This update applies to NC Medicaid users of the Sandata portal or aggregator.
To enhance security and protect agency and patient data, NC Medicaid directed Sandata to implement multi-factor authentication (MFA) functionality to their login process.
MFA, also referred to as two-step verification, adds an additional layer of protection and security to prevent unauthorized users from gaining access to sensitive accounts and data. Sandata will enable both email and authenticator methods for MFA.
Effective April 24, 2025:
- MFA will be required for logins to Sandata EVV and the Aggregator portals.
- MFA will not be required for electronic visit capture by caregivers.
- Once implemented, a first-time user will be prompted to enroll in MFA to set up their account.
More information on MFA, including a detailed job aid, is available on Sandata On-Demand under MFA documentation. Users are encouraged to review this resource in advance.
Does MFA Implementation Affect Your Agency?
- Yes, if you use Sandata EVV or Aggregator.
- This change is not applicable for Caregivers using electronic visit captures.