IdenTrust Global Common (IGC) Certificates are cross-certified with the U.S. Federal Bridge Certification Authority, enabling trust by U.S. Federal, State and local governments, along with commercial entities or applications wishing to rely only Certificates proven to be issued in a standards-compliant manner. IGC Certificates are available in Basic, Medium Software and Medium Hardware Assurances. Use cases for IGC Certificates include authentication to networks and applications, digital signing of email, transactions and documents, and encryption of email.
There are many uses for the IGC certificate. These include logging into a specific application, signing or encrypting emails, and digitally signing documents. The government or commercial entity participating in the IGC program defines who is required to have a certificate and the assurance level needed.
There are two certificate types in the IGC program. Please reference (outside link to agency requiring digital certificate use) to identify what certificate type is required for your application/use.
  • IGC Basic Unaffiliated certificate: for an individual, representing him- or herself as a citizen -- used for identity authentication and digital signing.
  • IGC Basic Affiliated certificate: for an individual, representing him or herself as an agent for a business or organization -- used for identity authentication and digital signing.
IGC certificates are valid for a period of one, two or three years. They can then be renewed as early as 90 days prior to expiration. Renewal notifications are sent to account owner email addresses.
Note: Digital certificates are non-transferable to another person or business.
Browsers that support x.509 certificates can use the IGC certificates. Because each browser can store the certificate differently it may effect how the certificate is imported. Use our “How to” section for help with browsers.
Applicants should allow 3-5 days for the application to be approved, after all documents have been received by IdenTrust. Once approved, a welcome letter is mailed to the applicant’s address of record and will allow for immediate certificate retrieval.
To protect the identity of IGC certificate holders, only the certificate holder should be using the digital certificate. Allowing others to use your certificate through sharing your password, password or private key weakens the security of the system and presents a security danger to the certificate holder. Those certificate holders found to have shared this confidential information will be notified that their certificates can be revoked.
If you have forgotten your password, and know your account number, you can request automated password assistance by following these simple steps.

  1. In your web browser, browse to
  2. Click on the Certificate Management Center
  3. Click on the orange Login prompt on the left hand portion of your screen
  4. When the Choose a digital certificate windows prompt appears, click Cancel
  5. Enter in your account number, then click on the I forgot my password link
  6. You will receive an email from us with instructions on how to reset your password.

Please note: IdenTrust does not have access to any passwords and does not have the ability to reset for you. If you forgot your password, and you are unable to reset your password through the instructions above, it is like losing a driver’s license or passport. You will need to apply for and purchase a new digital certificate.
If at any time the IdenTrust customer support staff has a belief that the private key (password) is/was compromised by anyone other than the certificate account owner, they are required by IdenTrust company policy, IGC Certificate Policy (CP) and IGC Certificate Practice Statement (CPS) to protect (revoke) the certificate.

Typical examples encountered by the customer support team:
  • Certificate owner is not the one who filled out the application, but is calling in for support. Although they are account owner, they typically cannot answer questions about information contained in the application.
  • Certificate owners CPAs has full custody and access to the certificate and the password.
  • Certificate owners delegating use of the digital certificate to peers.
  1. Log into our online Certificate Management Center: If it asks you to choose a certificate to log in with, click ‘Cancel’. Enter in your account number, and IdenTrust Password. (the password you entered when first applying for the certificate).
  2. Look for the drop-down box under the listing for your “Valid Certificates”. Select “I would like to replace my certificate”, and click the ‘Continue’ button.
  3. Follow the onscreen instructions to retrieve the new certificate. Note: it will give you a new activation code to use during the retrieval. You should write that down.
  4. At the end of the retrieval, it will tell you to “Verify” the installation. Be aware that if using Internet Explorer, this will fail the first time (because you had to click ‘Cancel’ on step #1), but it will give instructions to follow to successfully verify it.
Visit our support site: Click on How To (middle of page), then click on the Backup / Export a certificate link. Also shown below:

Internet Explorer
  1. Click on ‘Tools’ menu; on ‘Internet Options’; ‘Content’ tab; ‘Certificates’ button.
  2. Click once on the certificate you wish to export.
  3. Click the ‘Export’ button, and click ‘Next’ on the first screen.
  4. Make sure that “Yes, export the private key” is chosen, then click ‘Next’.
  5. Leave the box of “Enable strong protection” checked. Although not necessary, we also recommend putting a check in the “Include all certificates in the certification path if possible” box. Click ‘Next’.
  6. It will now ask for a new password to be created. Type in any password of your choosing. (and re-type it in the appropriate box). Keep in mind that it is case-sensitive. Any capital letters you use will also need to be used later. Click ‘Next’.
  7. Click the ‘Browse’ button. Choose a drive and folder you would like to store the file. Then type in a name you would like the file to have. Click ‘Save’. Click ‘Next’.
  8. Click ‘Finish’. If it asks you to click OK, do so. If it is asking for a password, then this would be the same password it asks for when you normally use the certificate online. NOTE: the saved file will look like an open envelope with a key in front.

Mozilla Firefox
  1. Click the ‘Tools’ menu at the top of Firefox.
  2. Click ‘Options’.
  3. Depending on your version of Firefox, you will either have icons on the left side or on the top of the options window.
  4. Click the ‘Advanced’ icon.
  5. Open the ‘Certificate Manager’ window:
    If your icons are on the top of the Options window, click the ‘Security’ tab, then click ‘View Certificates’.
    If your icons are on the left side, look for ‘Certificates’ in the main part of the Options window. Under the ‘Certificates’ heading, click ‘Manage Certificates’.
  6. Select the certificate you want to export, and click the ‘Backup’ button.
  7. Choose the location to save the certificate file being created, and give it a name, then click ‘Save’.
  8. If prompted, enter the master password for the “Software Security Device” and click OK.
  9. Create and confirm a backup password to protect the file being created, then click OK.
  10. You should see an Alert saying ‘Successfully backed up your security certificate(s) and private key(s)’.
Please contact the IdenTrust customer support team at: 888-339-8904. Please have your existing account number available and our team will be able to identify what you purchased vs. what you need. As different certificates have different governing policies and practices, we cannot modify or change the account type. You will need to apply for the correct certificate type.
Hardware Certificates are not currently supported on MAC.

Software Certificates are supported in Safari on the Apple Mac computer.

Please contact the IdenTrust customer support team if you need assistance retrieving a certificate on this platform.
The IdenTrust customer support team is available to assist certificate account owners Monday through Friday, 6 m. - 6 p.m. Mountain Time (8 m. - 8 p.m. Eastern Time) and via e-mail at and via a toll-free phone: 888-339-8904. After normal business hours, IdenTrust utilizes an answering service who will take a message for next business day call back and to report IdenTrust system down emergencies.
IGC Basic Unaffiliated Browser
IGC Basic Unaffiliated Hardware
IGC Basic Affiliated Browser
IGC Basic Affiliated Hardware
IGC Medium Affiliated Browser
IGC Medium Affiliated Hardware
IGC Medium Device Browser
IGC Medium Device SSL
IGC PIV-I Affiliated
Using an IGC certificate allow individuals access to more information and services electronically.

Using an IGC certificate could also reduce cycle time and increase the efficiency of transactions with entities. This is accomplished through converting from paper-based to electronic processes. IGC certificates enable organizations and to authenticate individuals in electronic transactions and gain assurance of an individual’s identity prior to granting confidential information access.

IGC certificates can facilitate digital signing and can be used in place of an ink signature in some instances.

IGC certificates may be purchased directly from the IdenTrust website. In some cases, a participating agency may cover the costs for people under that agency or for those who are required to obtain an IGC certificate to interact with that agency. If you would like to find out if your certificate costs are covered by a participating agency, please contact that agency directly. IdenTrust does not directly participate in these certificate cost concessions.

Warning, to protect the identity of IGC certificate holders, only the certificate holder should be using the digital certificate. Allowing others to use your certificate through sharing your password, password or private key weakens the security of the system and presents a security danger to the certificate holder. Those certificate holders found to have shared this confidential information will be notified that their certificates can be revoked.