It’s MIT certificate renewal season!
June 20, 2018
MIT certificate image
Image: Jess Archer

The MIT certificate(s) installed on your computer will expire on July 31, 2018. You must renew these certificates by that date to retain access to MIT’s secure web applications, including Atlas, WebSIS, Stellar, software downloads, and more.

You'll need to renew the certificate for each browser on every computer you use. Renewal consists of downloading replacement certificates for your expiring ones.

Note: If your Kerberos password is over a year old, you will be required to change it during the certificate renewal process. Choose a strong password. Consider using LastPass to save passwords and increase your online security.

CertAid can be used to quickly install new certificates for Chrome, Internet Explorer, and Safari. For Firefox, go to the Get an MIT Certificate page to manually install a new certificate.

Once you install new certificates, deleting your old ones may help you avoid problems accessing sites and resources. CertAid will prompt you to delete these old certificates after the new ones have been installed. IS&T recommends deleting your old certificates unless you use S/MIME to sign or encrypt emails, in which case you should not delete them.

Having a valid certificate is the first step in verifying your identity via MIT’s Touchstone authentication service. The second step is provided through Duo two-factor authentication. To access MIT’s secure online spaces, you need both a valid certificate and a device registered for use with Duo.

If you have any questions or concerns, contact the IS&T Service Desk.

3 Comments

|Login to Comment on this story

rmaher@mit.edu | Jun 28, 2018 | 2:44 PM

Ok, but how do I actually renew my cert?

loudib@mit.edu | Jul 13, 2018 | 2:37 PM

Good question!

ajmendez@mit.edu | Jul 17, 2018 | 11:14 AM

Renewal consists of downloading the replacement certificate for your expiring ones, meaning that you will need to download again Cert Aid and it will ask you automatically to renew the certificate....Also it will ask you to change Kerberos password if it is over a year old.