Who is affected by this change?

This affects CareFirst BlueCross BlueShield on Commercial plans.

When does this change take effect?

This change is effective Aug 17, 2025.

Back to dashboard

CommercialAdministrativeMedium impact

Required Password Reset, Passwordless Authentication Option Coming to the CareFirst BlueCross BlueShield Provider Portal

CareFirst BlueCross BlueShield·Provider News

Effective date

Aug 17, 2025

We identified it

Jun 20, 2026

Days to comply

—

Summary

CareFirst BlueCross BlueShield will require all Provider Portal (CareFirst Direct) users to reset their passwords starting August 17, 2025, with optional enrollment in passwordless authentication using passkeys and biometric verification. This is a security enhancement that affects portal access but not billing processes directly.

Action Required

Action needed

By August 17, 2025: All staff who access the CareFirst BlueCross BlueShield Provider Portal (CareFirst Direct) must reset their passwords when prompted. Consider enrolling in passwordless authentication options like passkeys or biometric verification for enhanced security and easier access. Review the provided FAQ for step-by-step instructions before the rollout date.

Related policy hubs

CareFirst BlueCross BlueShield policies