Help Centre

NHS CIS2 (Care Identity Service 2) allows NHS staff to sign in to Folelse using their NHS Smartcard. This requires the SSO add-on and coordination with your Registration Authority (RA) Manager.

Prerequisites

• SSO add-on enabled on your Folelse plan.
• NHS organisation with an active CIS2 / Identity Agent integration.
• Contact with your Registration Authority (RA) Manager.
• Your ODS code entered in Settings → Organisation Profile.

How NHS CIS2 SSO works

Staff insert their NHS Smartcard into a card reader and authenticate using their passcode. NHS Identity (CIS2) then passes a signed assertion to Folelse confirming their identity, role, and organisation. No separate Folelse password is needed.

Setup steps

1. 1 Go to Dashboard → Settings → SSO.
2. 2 Select "NHS CIS2" as the provider.
3. 3 Copy the Redirect URI shown on screen.
4. 4 Contact your RA Manager or NHS IT team and provide them with the Redirect URI.
5. 5 They will register Folelse in your CIS2 environment and provide you with a Client ID and Client Secret.
6. 6 Enter the Client ID and Client Secret in Folelse → Settings → SSO.
7. 7 Click Save and Test Connection.
8. 8 A test authentication prompt appears in a new window — insert your Smartcard and authenticate.

User provisioning with CIS2

When a user signs in via CIS2 for the first time, Folelse checks if their email address matches an existing user account. If it does, they are signed in. If not, they are shown an error — an Admin must first add them as a user in Dashboard → Users.