Access to CMS Systems and Enterprise Identity Management (EIDM)

CMS has established the Enterprise Identity Management (EIDM) system to provide MAPD Business Partners with a process to apply for, obtain approval, and receive a single User ID that is valid for access to one or more CMS applications.

EIDM Account Registration

If you do not have a User ID and password, you will have to register by providing personal information and create a User ID and password of your own choosing.  After successfully completing and submitting the request, you will receive a confirmation email.

Note: Plan users that submit files through GENTRAN cannot have any special characters in their User ID.

The following is a quick overview of the key steps in registering for a User ID and password.

  1. Navigate to
  2. On the CMS Enterprise Portal page, select the New User Registration link.
  3. Accept the Terms and Conditions.
  4. Provide the information requested on the Your Information page.
  5. Create a User ID and password on the Choose User ID and Password page.
    • Note: The password to access the MARx UI must meet the following criteria: 
      1. Be exactly 8 characters.
      2. Start with an alphabetic character.
      3. Contain at least 1 number.
      4. Contain at least 1 lower case letter.
      5. Contain at least 1 upper case letter.
      6. Not contain your User ID.
      7. Be different from your previous 6 passwords.
      8. Not contain any special characters.
      9. Not contain 4 or more consecutive characters from any of your 6 previous passwords.
      10. Be changed at least every 60 days.
  6. Complete the “Select your Challenge Questions and Answers” section.
  7. Submit the registration. You will receive an email acknowledging a successful registration, and the email will include your User ID.


Additional information regarding account registration, including instructions with screenshots can be found in the EIDM User Guide on the EIDM Guides and Documentation Web site.  The link to this Web site is in the "Related Links" Section below.

EIDM Password Reset Instructions

The following are the basic step-by-step instructions on how to use the “Forgot Password?” feature to create a new password.

  1. Navigate to
  2. Select Forgot Password?
  3. Enter your User ID and select Next.
  4. Provide the answers to the challenge questions displayed.
  5. Enter a new password.
    • Note: Please refer to Step 5 in the EIDM Account Registration section above for details about the password requirements for access to the MARx UI.
  6. Re-enter the same password for “Confirm Password” and select Next to complete the Forgot Password process.
  7. After selecting Next, the Forgot Password acknowledgement page is displayed and a confirmation email is sent to the email address on record.

Multi-Factor Authentication (MFA)

Multi-Factor Authentication (MFA) is a security mechanism that is implemented to provide an extra layer of security, such as a security code, when logging in with your User ID and Password.  Please refer to the EIDM Guides and Documentation Web site in the “Related Links” section for more information about MFA.

Remote Identity Proofing (RIDP)

The identity verification process, also known as Remote Identity Proofing (RIDP), is necessary for roles that require a higher level of security to access. Identity Verification is done by asking you questions based on your personal information.  Please refer to the EIDM Guides and Documentation Web site in the “Related Links” or the RIDP Tips for Success (PDF) in the “Downloads” section for more information about RIDP.

EIDM Instructions for Users not Certified by External Point of Contact (EPOC)

User accounts in the EIDM Portal are required to be certified for access annually by Plan EPOCs/Approvers.  Each year the EPOCs are required to review their user list, validate which users will continue to need access to CMS systems, and for those users, the EPOCs must approve the certification request.  This process does not require any action by the end user; only the EPOCs/Approvers are required to review and approve or reject the certification requests.

If a user’s EPOC does not approve the certification request for the Plan contract(s) in EIDM by the due date, the user will lose access to the Plan contract(s) not approved.  For MAPD users with no Plan contracts in their profile as a result, the user will lose access to the MAPD role and to the MARx UI. If this occurs, please refer to the EIDM Instructions for Users not Certified by EPOC (PDF) document in the “Downloads” section.

Page Last Modified:
01/20/2021 03:50 PM