Configuring and Using Two-Factor Authentication for Your Direct Cert Portal

Two-factor authentication increases the security of your Direct accounts by allowing you to require two methods of identity verification before someone can log into the Direct Cert Portal to access their account. You can require two-factor authentication for all account users and for specific individual users (i.e., Jane Doe in IT).

Direct ISSOs
If you are a Direct user who has the ability to approve certificate requests (ISSOs), see Two-Factor Authentication Requirements for Direct ISSO Accounts.

Configuring Your Two-Factor Authentication Rules

These instructions are for Direct admins and explain how to configure your Two-Factor Authentication rules/requirements for your Direct account.

Using the Second Factor of Your Two-Factor Authentication

These instructions explain how to use Two-Factor Authentication after it has been configured for your Direct account. The instructions are divided into two sections: Admin Specific instructions and User instructions.

User Instructions

Admin Specific Instructions

Managing Your Client Certificate

After generating a Client Certificate as the second factor for your authentication process, we recommend that you back it up. Once you have backed up (exported) your Client Certificate, you can do the following things with it, if needed:

  • Import it into other Certificate Stores so that you can use multiple Web browsers to log in to your Direct account.

  • Transfer it to another computer should you get a new one. Then, you can install it in the necessary Certificate Stores on your new computer.

For instructions about how to verify Client Certificate installation, back up/export your Client Certificate, and import your Client Certificate. See Managing Your Client Certificates.