Contact DigiCert and Activate Two-Factor Authentication for Your DigiCert Account

Before contacting your account representative or our Support team, you need to decide which two-factor authentication option will work best for your DigiCert account.

If you have a Direct account, you don’t need to select a two-factor authentication option nor do you need to contact your account representative to activate two-factor authentication for your account. See 3. Direct Customers Only.

1. Decide Which Two-Factor Authentication Option is Right for Your DigiCert Account

Do Not Force

Use this option if you need to control whether two-factor authentication is required.

  • You can turn two-factor authentication on and off yourself.

  • You can configure your own account-wide rule requiring all account users to complete their DigiCert Management Console log-in by presenting their Client Certificate.

  • You can configure rules for members of roles or specific individual users and require them to use a Client ertificate as their second factor authentication requirement.

  • You can configure your own account-wide rule requiring all account users to complete their DigiCert Management Console log-in with a one-time password generated on their OTP App Device.

  • You can configure rules for members of roles or specific individual users and require them to use a one-time password (OTP) as their second factor authentication requirement.

  • You can activate the Remember verification for this computer for 30 days check box for your account users, if needed.

Client Certificate

Use this option if you need to require two-factor authentication for your DigiCert account, and you need the second factor to be a Client Certificate.

Client Certificate

  • Two-factor authentication is automatically turned on and required for your DigiCert account.

  • An account-wide rule is automatically configured requiring all account users to complete their DigiCert Management Console log-in by presenting their Client Certificate.

  • The next time anyone (including you) logs into the DigiCert Management Console, they will be required to generate and initialize their Client Certificate.

  • To turn off two-factor authentication, you must contact DigiCert.

  • To change the second factor authentication requirement for the account, you must contact DigiCert.

  • If you do not need any more granular requirements, you are done.

  • You can configure rules for members of roles or specific individual users and require them to use a one-time password (OTP) as their second factor authentication requirement, if needed.

One-Time Password (OTP)

Use this option if you need to require two-factor authentication for your DigiCert account, and you need the second factor to be a one-time password.

Client Certificate

  • Two-factor authentication is automatically turned on and required for your DigiCert account.

  • An account-wide rule is automatically configured requiring all account users to complete their DigiCert Management Console log-in with a one-time password generated on their OTP App Device.

  • The next time anyone (including you) logs into the DigiCert Management Console, they will be required to initialize their OTP App Device.

  • To turn off two-factor authentication, you must contact DigiCert.

  • To change the second factor authentication requirement for the account, you must contact DigiCert.

  • You can activate the Remember verification for this computer for 30 days check box for your account users, if needed.

  • If you do not need any more granular requirements, you are done.

  • You can configure rules for members of roles or specific individual users and require them to use a Client Certificate as their second factor authentication requirement, if needed.

 

2. Contact Us to Activate Two-Factor Authentication for Your DigiCert Account

Enterprise Customers:
Contact your account representative or contact our Sales Team:
sales@digicert.com or Sales Toll Free: 855-800-3444.

Retail Customers:
Contact our Support Team
support@digicert.com or Direct Phone: 1-800-701-9600

 

3. Direct Customers Only

Because of recent FBCA certificate policy changes, DigiCert has activated two-factor authentication for your Direct Cert Portal (Settings > Authentication Settings). You don’t need to contact your representative to activate it. For non-ISSO users, you control whether two-factor authentication is required and the type of two-factor authentication. See Direct Cert Portal: Two-Factor Authentication.

Direct ISSO Accounts

If you are a Direct user who has the ability to approve certificate requests (ISSOs), you must log into the Direct Cert Portal using two-factor authentication. See Two-Factor Authentication Requirements for Direct ISSO Accounts.