For information: Multifactor authentication (MFA) to be enabled for new NHSmail users

From 2 October 2023, new NHSmail users (excluding pharmacy, optometry, dentistry and social care users) will have MFA applied to their NHSmail account by default.

We recommend you update any local guidance for new starters to include MFA registration as part of setting up their account.

These changes are being implemented to improve cyber security across the NHS. Industry research suggests that MFA can prevent 99.9% of attacks on user accounts.

More information can be found on the NHSmail support site.

/by
Self-service smartcard unlock – migration to new application complete

The migration from the old, registration-based self-unlock process to the new, faster system is now complete.

The final steps of the migration are now in place:

  • the old service URL now redirects to the new application
  • the link from Identity Agent when a smartcard is locked now points to the new application

You can no longer access the old service and should let staff know that they should use the new application to unlock their smartcard. They will still need to take their card to a Registration Authority or unlocker if:

  • they do not have a valid email address on their profile
  • their certificates have expired

The short URL for the new application is digital.nhs.uk/unlock

For full details of the new application, read our guidance on the new self-service smartcard unlock.

/by