MFA for Electronic Prescribing for Controlled Substances - Hyperdrive

Electronic Prescribing for Controlled Substances (EPCS) transmits prescriptions for controlled substances electronically from physicians to pharmacies. Additionally, EPCS adds security by requiring auditing, multi-factor authentication, and other legal requirements from the U.S. Drug Enforcement Administration. EPCS removes the need for paper prescriptions by allowing physicians to electronically create, sign and securely transmit such prescriptions. Pharmacies can then use EPCS to receive, review, and dispense these controlled substances.

The Sign-In Widget (third generation) doesn’t support multifactor authentication for third-party agents.

Before you begin

Ensure the following:

  • User:
    • Must exist in an Okta org.
    • Must be assigned the Epic Hyperdrive app in Okta.
    • Must enroll in MFA prior to performing an ePCS transaction.
  • The administrator must configure servers to allow users write access to the Hyperdrive log folder specified during agent install.
    Typically C:\Program Files (x86)\Okta\OktaHyperdriveLoginDevice\logs

Supported authenticators

The following authentication methods are supported:

MFA authenticator



Google Authenticator

On-Prem MFA (RSA)

Security Question

Okta Verify

Phone (SMS and Voice call)

Typical workflow



Configure TLS Configure required Transport Layer Security (TLS), ensuring that you configure TLS 1.2 or higher.
Install and configure Epic Hyperdrive in Okta. Configure groups, MFA, and the Epic Hyperdrive ePCS app.
Download the agent Download the Okta Hyperdrive Agent from the SettingsDownloads page your in Okta org. Locate the agent in the MFA Plugins and Agents section. Ensure that you download the agent to the machine where the agent will be installed.
Install the agent Install the Okta Hyperdrive agent.
Configure Hyperdrive to integrate with Okta Configure Epic Hyperdrive to work with Okta. This requires Epic technical services support.
Test user login process Test login flow