What You’ll Need
Before making client certificate requests, you MUST know all of the DoD systems you will need to access to get at least the minimum level of assurance of ECA Certificate you’ll need to access ALL of those sites.
NOTE: Defense Intelligence Information Enterprise (DI2E) Site, requires different access levels within the site which may make your level of ECA Certificate vary you MUST be approved by the web site manager for every level of access.
The various levels of ECA Client Certificates are listed below from highest level of assurance to lowest level of assurance:
- ECA Medium Hardware Assurance (hardware-based; requires an appointment with an LRA for the request process and certificate download process)
- ECA Medium Token Assurance (hardware-based; can be done at the subscriber’s office for the request process and the certificate download process)
- ECA Medium Assurance (software-based; can be done at the subscriber’s office for the request process and the certificate download process)
Please note that there are a few agencies that may require some subscribers to obtain a higher level of assurance than just the ECA Medium Assurance Certificates to digitally sign and exchange encrypted emails and to digitally sign a Portable Document Format (PDF) File.
The ECA Non-Client Certificates consist of Code Signing Certificates, MFOM Certificates (special program for contractors and DOD Personnel assigned to certain DOD Organizations), TAXII Certificates (special program with the DHS), Component/Server/SSL Certificates, Domain Controller Certificates, and VPN IPSec Certificates.