CIS2 authentication for PDS

Please can you confirm what CIS2 authentication methods are suitable for PDS access in our use-case?

We require CIS2 authentication, to allow for patient details / deceased check via PDS, within our process for e-RS (that we are looking to integrate with).

Microsoft Authenticator seemed like a suitable solution for the company that we are supporting. However, I have just discovered this sentence whilst researching how roles and authentication is added to users: “Microsoft Authenticator is currently only available for NCRS and MESH” (see screenshot. URL is: https://digital.nhs.uk/services/care-identity-service/applications-and-services/care-identity-management/user-guides/managing-non-smartcard-authenticators/manage-microsoft-authenticator-devices)

Please can you advise?

Screenshot 2025-11-27 1107051096×615 48.2 KB

@Tim_Morgan I’ve popped this query into the CIS2 category as they would be best placed to help you.

Hi Tim,

That’s a slightly out of date reference, apologies. One time passcodes with Microsoft Authenticator is considered AAL2. Any applications allowing AAL2 would allow you to use Passkeys, Authenticator App or push notification with nhs.net. You should be able to find the full list of applications allowing AAL2 on this page.