We’ve successfully retrieved a UserID (UUID) after contacting the ITOC team via Make a smartcard request for a Path to Live environment. We asked for a new user in INT without a physical smart card.
It is unclear how the UUID will be used to login once we reach the NHS CIS2 Authentication page.
Essentially, what we need is a way for us to turn our UUID into a tangible login. We found little to no documentation on how to use the UUID for this purpose. All we know from what we read is that there is now a user in Spine Services for us - not much else.
Hi Faraz, you need to ask ITOC to register an authenticator against that UUID. That will require a teams call with them as they will send you a link that needs to be used within 5 minutes. Depending on your use case, different authenticators will work. If you use a “level 3” authenticator (Smartcard, Windows Hello, Security Key or our iPad app) then you can add other authenticators using the Care Identity Management web application. The simplest to setup is probably a passkey, but this is only a “level 2” authenticator, but will grant access to some national APIs and applications
On the call to set up with Authenticator, ITOC asked for an email to register with. We discovered that the domain of the email we were linking to the UUID must be registered with Allowed Domains. In this case our domain @medgenixtech.co.uk is not registered obviously. However these steps for simply a test account for testing out CIS2 in INT seems a little excessive? Can we not just get a default @nhs.net email?
I’ll see if we can add it to the approved domains or gmail.com addresses work in INT. My recommendation would be to add a passkey - simpler flow, no email needed and quicker to use
@john.lister3 can ITOC sort out passkey without needing an email to be associated with the UUID?