Log into HARP using your EIDM or EUA credentials to migrate your EIDM/EUA account to HARP via the steps below.

Step 1: Click on the following link:  https://harp.cms.gov/

Step 2: Enter your EIDM or EUA User ID and Password.

Step 3: Select Login.

If you have an EIDM or EUA account, but you experience issues following the above steps, please contact the QualityNet Help Desk at 1-866-288-8912.

Note: CMS users must log into HARP using their EUA credentials at least once before the PIV card login feature is activated. If you are having trouble with utilizing PIV to log in, please sign in using EUA first. If you have been using your HARP account rather than your EUA account to log into HARP, then you cannot use PIV card authentication. If you choose to start using your EUA account so you can use PIV card authentication, then you will need to re-request all your user roles.

Step 1: Click on the following link:  https://harp.cms.gov/register

HARP will verify your identity through personal information, such as Date of Birth and Social Security Number, which utilizes Experian to generate a list of personal questions that will verify your identity.

Step 2: Enter your profile information (please use your corporate email address) and select Next.

Because your HARP ID can be used to login to several CMS applications which access sensitive information such as PHI or PII, identity proofing is required. This includes providing your SSN. If you do not wish to provide your SSN, a manual proofing option is available. Manual proofing may, however, delay the process.

Step 3: Choose your user ID, password, and challenge question and select Next.

Note: You will not be able to change your user ID after registration.

Step 4: If remote proofing questions were successfully generated, answer the five identity proofing questions to verify your identity and select Next.

If you were unable to generate remote proofing questions OR you answered your remote proofing questions incorrectly, you have two options:

1. 1. If you think you know what you entered incorrectly, you can retry remote proofing by returning to the Profile Information screen and selecting Retry Remote Proofing. This will pre-populate the fields below.
   2. Call Experian to verify your identity over the phone and then enter your reference number on the Profile Information screen by selecting Enter Reference Number. This will pre-populate the fields below.

Step 5: Your account has been created and you will receive a confirmation email.

Step 6: For security reasons, all HARP accounts are required to have two-factor authentication. Select Login to Complete Setup to log into HARP and set up two-factor authentication. Once you have set up two-factor authentication, feel free to log into your respective CMS application. Follow your application’s instructions for how to request a role.

CONGRATULATIONS! You’re done! You are now registered with HARP.

If you are unable to successfully complete remote proofing, you will need to initiate manual proofing.

Step 1: Click on the following link:  https://harp.cms.gov/register

If you were unable to successfully complete remote proofing or you do not want to enter your full SSN, then you will need to initiate manual proofing.

Step 2: Enter your Profile Information and select Initiate Manual Proofing below the SSN field.

SSN field is optional if you initiate manual proofing.

Step 3: Choose your user ID, password, and challenge question and select Next.

Note: You will not be able to change your user ID after registration.

Step 4: Send the following documents to your application's help desk via email, fax, or mail

1. One of three approved forms of Government Photo IDs:
   1. Current driver’s license issued by state or territory; OR
   2. Federal or State government issued photo identification card; OR
   3. U.S. Passport
2. Two copies of financial institution official bills or statements addressed to the address used during the registration process. Payroll information is also accepted.
3. If you choose not to fill out the HARP SSN field, you will need to provide only the last four digits of your SSN to your application's help desk

Step 5: The help desk will contact you via email if they need to request additional information. When your documents have been verified, you will receive an email confirming your account creation. 

Step 6: For security reasons, all HARP accounts are required to have two-factor authentication. Select Login to Complete Setup to log into HARP and set up two-factor authentication. Once you have set up two-factor authentication, feel free to log into your respective CMS application. Follow your application’s instructions for how to request a role.

CONGRATULATIONS! You’re done! You are now registered with HARP

For any questions related to manual proofing, contact the Identity Access Management (IAM) team, Monday-Friday 7am-7pm CST by phone 1-888-599-0426 or email identityproofing@hcqis.org for manual proofing questions.

If your application uses HARP for role requests, do the following:

Step 1: Log into HARP – you will land on your user dashboard. From there, select User Roles.

Step 2: Select Request a Role.

Step 3: Select the desired Program and select Next.

Step 4: Select your Organization and select Next.

Step 5: Select the desired User Role and select Submit.

Step 6: Enter your request reason, including relevant information like your job title, company name, etc. and select Submit.

Step 7: You will be notified via email when your role request has been approved or rejected.

Managing HARP User ID and Password

Forgot your User ID

Step 1: Go to HARP and select Having trouble logging in?

Step 2: Select Forgot User ID or Password.

Step 3: Enter your email address and select Send Email.

Step 4: You will receive an email containing your user ID. You can ignore the Reset Password button if you don’t need to reset your password.

Forgot your Password

Step 1: Go to HARP and select Having trouble logging in?

Step 2: Select Forgot User ID or Password.

Step 3: Enter your email address and select Send Email.

Step 4: You will receive an email containing your user ID and a button to reset your password.

Step 5: Select Reset Password (you will be prompted to answer your challenge question).

Step 6: Enter your challenge question answer and select Next.

If you forgot your challenge question answer, follow the instructions for Forgot your Password and Challenge Question (Full Account Recovery).

Step 7: Enter your new password and confirm your new password, then select Reset Password.

Step 8: You should now be able to log in with your user ID and new password.

Forgot your Password and Challenge Question (Full Account Recovery)

Step 1: Go to HARP and select Having trouble logging in?

Step 2: Select Full Account Recovery.

Step 3: Enter your Email Address, First Name, Last Name, and Date of Birth, and select Send Email.

Step 4: You will receive an email that contains your user ID and a button to recover your account.

Step 5: Select Recover Account.

Step 6: You will be prompted to establish a challenge question and answer.

Step 7: Once you have chosen your challenge question and provided an answer, select Reset Challenge Question.

Step 8: Enter and confirm your new password and select Reset Password.

Step 9: You should now be able to log in with your user ID and new password.

Managing HARP User Profile

Edit Profile Information

Step 1: Log into HARP – you will land on your user dashboard.

Step 2: To edit your Profile Information, select View/Edit Profile Information.

Step 3: Select the Edit button and modify your information, such as Email Address, Home Address, etc.

Note: You cannot update your First Name, Last Name, or Date of Birth in your User Profile. Call your application’s help desk if you need to update these fields.

Step 4: To allow the HARP team to reach out to you for user feedback, select the checkbox to opt into user feedback sessions.

Step 5: Select Save to save your changes.

Change Password

Step 1: Log into HARP – you will land on your user dashboard.

Step 2: To change your password, select Change Password.

Step 3: Enter your Old Password, New Password, and Confirm New Password.

Step 4: Select Save to change your password.

Update Challenge Question

Step 1: Log into HARP – you will land on your user dashboard.

Step 2: To update your challenge question, select Update Challenge Question.

Step 3: Enter your Password, select a new Challenge Question, and enter your Challenge Question Answer.

Step 4: Select Save to update your challenge question.

Manage Two-Factor Authentication

Step 1: Log into HARP – you will land on your user dashboard.

Step 2: To update your challenge question, select Manage Two-Factor Devices – you will see a list of your existing two-factor authentication devices.

Step 3: To add a new two-factor authentication device, select the Device Type, follow the instructions, and select Send Code.

Step 4: Enter the security code to verify the device and select Submit.

Step 5: To remove a device, select the associated Remove link for the device you would like to remove.

Step 6: Verify you want to remove the device and select Remove – the device will be removed from your list of two-factor authentication devices. 

Requesting the Security Official (SO) Role in HARP

If your organization does not already have at least one SO assigned to approve access requests for a program, please view more information here: Access to Services

If your organization already has at least one SO assigned and your application uses HARP for role requests, do the following:

Step 1: Log into HARP – you will land on your user dashboard. From there, select User Roles.

Step 2: Select Request a Role.

Step 3: Select the desired Program and select Next.

Step 4: Select your Organization and select Next.

Step 5: Select the Security Official role and select Submit.

Step 6: You will be notified via email when your role has been approved or rejected by an existing SO.

NOTE: It's beneficial to have at least two SOs request the role. Therefore, if one SOs is on vacation or leaves the company the backup can still approve role requests. To add additional SOs please have the desired user follow the steps above. If you are having issues please reach out to the Contract Onboarding team for assistance. Contact by email at ISGContractorOnboardingServices@cms.hhs.gov or by Slack at #help-contract-onboarding 

Approving User Roles in HARP

Step 1: Log into HARP – you will land on your user dashboard. From there, select Security Official.

Step 2: You will land on the Role Requests screen and see a list of pending role requests.

Step 3: Select the checkbox for one or many requests.

Step 4: Select Approve or Reject.

Step 5: An email will be sent to the requester notifying them of approval or rejection.

Removing User Roles in HARP

Step 1: Log into HARP – you will land on your user dashboard. From there, select Security Official.

Step 2: Select User Lookup in the left navigation.

Step 3: Choose your Program and Organization.

Step 4: Use the search bar to search for users by first name, last name, email, or user ID.

Step 5: Select a user's name to see their User Roles and Profile Information.

Step 6: Select the Remove link for the User Role you would like to remove.

Step 7: Confirm the removal.

Step 8: The user's role will be removed from the list of User Roles.

Viewing Request History in HARP

Step 1: Log into HARP – you will land on your user dashboard. From there, select Security Official.

Step 2: Select Request History in the left navigation.

Step 3: Optionally, use the search bar to search for a previous request by name or request ID.

Step 4: Select View per request to see the request details, including completion date, organization, role, and whether the request was approved or rejected.

Frequently Asked Questions (FAQ)

For more questions, visit the full FAQ on the HARP Help page