Health Information Management Systems (HiMS) and your facility have teamed up with IdenTrust to provide certified identity proofing and issuance of digital certificate tokens used to digitally sign and electronically send prescriptions for controlled substances (EPCS). By providing the required information to IdenTrust, you will have the ability to complete remote identity proofing, and two-factor authentication for two years, as required by both the DEA and NYS EPCS mandates.

The digital certificate token from IdenTrust can be used for HiMS and other ePrescribing products on the IdenTrust network.

To complete you identity proofing:

  • Initial sign up on-line takes about 15 minutes. You will need to provide your name, address, phone number, date of birth, Social Security number, credit card number, and driver's license.
  • After registering, your token and an Activation Code are sent by mail within a week.


Please note: ONLY THE SUBSCRIBER OF THE CERTIFICATE SHOULD HAVE EXCLUSIVE USE OF THEIR TOKEN - THE DIGITAL CERTIFICATE IS YOUR FORM OF IDENTIFICATION, SIMILAR TO YOUR PASSPORT OR DRIVER'S LICENSE. Under the IGC Certificate Policy, it is our responsibility as an Authorized Certification Authority to revoke the certificate in a case of loss or disclosure of the private key (Password) to anyone other than the subscriber.


IdenTrust Global Common Certificates (IGC)

IdenTrust Global Common (IGC) digital certificates are cross-certified with the U.S. Federal Bridge Certification Authority, enabling trust, and interoperability with a wide range of systems and applications. Each individual IGC Certificate includes both a certificate for authentication/digital signing and a certificate for encryption.

To learn more about IGC Certificates, please visit www.identrust.com/igc/learn.html

Click on the link below to begin the registration process for your IGC Certificate.


During the registration process, please select the
Hybrid USB Token Hybrid PKI/OTP Token (add $128.00 USD) for HiMS approved hardware.

Please note for EPCS signatures, utilization of two-factor authentication (2FA) is required by the DEA.

*Hardware certificates must be retrieved using Internet Explorer. Once retrieved, you may use your hardware certificate with any application that supports standard x.509 certificates.