Multi-Factor Authentication (MFA)
What is 2-Step Verification?
We have implemented a two-step verification process to enhance the security of your zHealth account. This additional layer of protection helps prevent unauthorized access.
After logging in with your username and password and completing the initial verification, a one-time passcode (OTP) will be sent to your registered email address and/or mobile number listed under Provider Settings. Enter the OTP received to complete MFA authentication and securely access your account.
Step-by-Step Instructions
 1. Visit the zHealth website and enter your account username and password to log in. |
2. If your login credentials are correct and successfully authenticated, you will be prompted to complete Multi-Factor Authentication (MFA). The system will send a one-time passcode (OTP) to your registered email address and/or cell phone number. Enter the OTP received to verify your identity and complete the login process. Note: The one-time passcode (OTP) is sent to the email address and cell phone number listed under Provider Settings. The OTP is valid for 5 minutes. If it expires, you may request a new OTP. For security purposes, the system will display a partially masked email address and phone number indicating where the OTP has been sent. |
3. If your one-time passcode (OTP) expires, you may request a new code by clicking the "Resend via Text" or "Resend via Email" button.  Please note that these buttons become active only after the current OTP has expired. |
4. Once you successfully complete the one-time passcode (OTP) verification, you will be automatically redirected to your zHealth account. Multi-Factor Authentication (MFA) is not required every time you log in. It is required once every 30 days for providers and practice staff. If you select the “Remember This Device” option during MFA verification, the system will not prompt you to complete MFA again after 30 days, as long as you continue using the same device. |
Frequenctly Asked Questions (FAQs)
Q. Who is required to complete Multi-Factor Authentication (MFA)?
A. All active providers and practice staff are required to complete MFA during login, except for the front desk check-in account. Active patients are also required to complete MFA when logging into the patient portal.
Q. I am not receiving the one-time passcode (OTP) on my cell phone. What could be the reason?
A. There may be several reasons why you have not received the OTP:
- Verify that the correct mobile number is listed in your account under Provider Settings and that it is the number you intend to use for receiving the OTP.
- Ensure you have not unsubscribed from or opted out of receiving text messages.
- There may be a delay from your mobile carrier. If you do not receive the OTP within 5 minutes, you may request a new one.
Q. Do I need to complete Multi-Factor Authentication (MFA) every time I log in to my zHealth account?
A. No, MFA is not required at every login. Providers and practice staff are prompted to complete MFA once every 30 days. Patients, however, are required to complete MFA every 24 hours when accessing their patient portal accounts.
Q. What happens if I enter my login credentials incorrectly? Will I need to complete MFA the next time I log in?
A. Yes. For security purposes, if you enter an incorrect username or password three consecutive times, you will be required to complete Multi-Factor Authentication (MFA) after successfully entering the correct login credentials.
If you need further assistance, please email us at support@zhealthehr.com - we're happy to help.
Related Articles
Managing Multiple Facilities in zHealth
There are several types of practice setups that might require another facility to be added to your zHealth account. If you've multiple facilities in different locations with different availability, or you have multiple practices that share providers ...How to Add a New Patient Type
Patient Type is the first level of indication that dictates the patient intake forms and consent forms you send to each patient when they book an appointment. By default, zHealth will provide you with three types of patients - CASH, INSURANCE, and ...Adding Consent Forms to Your Facility
When a new patient books an appointment with your practice, they need to complete the patient intake paperwork and sign the consent forms. zHealth provides you with three consent forms in the system. Note 1: Automated sending of intake and consent ...Setting Appointment Types in Your Facility
Put simply, appointment types are the names of the appointments that your patients or your staff can book. Typically practices have at least two appointment types: New Patients: 30 minutes and Existing patients: 15 minutes. In case you have multiple ...How to Set Appointment Reminders in zHealth
Patients are often busy and sometimes important things can fall off the radar—like remembering an upcoming appointment. That’s why zHealth lets you send your patients automatic email and text message (SMS) reminders before each appointment. You can ...