Access Management System



How to Log into AMS using FIDO Credentials

Logging into AMS using FIDO Credentials

  1. To access AMS on a mobile device, launch mobile browser and navigate to the AMS login page at https://ams.hhs.gov

  2. Select the "FIDO Security Key" option under the "Select Login Method" header.

    Select Login Method screen

    Note: AMS only supports YubiKey authentication on Apple devices (iOS). YubiKey functionality is not supported on Android devices. The following error will appear when selecting the "FIDO Security Key" option on Android.

    Android Unsupported

  3. The HHS Terms of Service and Privacy Policy will be displayed. Click the "Agree" button to accept the terms and conditions.

    Agreement text

  4. You will arrive at the FIDO Authentication page. Connect the FIDO Security Key to your mobile device and select the "Authenticate" button.

    FIDO Security Key Authenticate

  5. Tap the button on your YubiKey token when prompted at the "Sign In" window to proceed to the next step. Enter your PIN in the following window presented by the system and select the "Continue" button. Tap the button on your YubiKey token once again after entering your PIN to complete verification. Once verified, you will be redirected to the AMS homepage.

    YubiKey Sign In

  6. Alternatively, if you navigate to the application's URL prior to logging into AMS, you can repeat steps 1 through 5 upon redirect to the AMS login page. Once authentication is complete, you will be redirected to the application's homepage.

Performing Step-Up Authentication using FIDO Credentials

  1. When logged into AMS on a mobile device with your AMS or NIH credentials, you have the ability to step-up to a more secure method using FIDO credentials. Applications allowing FIDO credentials will have the MFA icon to the right of the application link.

  2. From your homepage, you can access any applications with the MFA icon listed under "Open Access, Internet" using this authentication method.

    Note: Applications with lock icons are PIV exclusive and require HSPD-12 access card authentication only.

    Mobile Home Screen

  3. After selecting an application link wit the MFA icon, you will be redirected to AMS-9001M error page where you can select the FIDO credentials option by selecting the FIDO credentials link.

    AMS-9001M error page

  4. You will arrive at the FIDO Authentication page. Connect the FIDO Security Key to your mobile device and select the "Authenticate" button.

    FIDO Security Key Authenticate

  5. Tap the button on your YubiKey token when prompted at the "Sign In" window to proceed to the next step. Enter your PIN in the following window presented by the system and select the "Continue" button. Tap the button on your YubiKey token once again after entering the PIN to complete verification. Once verified, you will be redirected to the AMS homepage.

    YubiKey Sign In

  6. Alternatively, if you navigate to the application's URL prior to logging into AMS, you can repeat steps 1 through 5 upon redirect to the AMS login page. Once authentication is complete, you will be redirected to the application's homepage.

U.S. Department of Health & Human Services
200 Independence Avenue, SW | Washington, D.C. 20201