UW Digital ID - LRA - Credentialing Process

UW System sunsets Personal Digital Certificates (UW Digital ID) service for all system campuses and affiliates effective June 30, 2022. As of March 01, 2022, no new requests for individual Personal Digital Certificates (UW Digital ID) will be issued.

This document outlines the credentialing requirements for local registration authorities at each of the UW System campuses.

Local Registration Authorities (LRAs) are authorized individuals with the ability to identity proof an individual. This is also known as the credentialing process for UW Digital ID.

This credentialing process ensures that the customer who requested the Digital ID (personal certificate or OTP token) is the individual they claim to be, which provides higher assurance of identity.

General Credentialing Steps

To credential a customer, you will need two (2) forms of identification from them, one from each category below:

  • UW Affiliation: UW ID Card, UW Health Card, HR Verification Form, Notary Public Form
  • Government-issued ID: State-issued Photo ID, US Military Card, Passport

Notary Public

If a notary public provided the first form of identity, a second form of identity is not necessary.

For each form of identification, verify the following pieces of information:

  • Full Name
  • Photo, if present
  • Expiration Date, if present (must be unexpired)

One-Time Password (OTP) Token

  1. Navigate to https://uwdigitalid.wisconsin.edu and log in with your institutional credentials.

  2. Enter your one-time generated password at the prompt.

  3. Click Administration in the left-hand sidebar.

  4. Search for the customer's OTP request. To view all OTP requests not yet credentialed for your campus, you can specify the following search parameters:

    • Campus: The campus you want to search for (e.g. Madison)
    • Status: SUBMITTED
    • Type: OTP Token
  5. Select the person you would like to credential.

  6. Verify the user's identity as described above.

  7. Once you've verified the user's identity, click Credential in the actions menu.

  8. Enter the two forms of identification used in the credentialing process. Click Yes.

  9. The request is now credentialed. Please refer to the following KB documents to activate the specific kind of OTP token selected:

Personal Digital (S/MIME) Certificate

  1. Navigate to https://certs.uwdigitalid.wisconsin.edu.

  2. Find the request you would like to credential and click Credential under the Action header.

  3. Verify the user's identity as described above.

    If a Notary Public Form was used as the first credential, you may select "N/A" as the second credential.

  4. Once the request has been credentialed, click Send to Comodo under the Action header.

  5. Once you see Processed under the Status header, the request has been credentialed and sent to Comodo. The customer will receive an email when their certificate is ready (usually within a few minutes).


Other Questions

If your question has not been answered in this guide, please contact the UW Digital ID team at uwdigitalid@doit.wisc.edu.

Keywords:uw digital id local registration authority lra credentialing process credential identity proof   Doc ID:68615
Owner:Marc T.Group:Identity and Access Management
Created:2016-11-10 14:05 CDTUpdated:2022-06-27 08:41 CDT
Sites:DoIT Help Desk, Identity and Access Management
Feedback:  0   0