GETTING STARTED




Need Access?

Security Officials (SOs) and Contracting Officer Representatives (CORs) use the buttons below for information on your roles in getting started in CQP. All other users should reach out to their CORs to determine which role they should request.

Getting Started: SO Getting Started: COR

   


Access to CQP is restricted to the QIO Contractors and CMS ONLY. 

All users of the CMS QIO Platform will be required to create an account through HARP which is a secure identity management portal provided by the Centers for Medicare and Medicaid Services (CMS), which will serve as your login credentials into the Platform. After your HARP account is created, you will be required to request access to each program you need access to which will be reviewed and approved/denied by your organization's Security Official. If you can't locate your organization, contact the help desk.

 

Note: Create a HARP account using your official work email address. Gmail, Outlook, AOL Mail, Hotmail, etc. will not be approved into the system.

Creating a HARP Account

All HARP Users

HARP provides access to multiple applications for users needing QualityNet IT services. The services and roles available depend on your user type and your organization’s approved systems. CCSQ support contractors, CMS employees, and external user organizations each have different access requirements. As a result, each user group follows a unique process to gain access and may need to complete security or system-use training before being authorized.

This page outlines your user type and access requirements, guiding you through the relevant processes and policies.

If you're a new user needing access to HARP services, follow the instructions under the "New User Access to HARP" tab above.
If you're an existing CMS system user (e.g., CMS staff or contractors) and are making changes to your HARP access, follow the relevant guidance under the FAQ section.

CCSQ Support Contractor Users

Please note that, in accordance with Homeland Security Presidential Directive 12 (HSPD-12), CMS/CCSQ support contractors must complete a background check to access HARP services. To comply with CMS policy and HSPD-12, CCSQ support contractors should follow the procedures outlined under the "New User Access to HARP" tab, based on their user type and access requirements.

System Use Terms and Conditions

Access to HARP and integrated systems is governed by the HHS System Use Terms and Conditions. You can review these terms on the HARP Terms of Use page.

HARP System Users

HARP supports three user groups. Your access to HARP and its supported systems depends on your user group and the systems you're pre-authorized to access. For instructions on requesting system access and setting up your HARP account, click the tab below that corresponds to your user group. If you're unsure which group you belong to, refer to the User Group Detail tab for more information.


Use the instructions on the Partners HARP ID tab if you need to access CCSQ systems for reporting purposes and you are not employed by CMS or a vendor supporting a CCSQ contract.  Partners include medical professionals, clinicians, other federal agency staff, and hospital representatives responsible for accessing CCSQ systems for reporting and data management purposes. 

Use the instructions on the CMS Staff HARP ID tab if you need to access CCSQ systems as part of your official duties as a CMS employee. 

Use the instructions on the Contractor HARP ID tab if you need to access CCSQ systems in support of your responsibilities under a CMS/CCSQ contract.

As an external partner needing access to CCSQ systems, you should follow the steps below to create your HARP ID and request access to CCSQ services. When requesting access to HARP, you are required to complete Identity Proofing (I am who I say I am) to ensure the security and accuracy of CMS systems and data, and your access request must be approved by your organization's security officer before your access will be approved.

Step 1: Create your HARP user account

  1. To create your HARP account, navigate to the HARP portal by clicking on the following link: https://harp.cms.gov/register
  2. Click on the "Sign Up" link at the bottom of the login page.
  3. Follow the prompts to enter your profile information and click Next to start the Remote Identity Proofing (RIDP) process.  
  4. Once you have passed RIDP, you will be prompted to choose a user ID, set up a password, set up your challenge question and response, and click Next. 
  5. Your HARP user account has been set up.


Note:  If the user fails remote identity proofing, they can take the following steps:

If remote identity proofing fails for you, please follow the guidance below:

  1. You can retry remote proofing (up to three times) by returning to the Profile Information screen and selecting Retry Remote Proofing.
    1. Enter the last four digits of your SSN and date of birth or the Request Reference Number (provided when RIDP fails), which will repopulate the profile information for you. 
    2. Correct any information that is wrong and resubmit your profile for proofing.
  2. You can call Experian to verify your identity over the phone. 
    1. If Experian passes you over the phone, Experian will provide a reference number which you can enter into the HARP account creation screen by selecting Enter Reference Number
  3. If, after these attempts, remote identity proofing still fails, or you do not wish to provide your SSN, you can select the Initiate Manual Proofing link at the bottom of the Profile Information page during registration. 
    1. Please note that manual proofing may delay the registration process. 
    2. For any questions related to manual proofing, contact the Identity Access Management (IAM) team, Monday-Friday, 7am-7pm CST, by phone 1-888-599-0426 or email identityproofing@cms.hhs.gov for manual proofing questions or watch the Manual Proofing Tutorial video on the HARP Role Request tab on this Confluence Page for more guidance.
Step 2: Request your HARP Roles (access)
  1. To request access to approved applications within HARP, navigate to the HARP login page:  https://harp.cms.gov/login/login 
  2. Enter your user ID and password into the log in screen and click Next.  
    1. If you have not already set up your multi-factor authentication (MFA), select Manage Two-Factor Devices to set up your MFA factors.
    2. For security reasons, all HARP accounts are required to have at least one additional multi-factor authentication (MFA) type such as email or text authentication. 
  3. Click Request a Role in the User Roles section of the HARP home screen.
    1. Select the Program you are requesting access to (this is the application or portal you need access to), click Next.
    2. Select the Organization you are affiliated with (this is the organization you are working for or for which you are reporting data), click Next.
    3. Select the Role you need (this is the level of access you are requesting), click Next
  4. Role requests (access to systems) are authorized by the Provider Organization point of contact for your company. 
    1. Once you have requested a role, that request will be sent to your company's designated security official for approval or denial.  
    2. If approved, you will receive an email confirming your access, and you can now access the requested application.

Note:  For information on how to select roles in HARP, you can navigate to the HARP Role Request tab on this Confluence Page for additional guidance.

As CMS staff needing access to CCSQ systems, you should follow the steps below to activate your EUA ID in HARP and request access to CCSQ services. Your access request must be approved by the CMS security officer in HARP before your access will be approved.

Step 1: Activate your EUA ID in HARP

  1. Navigate to HARP using this link:  https://harp.cms.gov/register
  2. Enter your EUA user ID in the User ID field
  3. Enter your EUA password in the Password field
  4. Click the Login button.
  5. This will activate your EUA ID in HARP, and you can now request roles.

Note: You cannot use your PIV card to activate your account in HARP.  Once you have completed your account activation, you can use your PIV to log into HARP moving forward.

Step 2: Request your HARP Roles (access)
  1. To request access to approved applications within HARP, navigate to the HARP login page:  https://harp.cms.gov/login/login 
  2. Enter your user ID and password into the log in screen and click Next.  
    1. If you have not already set up your multi-factor authentication (MFA), select Manage Two-Factor Devices to set up your MFA factors.
    2. For security reasons, all HARP accounts are required to have at least one additional multi-factor authentication (MFA) type such as email or text authentication. 
  3. Click Request a Role in the User Roles section of the HARP home screen.
    1. Select the Program you are requesting access to (this is the application or portal you need access to), click Next.
    2. Select the Organization you are affiliated with (in most cases, the organization for CMS staff will be CMS Federal), click Next.
    3. Select the Role you need (this is the level of access you are requesting), click Next
  4. Role requests (access to systems) are authorized by the designated CMS security official in HARP. 
    1. Once you have requested a role, that request will be sent to your designated security official for approval or denial.  
    2. If approved, you will receive an email confirming your access, and you can now access the requested application.

Note:  For information on how to select roles in HARP, you can navigate to the HARP Role Request tab on this Confluence Page for additional guidance.

As a contractor needing to access CCSQ systems, you will need EITHER an EUA ID OR a HARP ID.  Either ID can be used in HARP, so which ID is right for you depends on the nature of your contract and your responsibilities under that contract. You should NEVER request both types of IDs unless specifically instructed to do so.  

To determine which ID you need, please coordinate with your contract point of contact (CTR POC) or with your CMS-appointed COR. 

When requesting access to HARP, you are required to initiate a background check (I am a trusted system user) and complete Identity Proofing (I am who I say I am) to ensure the security and accuracy of CMS systems and data. Additionally, all access requests must be approved by your organization's security officer before you will be authorized to use any CMS service.

  • CMS contractors who DO NOT require an EUA ID should use the HARP ID instructions below. 
  • CMS contractors who DO require an EUA ID should use the EUA ID instructions below. 


CCSQ Contractors - HARP ID

Step 1: Complete your Security Awareness Training
  1. CCSQ Contract users must complete required training during onboarding and before accessing CMS systems.  
  2. Click on Training and Awareness tab on the Security Confluence Page for links to required training. 
  3. Complete the Security Awareness Training
    1. You are required to retain a digital copy of the training certificate as proof of completion.
    2. You are required to complete Security Awareness Training every year in order to maintain your access to CMS systems.
Step 2: Create your HARP user account
  1. To create your HARP account, navigate to the HARP portal by clicking on the following link:  https://harp.cms.gov/register
  2. Click on the "Sign Up" link at the bottom of the login page.
  3. Follow the prompts to enter your profile information and click Next to start the Remote Identity Proofing (RIDP) process.  
  4. Once you have passed RIDP, you will be prompted to choose a user ID, set up a password, set up your challenge question and response, and click Next. 
  5. Your HARP user account has been set up.
  6. DO NOT request any roles in HARP until you have initiated your background investigation (step 3 below)!


Note:  If the user fails remote identity proofing, they can take the following steps:

If remote identity proofing fails for you, please follow the guidance below:

  1. You can retry remote proofing (up to three times) by returning to the Profile Information screen and selecting Retry Remote Proofing.
    1. Enter the last four digits of your SSN and date of birth or the Request Reference Number (provided when RIDP fails), which will repopulate the profile information for you. 
    2. Correct any information that is wrong and resubmit your profile for proofing.
  2. You can call Experian to verify your identity over the phone. 
    1. If Experian passes you over the phone, Experian will provide a reference number which you can enter into the HARP account creation screen by selecting Enter Reference Number
  3. If, after these attempts, remote identity proofing still fails, or you do not wish to provide your SSN, you can select the Initiate Manual Proofing link at the bottom of the Profile Information page during registration. 
    1. Please note that manual proofing may delay the registration process. 
    2. For any questions related to manual proofing, contact the Identity Access Management (IAM) team, Monday-Friday, 7am-7pm CST, by phone 1-888-599-0426 or email identityproofing@cms.hhs.gov for manual proofing questions or watch the Manual Proofing Tutorial video on the HARP Role Request tab on this Confluence Page for more guidance.
Step 3: Initiate your background investigation
  1. Gather digital copies of the following information;
    1. Completed Form OF-306 pdf, and
    2. A copy of your current resume, and
    3. Proof you have completed the required PIV training.
  2. Once you have gathered the required documents (above), navigate to the CMS Identity and Credentialing Tool (ICT) https://eua.cms.gov/efi/signin.
  3. Enter your HARP Credentials in the CMS Credentials section of the log-in screen.
    1. Read and click Agree to the system use warning dialog box that pops up.
    2. This will create your ICT user account and link your HARP and ICT accounts together
  4.  Click the Access dropdown in the banner in the header of the screen and select New User Request to open the access request form.
    1. USER DETAILS: In the User Details section of the ICT registration screen, enter the following information:
      1. Category = Contractor (this will open the User Type field)
      2. Type = Background Check Only (this will open the Identity Management Systems field)
      3. Identity Management Systems = HARP
      4. PIV = select the option according to guidance from your CMS COR/CTR POC
      5. Request Justification = type Fulfill contractual duties (OR follow the guidance provided by the CMS COR responsible for your contract)
    2. Complete the remaining sections of the access request screen, uploading your saved documents where prompted., click Submit Request.
  5. Once the request is submitted, it will be reviewed by your company's Contract Point of Contact (CTR POC) for approval and the Badging Office will start your background investigation.
    1. Per HSPD-12, all CMS contractors must successfully pass a background investigation to obtain and maintain access to CMS systems and facilities,
  6. You can now log into your HARP account, set up your multi-factor authorization factors (MFA) if you have not already done so, and request roles as appropriate for your contractual responsibilities.
Step 4: Request your HARP Roles (access)
  1. To request access to approved applications within HARP, navigate to the HARP login page:  https://harp.cms.gov/login/login 
  2. Enter your user ID and password into the log in screen and click Next.  
    1. If you have not already set up your multi-factor authentication (MFA), select Manage Two-Factor Devices to set up your MFA factors.
    2. For security reasons, all HARP accounts are required to have at least one additional multi-factor authentication (MFA) type such as email or text authentication. 
  3. Click Request a Role in the User Roles section of the HARP home screen.
    1. Select the Program you are requesting access to (this is the application or portal you need access to), click Next.
    2. Select the Organization you are affiliated with (this is the organization you are working for OR, if you are part of a sub contract, the organization that holds the CCSQ contract), click Next.
    3. Select the Role you need (this is the level of access you are requesting), click Next
  4. Role requests (access to systems) are authorized by the designated security official for your contract. 
    1. Once you have requested a role, that request will be sent to your designated security official for approval or denial.  
    2. If approved, you will receive an email confirming your access, and you can now access the requested application.

Note:  For information on how to select roles in HARP, you can navigate to the HARP Role Request tab on this Confluence Page for additional guidance.

CCSQ Contractors - EUA ID

Step 1: Request your EUA ID & initiate your background investigation
  1. Gather digital copies of the following information;
    1. Completed Form OF-306 pdf, and
    2. A copy of your current resume, and
    3. Proof you have completed the required PIV training.
  2. Once you have gathered the required documents (above), navigate to the CMS Identity and Credentialing Tool (ICT) https://eua.cms.gov/efi/signin.
  3. Select Register under the ICT Credentials section of the login screen.
  4. Follow the prompts to create your ICT user account and open the Access Request screen for editing.
    1. USER DETAILS: In the User Details section of the ICT registration screen, enter the following information:
      1. Category = Contractor
      2. Type = IT Dev & Support Contractors (OR follow the guidance provided by the CMS COR responsible for your contract)
      3. Identity Management Systems = HARP
      4. Request Justification = Fulfill contractual duties (OR follow the guidance provided by the CMS COR responsible for your contract)
    2. Complete the remaining sections of the access request screen, uploading your saved documents where prompted., click Submit Request.
  5. Once the request is submitted, it will be reviewed by your company's Contract Point of Contact (CTR POC) for approval.
Step 2: Complete your Security Awareness Training & update your EUA ID password
  1. CMS will issue you an EUA ID and a temporary password.
    1. You will receive an email instructing you to log into EUA and change your password.
    2. You must log in and change your password within three days or your EUA ID will be disabled.
  2. You will be advised to complete Security Awareness Training
    1. You will receive an email with instructions how to access the Security Awareness Training.
    2. You must log in and complete your training within three days or your EUA ID will be disabled.
    3. You are required to retain a digital copy of the training as proof of completion.
  3. The Badging Office will start your background investigation.
    1. Per HSPD-12, all CMS contractors must successfully pass a background investigation to obtain and maintain access to CMS systems and facilities.
Step 3: Activate your EUA ID in HARP
  1. Navigate to HARP using this link: https://harp.cms.gov/register
  2. Enter your EUA user ID in the User ID field
  3. Enter your EUA password in the Password field
  4. Click the Login button.
  5. This will activate your EUA ID in HARP, and you can now request roles.

Note: You cannot use your PIV card to activate your account in HARP.  Once you have completed your account activation, you can use your PIV to log into HARP moving forward.

Important Note: CMS requires EUA credential holders to actively use their EUA credentials in EUA-provisioned services (e.g. CMS Outlook or EUA site). If the user has obtained an EUA ID and are ONLY using it to access HARP-provisioned services, they MUST log into EUA at least 1x a month to keep their account active. If an EUA credential is deactivated because of inactivity, the user will need to create a new user ID and re-request roles under the new credentials. Losing their ID due to inactivity may also impact the progression of their background check as well, so it is vitally important that the user be advised to maintain their EUA ID properly. If a user who initiated their background check by getting an EUA ID, then loses that ID, you will need to confirm what status that user was in with regards to their background check AND whether the user should re-obtain an EUA ID OR if the user doesn't need an EUA ID. At that point, the user can follow either the HARP Only ID process OR the EUA ID process to obtain their new ID and initiate their background check if needed.

Step 4: Request your HARP Roles (access)
  1. To request access to approved applications within HARP, navigate to the HARP login page:  https://harp.cms.gov/login/login 
  2. Enter your user ID and password into the log in screen and click Next.  
    1. If you have not already set up your multi-factor authentication (MFA), select Manage Two-Factor Devices to set up your MFA factors.
    2. For security reasons, all HARP accounts are required to have at least one additional multi-factor authentication (MFA) type such as email or text authentication. 
  3. Click Request a Role in the User Roles section of the HARP home screen.
    1. Select the Program you are requesting access to (this is the application or portal you need access to), click Next.
    2. Select the Organization you are affiliated with (this is the organization you are working for OR, if you are part of a sub contract, the organization that holds the CCSQ contract), click Next.
    3. Select the Role you need (this is the level of access you are requesting), click Next
  4. Role requests (access to systems) are authorized by the designated security official for your contract. 
    1. Once you have requested a role, that request will be sent to your designated security official for approval or denial.  
    2. If approved, you will receive an email confirming your access, and you can now access the requested application.

Note: For information on how to select roles in HARP, you can navigate to the HARP Role Request tab on this Confluence Page for additional guidance.

CMS requires EUA credential holders to actively use their credentials. Inactive EUA credentials will be disabled after 30 days. Using your EUA ID in HARP services alone WILL NOT not keep it active. To maintain your EUA ID, log into EUA or another EUA-provisioned service (e.g., CMS Outlook) at least once a month. EUA services typically require job codes, which are managed in EUA.

If your EUA ID is deactivated due to inactivity:

  • Your background check may be affected.
  • You’ll need to create a new user ID and re-request roles under the new credentials.

If deactivated, notify your Contract Point of Contact (CTR POC) and CMS COR immediately. They will assess the impact on your background check and advise whether to request a new EUA or HARP ID. In either case, you’ll need to set up new credentials and CMS access.




Note: Before accessing CQP, all team members must complete Security Awareness and Records Management training. Additional details can be found on the QualityNet IT Security Confluence page.

For the first time logging in, you will not have access to any roles and will only be able to see the landing page. After at least one role is approved, users will automatically gain access to QIO Connect and do not need to request access to this program.

Which Role do I Select?

  • From the main landing page, click 'Get Started'
    •  
  • Fill out the Program, Contract, and Role and submit
  • Review the status of role request submissions from the same landing page 



  • Go to CQP.CMS.gov
    • Bookmark this link. There is no direct link from HARP to the Platform. When clicking on CQP.CMS.gov, you will be redirected to HARP to sign in. 
    • Add cqpsupport-noreply@cms.hhs.gov to safe senders list, to ensure emails from this address are not filtered out or sent to spam/junk mail.


Need Help?

Call CQP Support at 1-(866)-288-8914 (TRS: 711). 

Send an email to cqp@cms.hhs.gov. The following details must be included:

  1. User Information- first & last name, organization and program
  2. Application- applicable CQP Service/Application (QIO Connect, A3C, General Directory, etc.)
  3. Description- Issue details, steps taken to reproduce the issue
  4. Time- the specific date and time the issue occurred
  5. Screenshot- attach a clear and visible screenshot of the error message, issue, or code, if applicable

Note: For security purposes HARP-related assistance such as password resets or identity proofing must be requested from the CCSQ Service Center via phone at 1-866-288-8912 (TRS:711)

Submit Support Ticket Track Support Ticket

Have Feedback? We'd love to hear it.

Submit Feedback

CQP Training Access

All CQP Users need log in to QualityNet Atlassian Confluence in order to view the CQP training schedule and the internal CQP Confluence space.  Click "Getting Access to Confluence" to get started.

Requesting a QualityNet Atlassian Entitlement

Step 1: If you do not yet have a HARP account or an EIDM or EUA account, register for a HARP ID. For instructions on the HARP registration process, refer to the HARP page.

Step 2: Once the HARP account has been created, log into HARP and request a QualityNet Atlassian entitlement via a HARP User Role. 

    • Select User Roles from the top of the page, and select Request a Role.
    • Select QualityNet Atlassian.
    • Select your Organization.
    • Select a QualityNet Atlassian user role (choose one)
      • Standard Atlassian User
      • Security Official (SO)

Step 3: The organization's Security Official reviews and approves/denies the user role request. You will be notified via email that your request has been submitted, and again when your role has been approved or denied.

After your Atlassian User Role is approved , log in to Confluence at https://qnetconfluence.cms.gov using your HARP credentials.

After your first login to QualityNet Confluence, you may need to wait for up to 24 hours to have full access to view your content.

Quick Links



  • No labels