ONE ID Access and Identity Management

ONE ID ensures that only health care professionals and their staff have access to a patient’s personal health information

What is it?


ONE ID is our identity and access management solution. It provides and manages credentials that clinicians can use to access provincial EHR services, and enables single sign-on to these services using their existing credentials. It also enables patient context sharing. ONE ID also provides capabilities such as authorization and risk-based authentication used to secure access to provincial EHR services. 


  • Single sign on allows the use of the same digital identity to access multiple ehealth services, thereby reducing the number of IDs and passwords a user must manage and remember.


  • Patient context sharing makes it easier for clinicians to use multiple applications in providing care. Patient Context comprises a set of patient identifiers, such as health card number, MRN, name, and date of birth. Once users/clinicians establish patient context in a service, then the patient content ‘follows’ them as they navigate to other services within the same session.


How ONE® ID Works


  • The identity information of perspective users is verified through a managed registration process.
  • This identity information is entered into the ONE® ID system and used to create a credential (user account) which is tied to the registrant’s “real world” identity.
  • This credential, in turn, is enrolled for access to the appropriate services.




For complete information on ONEID at eHealth Ontario, please visit

Full Service Offerings



Service Details

ONEID Account Management

What ONEID account is used for, how to "Self-Complete" registration, as well as ONEID Account Management

Cert Support (For Individuals)

Overview of certificates and how they are used, as well as details on how to create a cert once registered for Full Services

SAML Support  (For Individuals)

Overview of Security Assertion Markup Language and how it is used, as well as SAML creation overview


Overview of eHealth Ontario Identity Federation - a network whose members either provide or access electronic health services (“Federated Services”) over the Agency’s Federated System




Full services require the use of ONE ID and the HIAL. Ensure your code has authorization, authentication, and message payload pieces embedded before testing. Need help? Review the specifications under resources, or submit a question to the Forum and a Lab representative will be happy to help.



    • Allows ehealth application service owners to provide access to their service offerings in a highly secure, controlled and efficient manner
    • Enables access to multiple ehealth services via a single login ID and password
    • Sponsorship framework identifies eligible health care providers for access to ehealth services
    • Authorization model enables organizations to identify individual users for access to ehealth services
    • Enhanced privacy and security safeguards help protect patient and registrant information