Manage Your EPCS Account, Tokens, and Password

After registering for electronic prescribing for controlled substances (EPCS), you can manage your EPCS account and authentication tokens in the Exostar Account Management tool. You can also reset your EPCS password with help from an eRx Administrator.

Contents

1 Open Exostar Account Management
2 Resync Your Hard Token
3 Remove a Lost or Broken Token
4 Add a New or Replacement Token
- 4.1 Add a New or Replacement Soft Token
- 4.2 Add a Replacement Hard Token
5 Manage the Backup Phone Number for Your Exostar Account
- 5.1 Add a Backup Phone Number
- 5.2 Remove a Backup Phone Number
6 Reset Your EPCS Password
- 6.1 eRx Administrator Steps
- 6.2 Prescriber Steps
7 Never Revoke Your EPCS Account

Open Exostar Account Management

Use the Exostar Account Management tool to add a new token to your EPCS account, remove or resync an existing token, or manage your backup phone number.

Open the Rx Queue

Click on the Rx Queue tab in PCC EHR to open PCC eRx.

Go to My Settings

Click on the “My Settings” link in the top navigation bar to open your personal PCC eRx settings.

Open Exostar Account Management

Click on the “Exostar Account Management” button on the EPCS tab of the My Settings page to access your Exostar account details.

Read on to learn which actions you can take within Exostar Account Management.

Resync Your Hard Token

When PCC eRx stops accepting one-time passwords from your hard token, you can try resyncing it to restore your ability to use it as a factor of authentication for EPCS.

Grab Your Hard Token

Get your hard token in hand. You will need it to complete the resync.

Open Exostar Account Management

Click the “Exostar Account Management” button on the My Settings page in PCC eRx.

Resync Your Token

Find the Hardware Token (One-Time Password) card within your Exostar account settings and click the “Resync your token” link.

Enter Two One-Time Passwords from Your Hard Token

Press the button on your hard token to generate a one-time password, then enter it into the field labeled “One-time password 1”.

Press the button a second time to generate another password, then enter it into the field labeled “One-time password 2”.

Both fields are required to resync your token.

Finish Resyncing Your Token

Click the “Next” button after entering both passwords to finish resyncing your token.

If you receive an error message, try again, double-checking that both passwords have been entered correctly.

After resyncing, try sending an electronic prescription for a controlled substance to see if it has been restored. If resyncing does not restore use of your hard token, contact PCC Support.

Remove a Lost or Broken Token

If you lose access to one of your tokens, deactivate and remove it from your EPCS account so that you can add back a functional replacement.

Open Exostar Account Management

Click the “Exostar Account Management” button on the My Settings page in PCC eRx.

Check That You Have a Backup Phone Number for Your Exostar Account

Check that you have a Phone-Based (One-Time Password) backup phone number connected to your Exostar account. If you do not, set one up now before moving on to the next step.

A backup phone number ensures continued access to your Exostar account if neither a hard nor soft token is accessible, functional, or connected to your account.

Click “Remove” on the Lost or Broken Token

Click the “Remove” button on the token you need to remove.

To remove your hard token, click “Remove” on the Hardware Token (One-Time Password) card. To remove your soft token, click “Remove” on the Mobile ID (Authy) card.

Authenticate Your Identity

Choose a method to authenticate your identity, then click “Next”.

Enter the code from the method you selected.

You can authenticate using a code generated by your hard token, your PCC eRx soft token in the Authy app, or with a code sent to your phone by call or text.

Not Prompted to Authenticate?: That’s okay! You only need to authenticate once per session while working in Exostar Account Management. You may not be prompted to authenticate if you already proved your identity while taking another action in Exostar Account Management.

Record the Reason for Removing the Token

Document your reason for removing your token.

Click “Remove”

Click the “Remove” button to finish removing your token.

After you remove a token, you can add back a replacement for it.

Add a New or Replacement Token

You can use the Exostar Account Management tool to add a new or replacement token to your Exostar account. This is useful when you need to replace a lost or broken hard token, set up a soft token using a new cell phone number, or configure a soft token for the first time after having skipped that step in the EPCS registration process.

Add a New or Replacement Soft Token

Set up your smartphone as a factor of authentication for EPCS.

Grab Your Smartphone

Get your smartphone in hand. If you haven’t already, install the Authy app.

Open Exostar Account Management

Click the “Exostar Account Management” button on the My Settings page in PCC eRx.

Add or Activate a Mobile ID

Find the Mobile ID (Authy) card within your Exostar account settings.

Click the button at the bottom of the card. It will say “Add” or “Activate” depending on the status of your Exostar account.

If the button says “Remove” you already have a soft token linked to your account. Follow the steps to remove your current token before proceeding any further.

Authenticate Your Identity

Choose a method to authenticate your identity, then click “Next”.

Enter the code from the method you selected.

You can authenticate using a code generated by your hard token, or with a code sent to your phone by call or text.

Enter Your Phone Number and Email Address

Enter the phone number associated with your smartphone and the email address that you used to register for EPCS.

Click “Next” to proceed.

Tap the Authy Notification on Your Smartphone

Pick up your smartphone and tap the push notification from Authy to open the app.

No Notification? Open the App Manually: If you have the Authy app installed but do not receive a push notification, open Authy manually instead by tapping the app icon on your home screen.

Don’t Have the Authy App? Download it Now: If you do not have the Authy app installed on your smartphone, you will receive a text message with a download link instead of a push notification. Open the text message, click on the link, and install the Authy app before moving on to the next step.

Tap the Notification Icon in the Authy App

Tap the notification bell icon in the Authy app.

The red counter on the notification bell indicates that you have a new request to add a token.

Approve the Pending Request

Tap the pending request from PCC eRx to approve it. Then, tap the green “Approve” button to confirm.

Once you approve the pending request, your smartphone becomes registered as a soft token for EPCS in PCC eRx.

Request Timeout: If the pending request from PCC eRx times out before you have a chance to approve it, tap “Exit” in the top left corner of your phone screen, click the “Verify with Mobile ID code” link in PCC eRx, then enter a one-time password from your smartphone to finish the registration process.

No Notification? Finish Set Up Manually: If the notification bell in the Authy app does not display a red counter but you can see the PCC eRx soft token on your screen, click the “Verify with Mobile ID code” link in
PCC eRx, then enter a one-time password from your smartphone to finish the registration process.

Once registered, your soft token is bound to your identity, phone number, and device. Only you may use it as a second factor of authentication when sending electronic prescriptions for controlled substances from PCC eRx.

Add a Replacement Hard Token

Add a hard token as a factor of authentication for EPCS. If you already have a hard token, try resyncing it before setting up a new one.

Order New Hard Tokens from PCC: If your practice needs to order new hard tokens, contact PCC Support. PCC orders hard tokens from Exostar at no cost to you. Once ordered, Exostar ships hard tokens directly to your practice, generally in less than two weeks.

Grab Your New Hard Token and Your Smartphone

Get your new hard token and your smartphone in hand.

You will need your hard token in order to register it as an authentication method for EPCS.

You will need your smartphone in order to authenticate that you are authorized to make changes to this account.

Open Exostar Account Management

Click the “Exostar Account Management” button on the My Settings page in PCC eRx.

Add a Hardware Token

Find the Hardware Token (One-Time Password) card within your Exostar account settings.

Click the “Add” button at the bottom of the card.

If the button says “Remove” you already have a hard token linked to your account. Follow the steps to remove your current token before proceeding any further.

Authenticate Your Identity

Choose a method to authenticate your identity, then click “Next”.

Enter the code from the method you selected.

You can authenticate using a code generated by your PCC eRx soft token in the Authy app, or with a code sent to your phone by call or text.

Enter Your Hard Token’s Serial Number

Enter the serial number from the back of your hard token into PCC eRx.

Enter Two One-Time Passwords from Your Hard Token

Press the button on your hard token to generate a one-time password, then enter it into the field labeled “One-Time Password 1”.

Press the button a second time to generate another password, then enter it into the field labeled “One-Time Password 2”.

Both fields are required to add your token.

Click “Next”

Click the “Next” button to finish registering your hard token.

Once registered, your hard token is bound to your identity. Only you may use it to validate your identity when sending electronic prescriptions for controlled substances from PCC eRx.

Manage the Backup Phone Number for Your Exostar Account

You can set up a phone number as a backup authentication method for your Exostar account in case you lose access to both your hard and soft tokens. While you cannot use the backup phone number to send prescriptions for controlled substances, you can use it to authenticate in Exostar Account Management so that you can add new tokens back to your account and resume prescribing.

PCC recommends setting up at least one phone number when you register for EPCS, but you can update your backup phone number settings at any time in Exostar Account Management.

Add a Backup Phone Number

You can add one or several phone numbers as backup authentication methods for your Exostar account. You can use these phone numbers to authenticate and unlock the other actions in Exostar Account Management, which is especially useful if you lose access to both of your EPCS tokens and want to set up new ones without having to go through the Exostar identity proofing process a second time.

Open Exostar Account Management

Click the “Exostar Account Management” button on the My Settings page in PCC eRx.

Add a Backup Phone Number

Find the Phone-Based (One-Time Password) card within your Exostar account settings.

Click the “Add” button at the bottom of the card.

Authenticate Your Identity

Choose a method to authenticate your identity, then click “Next”.

Enter the code from the method you selected.

You can authenticate using a code generated by your hard token or your PCC eRx soft token in the Authy app. If you already have a backup phone number connected to your account, you can use that to authenticate, too.

Enter Your Phone Number and Choose a Delivery Method

Enter your phone number and choose whether you would like to be contacted by voice or text.

This phone number and delivery method will be used to receive verification codes from Exostar.

Click “Next” to proceed.

Receive the Verification Code from Exostar

Wait for a call or text from Exostar with your verification code.

Enter the Verification Code on Your Computer Screen

Type the verification code into the field on your computer screen.

Click “Next” to finish adding your backup phone number.

Resend Code: If you do not receive a code, check that you entered your phone number correctly. Once confirmed, click “Resend verification code” and wait to receive a different code. If you do not receive a code after a second attempt, contact PCC Support for assistance.

You can add up to three backup phone numbers to your Exostar account.

Remove a Backup Phone Number

You can remove old backup phone numbers from your EPCS account.

Open Exostar Account Management

Click the “Exostar Account Management” button on the My Settings page in PCC eRx.

Click “Remove” on the Phone Number to Delete

Click the “Remove” button on the Phone-based (One-Time Password) card that lists the phone number you would like to delete.

Authenticate Your Identity

Choose a method to authenticate your identity, then click “Next”.

Finish verifying your identity using your selected method.

You can authenticate using a code generated by your hard token, your PCC eRx soft token in the Authy app, or a valid backup phone number connected to your Exostar account.

Select a Reason for Removal

Use the drop-down to select the reason you are removing your backup phone number.

Provide additional detail if desired.

Finish Removing the Number

Click the “Remove” button to finish deleting this backup phone number.

If you deleted the only backup phone number listed on your Exostar account, add a new one right away to ensure that you will be able to unlock your account settings in Exostar Account Management even if you lose access to both of your EPCS tokens.

Reset Your EPCS Password

If you lost or forgot your EPCS password, ask an eRx Administrator at your practice to help you reset it.

eRx Administrator Steps

First, an eRx Administrator resets the prescriber’s password.

Open PCC eRx Administration

On the Rx Queue tab in PCC EHR, click “Administration”.

Open EPCS Setup

Click on the “EPCS Setup” link.

Find the Prescriber

Search for the prescriber by last name.

Edit the Prescriber

Click the “Edit” link on the prescriber’s account.

Reset the Prescriber’s Password

Click the “Reset EPCS Password” button.

The screen updates with a message showing that the prescriber can reset their password.

Prescriber Steps

Next, the prescriber chooses a new password.

Open My Settings in PCC eRx

On the Rx Queue in PCC EHR, click “My Settings”.

Create a New EPCS Password

Click the “Set up my EPCS password” button, then create a new password that meets all of the criteria.

Click “Submit”

Click the “Submit” button to save your new password.

Never Revoke Your EPCS Account

Never Revoke Your Account: Never click the “Revoke OTP account and all credentials” button in Exostar Account Management. If you believe you might need to take that action, contact PCC Support first.

Here are some related articles in Clinical Tasks > Prescribe Medications:

Register for EPCS
After a brief registration process, you can send electronic prescriptions for controlled substances (EPCS) from PCC eRx.
Install and Set Up the Authy App
The Authy app turns your smartphone into a secure password generator for taking certain actions on your PCC system. Secure Authy passwords are used in conjunction with your regular PCC password to provide an extra layer of security for your account. This article covers how to install and set up the Authy app on your smartphone and tailor notifications to your preference.
Prescribe Controlled Substances (EPCS)
Only registered users can send electronic prescriptions for controlled substances (EPCS), but anyone with permission to create prescriptions can prepare and edit them.
Allergies
PCC EHR tracks allergies in each patient’s chart. When the chart is up-to-date, PCC EHR can automatically warn you about drug allergies as you prescribe, create lists of patients based on allergies, and display custom alerts to users whenever they work with a patient’s chart.
PCC eRx – Set Up Staff and Clinicians
Watch this quick guide to learn how to set up staff and clinicians in your office to use the e-prescribing features in PCC EHR.
Set Up PCC eRx User Access
Before a clinician or staff member can prescribe medications or modify a patient's medication information, they must have PCC eRx enabled on their user account in PCC EHR. Follow the procedure in this article below to enable PCC eRx for providers or any staff at your practice.
Prescribe Medications
Learn the basics of how to create and send prescriptions from your PCC system.
Manage Prescription Activity on the Rx Queue
Use the Rx Queue to sign prescriptions and approve renewal requests that are waiting for review.
Manage Prescription Activity on the Rx Queue
The Rx Queue is a one-stop task queue where you can review and process pending prescriptions, sign off on agent prescriptions, respond to pharmacy renewal and change requests, and review and resolve prescription errors.
Review and Update Medication History
At every visit, you ask patients what medications they are on. In PCC EHR, you can quickly review and update the chart record of a patient's medications. Special medication history features and tools make prescribing faster.
PCC eRx – EPCS Enrollment
Watch this video to get an idea of how to turn on EPCS access for a prescriber. This video is currently being updated to reflect the exact functionality you see today in PCC EHR.
PCC eRx Component Reference
Special tips and features of each component in the PCC eRx section of a patient's chart.
Create Custom Medications and Sentences in PCC eRx
Your practice can create custom medication entries to make it easier to find and prescribe non-standard prescriptions or instructions, such as the "magic mouthwash" compound, a particular piece of medical equipment or supply, or your practice's preferred albuterol inhaler dosing.
Optimize PCC eRx Searches with Shortcuts and Hiding
You can save time when you search for a drug in PCC eRx by creating search short cuts, hiding unused drugs and dosing statements, and following some best practices when you search.
Adjust Safety Checking in PCC eRx
Contents1 Overview2 Adjust Safety Checking Settings2.1 Turn Off a Safety Checking Warning2.2 Restrict a Safety Checking Warning to Certain Roles2.3 Edit Safety Checking Sensitivity You can adjust safety checking in PCC eRx to meet the needs of your practice. Overview As you prescribe, PCC eRx alerts you to safety concerns with the selected medication based […]
Optimize Drug Search in PCC eRx
Learn how to use custom search terms and orderable exclusions to streamline your prescribing process in PCC eRx.
Prescribing 201: Beyond the Basics of PCC eRx
Learn answers to FAQs, configuration and customization options, and helpful tips for using PCC eRx, the prescription module inside PCC EHR.
PCC eRx Prescription Favorites
Contents1 Prescribe with Favorites1.1 Add a New Favorite as You Prescribe2 Manage Your Favorites from My Settings2.1 Turn Automatic Favorites Off or On2.2 Choose How Favorites Appear in the Prescribe Component2.3 Add Favorites Manually from My Settings2.4 Working with Weight-Based Favorites2.5 Edit or Delete an Existing Favorite2.6 Pin, Unpin, and Exclude3 Administrator Only: Share Favorites […]
Prescribe Medications
Learn the basics of how to prescribe in PCC eRx, including how to handle common prescribing scenarios. Plus, get an overview of PCC eRx's many prescribing features designed with pediatrics, prescribers, and safety in mind.
Work with Pharmacies
Find and select a pharmacy while you prescribe, see where prescriptions were sent and dispensed, and manage patient pharmacies.
Check Prescription Pricing and Insurance Coverage While You Prescribe
When you prepare a prescription, you can see how much it will cost out-of-pocket, whether it requires prior authorization, and if there are more cost-effective alternatives.
Check Prescription Pricing and Insurance Coverage While You Prescribe
When you prepare a prescription, you can see exactly how much it will cost your patient at the pharmacy and how it's covered by their prescription insurance.
Resend a Prescription
If a pharmacy is unable to fill your patient’s prescription, use the “Resend” button to reroute the prescription to a different pharmacy. You can also use the “Resend” button to fix mistakes on a prescription and resend it to the original pharmacy. Retracing Your Steps There are several places you can see all versions of […]
Resend a Prescription
Resend a prescription to a different pharmacy, or the same pharmacy with different details.
PCC eRx My Settings Reference
Use the My Settings page to tailor PCC eRx to your personal preferences and workflows.
Prescribe in pocketPCC
When you’re away from your work computer, you can use pocketPCC on your smartphone or tablet to create and send new prescriptions, process pending prescriptions, review medication histories, manage patient pharmacies, and more.
Prescribe in pocketPCC
Watch how to access PCC eRx from any device with a web browser and an internet connection. Log in to pocketPCC to create and send new prescriptions, process pending prescriptions, review patient medication histories, manage patient pharmacies, and more.
Adjust Your PCC eRx Text Size
Change the text size in PCC eRx to make it more readable.

Open Exostar Account Management

Resync Your Hard Token

Remove a Lost or Broken Token

Add a New or Replacement Token

Add a New or Replacement Soft Token

Add a Replacement Hard Token

Manage the Backup Phone Number for Your Exostar Account

Add a Backup Phone Number

Remove a Backup Phone Number

Reset Your EPCS Password

eRx Administrator Steps

Prescriber Steps

Never Revoke Your EPCS Account

Related Articles