Access Keys:
Skip to content (Access Key - 0)

Certificates Landing Page

On this page:

Overview

Certificates are used to authenticate you to web services at MIT. Certificates are a safe way for our web applications to identify you without you needing to type in your Kerberos username and password. Certificates expire once per year, creating the need to renew them at least this often. They must be installed on each browser for each device that you plan on using to access certificate-protected sites.

Get Certificates

If you have not changed your password in the past year, you will need to do so before you can get certificates. Certaid will give you an error saying you're not logged in if you need to update your password.

If your Windows computer is on the MIT domain and you are not on campus, please refer to this article about changing your password to make sure you will be able to log into your computer with your new password. For more information, see: Remote Domain Computers and Password Changes.

Android

iOS

Using CertAid (Windows and Mac)

IS&T strongly recommends using CertAid to configure your certificates for Chrome, Safari, and Firefox 90 and above. CertAid manages the entire certificate setup procedure, giving you a more reliable installation experience. The setup procedure includes installing the MIT CA (Certificate Authority) as well as your personal certificate, optionally deleting old certificates, and setting the correct identity preferences via a single, graphical application.

CertAid does not run on mobile devices (i.e., iOS and Android devices)
Windows
  • Edge, Chrome, and Firefox 90+: CertAid 2.2.6 for Windows
    Microsoft Edge needs to at least be installed on the Windows machine in order to fully run.
MacOS X

Other

Deleting Old Certificates

IS&T Strongly Recommends Deleting Your Old/Expired Certificates
Old certificates can confuse browsers and web-sites causing them to fail to authenticate you properly with your active certificates. The easiest way is to use Certaid (see above).

If you need to retain access to old user certificates, e.g., for access to encrypted mail, you should export them from your browser and save them for use with your legacy items.

Troubleshooting

For More Information

Still Need Help?

Send an email to the IS&T Service Desk or call us at 617 253-1101.

IS&T Contributions

Documentation and information provided by IS&T staff members


Last Modified:

July 23, 2024

Get Help

Request help
from the Help Desk
Report a security incident
to the Security Team
Labels:
c-certificates c-certificates Delete
certificates certificates Delete
certificates_at_mit certificates_at_mit Delete
certificate certificate Delete
install_certificates install_certificates Delete
remove_certificates remove_certificates Delete
renew_certificates renew_certificates Delete
firefox firefox Delete
safari safari Delete
ist-top-five ist-top-five Delete
Enter labels to add to this page:
Please wait 
Looking for a label? Just start typing.
Feedback
This product/service is:
Easy to use
Average
Difficult to use

This article is:
Helpful
Inaccurate
Obsolete
Adaptavist Theme Builder (4.2.3) Powered by Atlassian Confluence 3.5.13, the Enterprise Wiki