Some providers have recently received the error message "Not valid CSRF prevention token" when attempting to use the SFTP web login. The error is due to a security patch, but is not actually being returned to you by Aetna's server.  It is a local browser error. The server is making sure that you are using a brand new CSRF prevention token every time you log in. Your server is retaining information in cookies, history, forms, and even attached to the favorite you saved.

 

To avoid this problem, please do a complete cleanup of your browser, delete the site from your favorites, and restart your computer completely. Once you are back on line, copy and paste this into your address bar:  https://st3.aetna.com, and save to favorites immediately.  It is very important that you save it to favorites before you log in, and that will help you open a brand new session every time.

 

As always, don't hesitate to contact your Provider Relations Liaison with any questions or comments. You can find this notice and all other provider notices posted on our website.

 

Thanks for all you do.