The Federal Reserve Board provides web-based access to selected data
and applications for federal, state, or foreign financial supervisory agencies
by leveraging public key infrastructure (PKI) technology. Access
to data and applications is protected through the use of digital certificates
issued by the Federal Reserve Banks, with oversight from the Board,
to ensure strong mutual authentication between the end user's browser and
the application servers. The certificate must be stored
on a USB token; therefore, Windows 2000 or higher and Internet
Explorer are required.
Follow the steps below to get started using this PKI technology.
An End User Authorization Contact (EUAC) must be established by the agency
or organization before any certificates can be issued to subscribers (individual
employees). The EUAC validates the identity and access requirements of each
subscriber and ensures that the participant (agency or organization) and its
subscribers abide by the terms of the Certification
Practice Statement. Two EUACs must be established per participant via
the Participant EUAC Designation
and Authorization for Web-Based Business Applications form.
Refer to our detailed instructions and field
descriptions when completing the form.
Next, each subscriber requesting access to web-based Federal Reserve data or
systems should complete a separate
Federal Reserve Board External Subscriber Certificate and Access Control Request form.
Refer to our detailed
instructions and field descriptions
when completing this form, which authorizes the Federal Reserve to create a
credential granting the designated individual access to the data and
applications indicated. The Federal Reserve Board External Subscriber Certificate and Access Control Request form may be submitted simultaneously with your EUAC Designation form or at
any time after your EUAC Designation form is on file with the
Federal Reserve Board.
Once the subscriber’s request has been received and validated by the Federal
Reserve Board’s registration authority, it will be processed for certificate
issuance. The EUAC will receive an e-mail with one set of codes, and the
subscriber will receive an e-mail with another set of codes. These codes,
combined during a process outlined in the Certificate Retrieval Procedures, create the
certificate. Storage and handling of the certificate must be in accordance with
the Certification Practice Statement and the Instructions
for PKI Certificate Retrieval and Usage for External Subscribers.