Require Healthcare Integrated General Ledger Accounting System (HIGLAS) Users to Begin Using Phishing-resistant Multi-Factor Authentication (MFA) for Login
The purpose of this Change Request (CR) is to notify users of Healthcare Integrated General Ledger Accounting System (HIGLAS) that, beginning January 1, 2027, access will require the use of a phishing-resistant Multi-Factor Authentication (MFA) method. This action is required to ensure phishing-resistant MFA is implemented for HIGLAS users and to facilitate the transition to the new authentication front end.
Issued by: Centers for Medicare & Medicaid Services (CMS)
Issue Date: April 16, 2026
DISCLAIMER: The contents of this database lack the force and effect of law, except as authorized by law (including Medicare Advantage Rate Announcements and Advance Notices) or as specifically incorporated into a contract. The Department may not cite, use, or rely on any guidance that is not posted on the guidance repository, except to establish historical facts.