codes are unique to your HealthSherpa for Agents account and we strongly suggest you save these codes in a secure location.
To access your unique recovery codes, follow steps 1-3 to arrive at the two-factor authentication set-up page. Select the 'View codes' button to access your recovery codes.
Frequently asked questions
Do I have to enable MFA?
As of August 13, 2025, CMS requires MFA be set-up to access your HealthSherpa for Agents account.
Additional Resources
Have questions? Contact our Agent Support Team at (888) 684-1373 or agent_support@healthsherpa.com.