Skip to Content
Cancer Therapy Evaluation Program (CTEP)
Contact NExT
Show menu
Search this site
Last Updated: 08/01/22

NCI CTEP IAM User Access Update

To ensure the security and safety of NCI systems, subjects, research staff, and all associated sensitive information, NCI will incorporate Identity Proofing (IP) and Multi-Factor Authentication (MFA) in accordance with the Federal Information Security Management Act (FISMA). ID.me provides the strongest identity verification system available to prevent system breaches and user identity theft. This secure digital identity network meets all requirements for online identity proofing and authentication & secure data storage. ID.me has been leveraged by federal agencies, states, and private companies in providing a secure digital identity network.

Visit ID.me Government for more information on Federal and State partnerships.

ID.me Privacy Policy

The implementation of IP and MFA for Federal systems is required by regulation. To comply with Federal regulations, the NCI must restrict NCI applications to users that have completed the IP and MFA process. This next generation of technology and techniques is required to protect user credentials accessing systems with confidential information. ID.me’s primary goal is to ensure sufficient evidence of a user’s identity in order to meet NIST SP 800-63-3 Digital Identity Guidelines. Users will be required to enroll in ID.me with a one-time submission of personal information, including photo identification, social security number (SSN) or tax identity number (TIN), and a selfie for identify authentication.

Background

Identity Proofing (IP) is the process of verifying a user’s digital identity using official, secure documentation, such as a driver’s license or passport. The goal of identity proofing is to ensure that a user’s claimed identity matches their actual identity. Digital Authentication is the process of verifying a user or device’s identity to enable access to a secure digital service (website, application, etc.). There are multiple ways to verify a user’s electronic digital identity. Single-Factor Authentication is the use of a single authenticator, traditionally a password, to verify user identity. Multi-Factor Authentication (MFA) is a digital authentication method that requires a user to provide two or more authentication factors to gain access to a protected system. Also known as Two Factor Authentication (2FA), this method ensures that user accounts and system data remain secure even when a user's password becomes compromised.

Affected Systems

Updated authentication requirements apply to all systems utilizing CTEP-IAM and/or NIH credentials, including:

  • NCI, CTEP, and CTSU systems
  • Any other systems, including LPO websites, that use CTEP-IAM for access

Affected Users

The new authentication requirements apply to all new and currently registered system users (all those with a CTEP-IAM account), including NCI, LPO, contractors, site staff, and international users.

NIH Account Holders

NIH accounts already meet the IP/MFA requirement to access federal systems. Users with NIH accounts are not required to complete the ID.me account process and can continue using their CTEP-IAM or NIH credentials/ PIV cards (where available) to log in to NCI systems.

Timeline for Users

July 8, 2022: The ID.me IP/MFA process has now been introduced for all system users. Existing CTEP-IAM account credentials will allow access for one year, or until users have authenticated using ID.me. Users requesting new CTEP accounts will be required to complete the ID. me IP/ MFA process before having access to NCI systems. NIH account holders are not required to complete the ID me process

July 1, 2023: Migration to ID.me IP/MFA is expected to be completed. After this date, users who have not enrolled in ID.me and linked their account to CTEP-IAM will be unable to access NCI systems.

Completing the ID.me IP/MFA Process

After July 8, 2022, all CTEP-IAM users must complete the ID.me authentication and linking process directly through the CTEP-IAM application site. New users will follow the ID.me authentication workflow from the start. After their CTEP-IAM account application has been reviewed and accepted, new users will receive a secure prompt via email to complete the ID.me process. The ID.me integration requires users to submit photo identification, social security number (SSN) or tax identity number (TIN), and a selfie upon the one-time registration process.

Flowchart illustrating the ID.me IP/MFA workflow

Existing users (with CTEP-IAM accounts):

  1. Log in to CTEP-IAM with username and password credentials
  2. Navigate to ID.me information
  3. Click on “Create an ID.me account”
  4. Create new ID.me account or sign in to existing ID.me account
  5. Click “Allow” to link verified ID.me credentials with CTEP-IAM account
    (this step must be completed to link ID.me and IAM accounts)
  6. Use ID.me login to now access CTEP-IAM

For detailed steps, click here.

New users (those applying for CTEP-IAM accounts for the first time):

  1. Click “Request a new account” under CTEP-IAM tab
  2. Complete 4 steps listed to request a new account
  3. Verify account request using the link provided in account approval email
  4. Click on “Create an ID.me account”
  5. Create new ID.me account or sign in to existing ID.me account
  6. Click “Allow” to link verified ID.me credentials with CTEP-IAM account
    (this step must be completed to link ID.me and IAM accounts)
  7. Use ID.me login to now access CTEP-IAM

For detailed steps, click here.

Once an ID.me IP/MFA account has been linked, only ID.me credentials (username and password plus the selected MFA option) will allow a user to access NCI systems. CTEP-IAM credentials will no longer allow access.

Help/Additional Resources

Additional communication will be provided through various methods to include email broadcasts, newsletters, and training videos. Be sure to return to this page for updates on the NCI and ID.me integration and help resources.

For frequently asked questions, click here.

For general information regarding the NCI and ID.me integration, contact the CTEP Help Desk at ctephelpdesk@nih.gov.

For questions about your ID.me account, go to ID.me Support.

For more information about the ID.me/NCI authentication process, go to the NCI & ID.me Help Page.

Training Resources

ID.me Existing User Training Video
ID.me Existing User Training Video Transcript

ID.me New User Training Video
ID.me New User Training Video Transcript