MIT IS&T
MIT IS&T

Certain web applications at MIT require authentication using a personal certificate rather than Touchstone. Install a personal certificate in each web browser you use to access a web access requiring certificate authentication. Personal certificates expire every year on July 30.

Available To 
Students, Faculty, Staff, Affiliates

Benefits and key features

Certificates are a safe way for MIT web applications to identify you without you needing to type in a username and password.

Personal certificates expire every year on July 30 and must be renewed annually. The MIT Certificate Authority (MIT CA) is valid until August 2026.

To access certificate-protected sites at MIT, you need the following:

  • The MIT Certificate Authority (MIT CA) authenticates the secure web server to your computer. They are valid for several years. You'll be adding the MIT CA to a group of other certificate signers within each of your web browsers.
  • Your MIT Personal Certificate authenticates your computer and provides access to restricted web pages or applications. It is "signed" by the MIT CA and associates you with your Kerberos username and password, proving to the secure web server that you are who you claim to be.

Requirements

Before obtaining certificates, make sure you have the following:

Getting started

If you've done this before and just want to get/renew your certificates:

We strongly recommend using CertAid to configure your certificates for any current version of Chrome, Edge, Firefox, or Safari. CertAid manages the entire certificate setup procedure, giving you a more reliable installation experience. The setup procedure includes installing the MIT CA as well as your personal certificate.

Older and non-standard browsers may not support certificates installed using CertAid, in which case you may be able to install a certificate manually via the Get an MIT Certificate page. See all your options by visiting Certificates in the Knowledge Base.