Certificates (which you need to install for each web browser on each computer or device that you use) allow you to access secure web services at MIT, such as SAPweb, WebSIS, and Stellar, or to access any MIT certificate-protected site.
Certificates are a safe way for our web applications to identify you without you needing to type in a username and password. Certificates expire once per year, creating the need to renew them annually.
- Get the MIT Certificate Authority (MIT CA) (if you don't have it already)
- Get or Renew Your MIT Personal Certificate
Personal certificates obtained starting June 28, 2012 are good until August 1, 2013. The MIT Certificate Authority (CA) is good until August 2026. Learn more.
Certificates are a safe way for our web applications to identify you without you needing to type in a username and password.
To access MIT's secure web servers you actually need two different types of certificates: the MIT CA (Certification Authority), and your MIT personal certificate.
The MIT CA (Certification Authority) authenticates the secure web server to your computer. MIT CAs are valid for several years.
Note: Browsers come with a group of other certificate signers (also known as certificate or root authorities) pre-installed; you are adding the MIT Certification Authority to this group.
Your MIT Personal Certificate "authenticates" you and your computer to the web page or application you are accessing. This personal certificate is "signed" by the MIT CA and associates you with your Kerberos username and password. It proves to the secure web server that you are who you claim to be.
Before you can get MIT web certificates, make sure you have the following:
- Your valid MIT ID number.
- Your Kerberos username and password (same as for Athena, MITnet, MIT email, or SAP).
- An MIT-supported browser installed on each computer for which you are getting certificates; see Web Browsers at MIT.