HL7 Electronic Health Record System Functional Model, Release 2.1.1
2.1.1 - International flag

HL7 Electronic Health Record System Functional Model, Release 2.1.1, published by HL7 International / Electronic Health Records. This guide is not an authorized publication; it is the continuous build for version 2.1.1 built by the FHIR (HL7® FHIR® Standard) CI Build. This version is based on the current content of https://github.com/mvdzel/ehrsfm-fhir-r5/ and changes regularly. See the Directory of published versions

Requirements: TI.2.1.2.3 User Authentication (System Prompt for Password Change) Security Audit Trigger (Function)

Official URL: http://hl7.org/ehrs/uv/ehrsfmr2/Requirements/EHRSFMR2-TI.2.1.2.3 Version: 2.1.1
Standards status: Normative Active as of 2025-10-31 Computable Name: TI_2_1_2_3_User_Authentication__System_Prompt_for_Password_Change__Security_Audit_Trigger

Manage Audit Trigger initiated to track user authentication (system prompt for password change).

Statement N:

Manage Audit Trigger initiated to track user authentication (system prompt for password change).

Description I:

Capture user authentication (system prompt for password change), both routine and exceptional, including key metadata (who, what, when, where, why).

Criteria N:
TI.2.1.2.3#01
SHALL

The system SHALL audit each occurrence of user authentication when user is prompted to change password.
TI.2.1.2.3#02
SHALL

The system SHALL capture identity of the organization.
TI.2.1.2.3#03
 conditional
SHALL

IF known, THEN the system SHALL capture identity of the user.
TI.2.1.2.3#04
SHALL

The system SHALL capture the identity of the system.
TI.2.1.2.3#05
SHALL

The system SHALL capture the event initiating audit trigger.
TI.2.1.2.3#06
SHALL

The system SHALL capture the date and time of the event initiating audit trigger.
TI.2.1.2.3#07
SHALL

The system SHALL capture identity of the location (i.e., network address).
TI.2.1.2.3#08
 conditional
SHALL

IF password change successful, THEN the system SHALL capture the new password.