HIPAA Section G – Person or Entity Authentication§ 164.312(d) - Rescue Support

HIPAA Section G – Person or Entity Authentication§ 164.312(d)

Implement a mechanism to uniquely identify users in information systems that contain or use electronic protected health information. (Required)

Access and Management: Pro, Central

Access to the host computer is protected by the use of separate, unique passwords for the website and the host computer.
Set up a Personal Password to access the host computer to verify that access is authorized.
Tip: Open the LogMeIn Control Panel and follow this path: Options > Preferences > Security.
Configure an IP address lockout to prevent unauthorized remote access from a specific client computer. With IP address filtering, users can grant or prevent access for multiple IP addresses.
Tip: Open the LogMeIn Control Panel and follow this path: Options > Preferences > Security.

Support and Collaboration: Rescue

The technician’s identity is defined by a unique email address, or via an SSO ID, and the technician must be authenticated.
Excessive number of unsuccessful login attempts (five unsuccessful attempts) will lock the account.
Use IP address restrictions to limit access to the Technician Console.
Tip: Open the Administration Center, select a group, and follow this path: Settings tab > IP Restrictions (Technician Console).

Parent article: Rescue HIPAA Considerations

Previous article: HIPAA Section F – Integrity mechanism, § 164.312(c)(2)

Next article: HIPAA Section H.1 – Transmission Security § 164.312(e)(1)

Rate
your
Experience