iSupplier FAQs

Multi-factor authentication (MFA) questions:

Open All

Close All

What is MFA?

MFA adds an extra layer of security to the iSupplier login process by requiring users to verify their identity with two or more pieces of evidence (or “factors”) to prove they are who they say they are.

One factor is something the user knows, such as their username and password combination. Other factors are verification methods that the user has, like the code from an authenticator app on a cell phone. A familiar example of MFA at work is the two factors needed to withdraw money from an ATM. Your ATM card is the “something you have” and your PIN is the “something you know.”

Why am I required to use MFA to log in to iSupplier?

In today’s security landscape, threats are growing increasingly common and more sophisticated. The types of attacks that can cripple businesses and exploit consumers are on the rise. MFA can prevent some of the most common types of attacks. Using usernames and passwords alone does not provide sufficient protection because it’s easy for bad actors to exploit weak or reused passwords.

MFA ties user access to multiple, different types of authentication factors, making it much harder for common threats like phishing attacks or credential stuffing to succeed — which ultimately makes your iSupplier environment safer from unauthorized access by bad actors. For example, even if a user’s password is stolen, the odds are very low that an attacker will also be able to guess or hack the code from a user’s authentication app on their cell phone.

Additionally, DOE cyber requirements mandate Sandia utilizes MFA for external facing services.

Can I turn off MFA for iSupplier?

No, MFA is the standard login process for access to iSupplier and is required to help keep your account secure.

How do I reset my MFA Password?

On the iSupplier sign in page click the Forgot password/new user setup link.
Enter the email address associated to your account(s) and click the Send verification code button.
You will receive an email from Microsoft on behalf of iSupplier with a verification code. Enter the verification code in the textbox and click the Verify code button.
Your email address will be verified. Click the Continue button.
Enter a new password in the New Password and Confirm New Password fields.
Click Continue to save the new password.
Click Return to Login to login with your new password.

Screen shots of the steps are available in the iSupplier MFA Help Guide.

Why am I not receiving my MFA email verification messages?

Multi-factor authentication email verification messages with verification codes will originate from Microsoft on behalf of iSupplier <msonlineservicesteam@microsoftonline.com>.

If you have not received your activation email, you will need to update your spam filters to whitelist all messages from msonlineservicesteam@microsoftonline.com to your inbox. If you continue to have issues with your activation email, contact iSupplierMFAHelp@sandia.gov.

What should I do if the device I use for MFA is lost, stolen, or destroyed?

Contact iSupplierMFAHelp@sandia.gov and provide your login username and the supplier under which you are registered.

General iSupplier questions:

Open All

Close All

How do I get access to the iSupplier?

The first step is to be a Registered Supplier with Sandia. If you have registered and still don’t have an account, you can work with Supplier Data Management to request an iSupplier account.

Additionally, if you have a co-worker who has an iSupplier account for your company, they can request an account for you by first adding you as a contact and then requesting an account. See steps for adding contacts in the How to manage your iSupplier Account help guide.

This is my first time logging into iSupplier. What should I do?

Follow the steps outlined in the iSupplier MFA Help Guide.

What is my username?

Your username will default to the email address you provided at the Sandia supplier registration process or during the supplier contact creation process.

The Forgot Password link isn’t working, what do I do now?

Contact the iSupplier MFA technical team at iSupplierMFAHelp@sandia.gov.

My account has been locked, how do I unlock it?

After 10 unsuccessful sign-in attempts, your account will be locked to protect against illegitimate access attempts. Email supreg@sandia.gov to request that your account be unlocked and provide the url of your iSupplier login web page.

I have not received my iSupplier activation email. What should I do?

Once your iSupplier account has been created, the initial FYI email containing login details will come from wforacle@sandia.gov. Check your junk/spam folders for the message if you can’t find your activation email.

If you have not received your activation email, you will need to update your spam filters to whitelist all messages from wforacle@sandia.gov to your inbox. If you still have issue with your activation email, contact supreg@sandia.gov.

My name and/or email address has changed. How can I update it?

Name and/or email address changes can be updated in your supplier contact record.

On the iSupplier home page, navigate to the Admin tab near the top portion of the page.
On the Admin page, there is a menu on the left. Select the Contacts in the menu.
The list of contacts will appear. Find your contact and click the Edit icon (pencil icon).
On the Edit Contact page, make your changes to your name or email and click the save button.
Supplier Data Management will receive a notification that you have requested a change to your contact record. They will review the changes and approve or deny the requested change.

If you don’t see the changes reflected in 48 hours, contact supreg@sandia.gov.

Where can I get information on managing my iSupplier account?

Information and additional resources may be found on our current suppliers page.

Additional Questions:

Open All

Close All

Where can I get information on invoicing?

Information may be found on our accounts payable and invoice review pages.

Where can I get information on performing an AEA Certification?

AEA resources, including iSupplier navigation instructions, are available on our AEA suppliers page.

Where can I get information on responding to a BOW request?

Information about Sandia’s Business Opportunities Website (BOW) may be found on our business opportunities page.

Where can I get information on Certified Payroll?

Information may be found on our construction and facilities page.

Where can I get my performance evaluations?

What is SCORE?
SCORE stands for SubContractor Review and Evaluation (SCORE). It is a process and system used to collect feedback and monitor subcontractor performance in key areas such as quality, delivery/schedule, project management, safety, and customer satisfaction.

When is SCORE Administered?
SCORE evaluations are mandatory for all subcontracts. The SNL Staff are prompted to provide evaluations during invoice actions, including approval, reduction, or rejection of invoices.

What is it Used For?
The SCORE system helps monitor subcontractor’s performance in meeting the requirements outlined in the Statement of Work (SOW) or subcontract terms.

Where to Access for Suppliers:
SCORE evaluation data will be accessible to subcontractors through their iSupplier portal accounts. Subcontractors are encouraged to discuss SCORE data or metrics during relevant meetings.

Who Completes SCORE?
SCORE subcontract evaluations are completed by SNL staff who are associated with the subcontract.

How Does SCORE Impact Suppliers?
Regular performance reviews can help subcontractors recognize their strengths and areas for improvement, fostering a culture of continuous collaboration.