Skip to Content
Cancer Therapy Evaluation Program (CTEP)
Contact NExT
Show menu
Search this site
Last Updated: 12/07/22

NCI CTEP IAM User Access Update

To ensure the security and safety of NCI systems, subjects, research staff, and all associated sensitive information, NCI will incorporate Identity Proofing (IP) and Multi-Factor Authentication (MFA) in accordance with the Federal Information Security Management Act (FISMA). ID.me provides the strongest identity verification system available to prevent system breaches and user identity theft. This secure digital identity network meets all requirements for online identity proofing and authentication & secure data storage. ID.me has been leveraged by federal agencies, states, and private companies in providing a secure digital identity network.

Visit ID.me Government for more information on Federal and State partnerships.

ID.me Privacy Policy

The implementation of IP and MFA for Federal systems is required by regulation. To comply with Federal regulations, the NCI must restrict NCI applications to users that have completed the IP and MFA process. This next generation of technology and techniques is required to protect user credentials accessing systems with confidential information. ID.me’s primary goal is to ensure sufficient evidence of a user’s identity in order to meet NIST SP 800-63-3 Digital Identity Guidelines. Users will be required to enroll in ID.me with a one-time submission of personal information, including photo identification, social security number (SSN) or tax identity number (TIN), and a selfie for identify authentication.

Background

Identity Proofing (IP) is the process of verifying a user’s digital identity using official, secure documentation, such as a driver’s license or passport. The goal of identity proofing is to ensure that a user’s claimed identity matches their actual identity. Digital Authentication is the process of verifying a user or device’s identity to enable access to a secure digital service (website, application, etc.). There are multiple ways to verify a user’s electronic digital identity. Single-Factor Authentication is the use of a single authenticator, traditionally a password, to verify user identity. Multi-Factor Authentication (MFA) is a digital authentication method that requires a user to provide two or more authentication factors to gain access to a protected system. Also known as Two Factor Authentication (2FA), this method ensures that user accounts and system data remain secure even when a user's password becomes compromised.

Affected Systems

Updated authentication requirements apply to all systems utilizing CTEP-IAM and/or NIH credentials, including:

  • NCI, CTEP, and CTSU systems
  • Any other systems, including LPO websites, that use CTEP-IAM for access

Affected Users

The new authentication requirements apply to all new and currently registered system users (all those with a CTEP-IAM account), including NCI, LPO, contractors, site staff, and international users.

NIH Account Holders

NIH accounts already meet the IP/MFA requirement to access federal systems. Users with NIH accounts are not required to complete the ID.me account process and can continue using their CTEP-IAM or NIH credentials/ PIV cards (where available) to log in to NCI systems.

Timeline for Users

July 8, 2022: The ID.me IP/MFA process has now been introduced for all system users. Existing CTEP-IAM account credentials will allow access for one year, or until users have authenticated using ID.me. Users requesting new CTEP accounts will be required to complete the ID. me IP/ MFA process before having access to NCI systems. NIH account holders are not required to complete the ID me process

July 1, 2023: Migration to ID.me IP/MFA is expected to be completed. After this date, users who have not enrolled in ID.me and linked their account to CTEP-IAM will be unable to access NCI systems.

Completing the ID.me IP/MFA Process

After July 8, 2022, all CTEP-IAM users must complete the ID.me authentication and linking process directly through the CTEP-IAM application site. New users will follow the ID.me authentication workflow from the start. After their CTEP-IAM account application has been reviewed and accepted, new users will receive a secure prompt via email to complete the ID.me process. The ID.me integration requires users to submit photo identification, social security number (SSN) or tax identity number (TIN), and a selfie upon the one-time registration process.

Flowchart illustrating the ID.me IP/MFA workflow

Existing users (with CTEP-IAM accounts):

  1. Log in to CTEP-IAM with username and password credentials
  2. Navigate to ID.me information
  3. Click on “Create an ID.me account”
  4. Create new ID.me account or sign in to existing ID.me account
  5. Click “Allow” to link verified ID.me credentials with CTEP-IAM account
    (this step must be completed to link ID.me and IAM accounts)
  6. Use ID.me login to now access CTEP-IAM

For detailed steps, click here.

New users (those applying for CTEP-IAM accounts for the first time):

  1. Click “Request a new account” under CTEP-IAM tab
  2. Complete 4 steps listed to request a new account
  3. Verify account request using the link provided in account approval email
  4. Click on “Create an ID.me account”
  5. Create new ID.me account or sign in to existing ID.me account
  6. Click “Allow” to link verified ID.me credentials with CTEP-IAM account
    (this step must be completed to link ID.me and IAM accounts)
  7. Use ID.me login to now access CTEP-IAM

For detailed steps, click here.

Once an ID.me IP/MFA account has been linked, only ID.me credentials (username and password plus the selected MFA option) will allow a user to access NCI systems. CTEP-IAM credentials will no longer allow access.

Special Notices for International Research Staff

Memo to International Researchers

Memo to Canadian Researchers

Help/Additional Resources

Additional communication will be provided through various methods to include email broadcasts, newsletters, and training videos. Be sure to return to this page for updates on the NCI and ID.me integration and help resources.

Live Webinar Trainings

Live webinars on the CTEP-IAM & ID.me implementation will be hosted to provide users with information on the integration. Each session will provide an overview and key details of the process. The webinar will conclude with a Q&A session for attendees. To attend one of the live webinar trainings, please register using the Webex link: National Cancer Institute WebEx Enterprise Site- CTEP-IAM / ID.me Webinar Meeting

Below is the schedule of the upcoming webinar sessions:

Date Time (EST)
Nov. 15th 11 am
Dec. 1st 1 pm
Dec. 13th 11 am
Dec. 29th 1 pm
Jan. 10th 11 am
Jan. 26th 1 pm

For frequently asked questions, click here.

For more information on the NCI and ID.me integration, please visit NCI & ID.me.

For more information on ID.mes privacy policies please visit ID.me Privacy Policy

For questions about the NCI and ID.me authentication process, please contact the CTEP Help Desk at ctephelpdesk@nih.gov.

For questions about your ID.me account or the ID.me verification process, go to ID.me Help Center.

Training Resources

ID.me Existing User Training Video
ID.me Existing User Training Video Transcript

ID.me New User Training Video
ID.me New User Training Video Transcript