Access Control - Adding, Deleting, Editing Users

Must have security permissions to be able to add/edit/delete users

Search if a User Exists in the System

First, please do a search in your  Enterprise Health system to confirm that this person has not already been added as a user.
Click Control tab on the left sidebar menu.
Click Access Control tab at the top
It will show the list of departments your system has entered.
You can search for a user if you know what department(s) they are attached to and view that way. Click the underlined department name and you will see all users tied to that department.

However, it is much easier to search by a user’s last name.
In the Search box at the top of the Access Control tab you are in:

• Criteria: leave as ‘Begins With'
• Search: If you are searching for a specific person’s name, start typing in the last name and then the BY: field would be selected to ‘name’. If you are searching for a specific username, start typing the username and make the BY: field username. Most search for a user by last name. In this situation you would then type part of the last name and make sure the BY: field is on Name.
• By: Use the drop-down arrow and select the category of what you typed in the Search field. You can search by different categories such as username, user PIN, name, E-mail, etc. Click the GO box to the right.
  The system will then show your search results below the search fields on the screen. It will display any matches to the specific search and by category you selected.
  If you do not find the user already entered into the system, continue to add them as a new user.
  Per Medical Informatics Engineering, Inc. policy, all new providers should be created with a new, unique user chart and account. Provider user accounts should NEVER be reused or recycled for any reason.

Adding a User

Click Control on the left sidebar menu.
Click Access Control tab at the top
Click the Add User link on the far right side. (To add multiple active users quickly at a time, see other help documentation named Access Control-Quick Add Multiple Users )

When adding a user, fill out all the fields you can:

Add User Screen

• Username (first initial and last name all together and in lowercase) This will be their login name.
• Alias: Anything typed here will be shown in the authored by field of any document created/uploaded and printed/faxed etc. Sometimes a client or user doesn’t want their full name to show in document headers or in stored documents, etc so they enter either only their first name here, or initials here, etc. The Authored By field looks and pulls the alias field first. If nothing is entered in the alias field, it will pull the user’s full legal name. The below screenshot is an example. Example: Albert Aorta does not have anything entered into his alias field, so any document he creates, indexes, uploads, etc is stored by his full name. Example: alex someone who entered alex in for their alias field and  Enterprise Health stores documents created by this person, uploaded, indexed, etc by his/her alias name/field since something is entered into that field.

• Primary Dept: Chose the PRIMARY department for this user using the drop-down arrow.
• Organization: Type the name of your facility/practice/company.
• Current Status: Should be default to Active when adding a new user. If the user is considered active, then a username and login password must be entered. Users that will not access the system (example: Pharmacy names/fax #’s, etc) would be status of Login Disabled. No password would need to be entered for non-accessing (disabled) users.
• Security Role: Message: Warning, No Security Role for User will appear. Select security role by using the drop-down arrow. Highlight and select the security role this user is to be in. You must select a security role for the user. It will give you an error at the top if you try to submit a new user without making a selection in this field.
• Def. User Role: Message: Warning, No Default User Role for User! This must be set for any Referring Physician user adds. For any other types of users, you can leave this/skip it. If you leave it blank/skip it, it automatically defaults and saves to User-Limited Access role. If adding a Referring Physician user, set this to Referring Physician.
• Electronic Prescriber: These fields are only for physicians/users who can legally prescribe medications and what to be a verified/certified SureScripts electronic prescriber. Please make sure to read the other help documentation named Setting Up E-Prescribers  before check-marking any of these selections.
• Meaningful Use: checkmark Eligible Provider if the user wishes to opt-in for the Meaningful Use incentive from CMS to track meaningful use criteria for this user/provider. Enter the start date to start tracking. Click the Meaningful Use verbiage link on the left and it will open up the Meaningful Use criteria to checkmark which reporting measures the user wishes to report on.
• Title: Usually left blank.
• First Name: This is a required field. You cannot add a user without entering a first name here.
• Middle Name: Type middle name, but most type just middle initial.
• Last Name: This is a required field. You cannot add a user without entering a last name here.
• Suffix: Enter in the suffix here and not with the Last Name field. This field is for example: JR, SR, III, etc.
• Degree: This is for anyone that has a ‘title’ next to their signature. Enter MD, NP, FACS, RN etc.
• Address, City, State/Province, Zip/Postal Code: Enter information with work address, etc. Postal Code field will accommodate international postal codes and display as they are entered without auto-formatting.
• Preferred Route: This is for the datasend feature (sending documents, etc) between  Enterprise Health systems/clients and for point & click exams. This is the default method the user would like to send information (Print, Fax, Electronic). If Electronic is selected, there is a Route Detail that appears. The detail is the destination the documents should be sent to by default. If you will be faxing encounters (point & click exams) to referring physicians, etc—this must be set to FAX for that referring physician user here.
• Route Comments: This is a text field that can be used as a comment/note as to why the preferred route was set to what it is, etc.
• Phone Numbers: Enter information for work, pager, home, cell, fax numbers. Can also enter phone numbers in international format. To enter an international number, type the plus sign + first in the field and then continue to type in the international phone/fax, etc number. If you type the + (plus sign) first, there won’t be any automatic formatting done on it. Otherwise, standard US formatting will still be applied if there is no + entered first in the phone fields.
• Cell Number Carrier: Can select the company carrier of their cell phone.
• Email: Enter email address. This is an important field to fill out if wish for tasking and/or e-signing requests to be notified to you via email if you have that preference set in My Settings.
• Preferred Alert Method: Choose Email or Text Message.
• PIN: MIE will enter a PIN number for any physician that accesses phone dictation. MIE phone dictation line must be utilized for this.
• Universal ID: Enter the UPIN number (Unique Physician Identification Number) here for physicians and PA’s.
• DEA Number: Enter DEA number of user (prescribing physicians)
• National Provider Id (NPI): Enter NPI of user (physicians).
• License Number: Enter the State License number of the user.
• Password Expire Date: Make it today’s date. Simply click the TODAY button. That way it prompts the user (when they login) to create their own unique password since the generic one you are setting will expire today. Passwords expire every 30 days and the user is prompted to change their password when logging into  Enterprise Health 30 days from when the password is set/changed. However, when creating a new user, you want it to expire ‘today’ so they will be prompted immediately upon initial login so they can set their own unique password.
• Login Expire Date: Leave blank. If your company sets up a temporary user for a limited amount of time to access their Enterprise Health , they can enter a login expire date here and it will automatically (on this date entered) expire their login and they will not be allowed to log back in after the expiration date.
• Password: Type in any generic password. You must give this password to the new user so they know what to type in for the first time. It will then prompt them to change the password to their own unique one, which can hold up to 50 characters and can be configured with alpha, capital letters, lowercase, numbers or other characters and are stored using a one way encryption to prevent passwords from being decrypted. Any active users must have a password to access the system. If the user is disabled, no password is necessary as they aren’t users who will be accessing the system so you can leave it blank.
• Verify Password: Retype in the generic password you have set as the initial password for the user.
• Your New PIN Vericode: Enter a PIN number here to access e-orders. If your practice is set up where you have to enter a PIN number to create an e-order for patients, you must have a PIN number entered here. This is a personal identification number so you can enter whatever you like. This PIN number is for some practices that have their e-orders module locked and you have to enter a PIN number to create orders for patients.
• Verify New PIN Vericode: Re-enter your PIN code here from the field above. This is just for verification that you entered the correct/same PIN number. This currently is used for the e-orders module if your practice is set up where you have to enter a PIN number to create orders for patients.
• Security Question: You can type in a question that the user wishes to refer to if he/she needs their password reset, or other information. This is just to verify that this is the person you are talking to that wants changes made.
• Security Answer: Answer to the security question that the user must verify/identify in order to access/change things.

Departments

Check all boxes that this user will be a department of. Make sure you also click the department box that you made this user’s Primary Department above. Then click the rest of the departments (if they belong to more than one dept.)

Refresh with the User Patients Listedit

This hyperlink and list does not get rendered at all if the setting “Webchart”, “Settings”, “Limit users to Provider Organization” is turned off. This is a feature mainly used by our Corporate Health practices. Clicking on the Refresh with the User Patients List link will query the system to render the list.

At that time the hyperlink will change to say Show patients Linked to User. When you click this link, then the system will render the list of the patients tied to that user.

However many patient charts are linked to the user will display in a listedit format. You can add or delete user patient relationships here.

Click Submit Insert or Submit Edit at the bottom.
At the very top will say in blue “username successfully added”. Or, it will give you an error and tell you what it is and you can go back in and edit fields to the user you just created.
It will also check to see if the user exists and if they are active or inactivated. Then you get an option to reactivate the user if it was already in there as inactive (instead of them being added again as a new user).

Edit/View a User

Click Control tab on the left sidebar menu.
Click Access Control tab at the top.
You can search for a user if you know what department(s) they are attached to and view that way. Click the underlined department name and you will see all users tied to that department.
However, it is much easier to search by a user’s last name. In the Search box at the top of the Access Control tab you are in:
Criteria: leave as Begins With
Search: Type in the last name (or the first few letters of the last name) for the user you are searching for.
By: Use the drop-down arrow and select NAME
Show: Click the … box to open your choices. Show only Active users, Show only Inactive users, Show only Deleted users. You can check-mark which or as many filters here as you wish to show results for.
This will pop-up any matches to that last name (or first few letters of the last name if you entered).

Once your results produce, click on the underlined username (on the left column) that you want to edit or view. This pops up the summary screen of this user’s information. You can view all the information for that user. There is also links in the summary to view when the user’s last login failed and when the user last logged in.

Below this section of the username screen, it will display what departments the user is a member of, any restrictions, security exceptions, etc.
If you edit an existing user’s security role (if you change the security role they are currently set to), when you submit your edit in their username screen, you may see a prompt box. If the user has any existing security role exceptions set, it will prompt if you want to keep their security role exceptions that are set, or if you wish to delete them and set the user to the security role settings that are default to that role you are changing them to.

You can also select options at the top of this user’s summary.

Options

Edit User

If have security role permission to manage users, this link will appear.
Can click this to make changes to the username information screen and then click Submit Edit at the bottom.
This is also where you can make a user ‘inactive’ in your system by changing the status to Deleted or Login Disabled.
Customize User Security
When you are within Edit User, you will see this option. If you have security role permission to change security options for users, this link will appear. Click this to make changes to security role permissions that will be only applied to this specific username only. This does not affect the entire security role.
In order to get to this Customize User Security section, you must click Edit User first, then this link/option will appear. Make changes, scroll down to the bottom of the security screen & type the reason why you made changes, then click Update Individual Security at the bottom of the screen. (See separate instructions called Security Role Settings)

Delete a User

When you delete a user or a realm, it does not permanently delete it. It marks it as “deleted”, but you can reactivate any user. If you need to put them back in as a user, you click on Show Deleted and on the username you want to reactivate, click Activate to reactivate them in the options column.
When you delete a user or a realm (department) you will get a warning that asks you if you really want to delete before actually deleting either of them. Click Yes to confirm and complete.
If you need a user completely deleted, you need to call MIE to have that done. Otherwise, delete them as inactive and they will show up in the users, but under ‘deleted’ users.
If you are deleting a physician who was certified by SureScripts as an electronic prescriber in Enterprise Health , please see other help documentation named Setting Up E-Prescribers  for the correct steps on how to disable those specific users so SureScripts is notified before you can delete them as a user from your  Enterprise Health system.

View Audit Log

If you have security role permission, this link will appear. You can click this to view the patient’s this user has viewed/worked in and view activity using the Audit Log Search fields. See separate instructions titled Audit Log Search.

View User Revisions

If you have security role permission, this link will appear. You can click this link to view dates and who revised anything for that user in their user screen.