You are here

Requesting A Token

Step One – Registering with MIS

To request a DOE Two-Factor Authentication Token you must first register in DOE’s Management Information System (MIS) by going to, selecting “Requesting Access” and following the onscreen instructions.

Note: DOE Federal employees are already registered and do not need to complete this step, they may skip to step 2

During the registration process you will be required to search for, and select, a DOE sponsor. Your DOE sponsor is the DOE federal employee that is certifying that you have a recognized relationship with the Department and have a valid need for a DOE Two-Factor Authentication Token. For contractors this person is often your Contract Task Manager, Contracting Officer's Representatives (COR), or Contracting Officer's Technical Representatives (COTR). The onscreen instructions will explain how to search for and select your DOE sponsor.  You must have a DOE federal employee as your sponsor in order to move forward with obtaining a DOE Two-Factor Authentication Token.

At the end of the registration form you will be given the opportunity to add additional information in a “Comments” section. You MUST include the following information in that section:

  • That this is a request for a DOE Digital Identity
  • You must supply your Local/lab sponsor's contact information including their:
    • Name
    • Phone Number
    • Business Email Address
    • DOE Site Name (i.e. Headquarters, the name of the DOE Lab, or the name of the DOE Field Site)

Once your MIS request has been approved by your DOE federal sponsor you will be notified via email. The next step is for you to be Identity Proofed by a DOE Trusted Agent.

Note: Please make sure once you have your login credentials for MIS you log in and set up your security questions. These are important as you will not be able to receive codes, support, or assistance without being able to answer the security questions.

Step Two – Receiving Your Token

Customers that are unable to physically arrive at the Token distribution locations will need to make other arrangements. These customers should contact their Headquarters IT point of contact, or manager, to arrange for a representative to pick up the RSA Authentication Token on their behalf. The representative can email the EITS Service Desk at  to schedule an appointment.

The representative will be required to sign a Custody Sheet, and identify the recipient of  Token. The Support Staff at the distribution location will release the Token to the representative. The representative will ship the Token to the intended recipient.

Section Three – Completing the Agreement Form

Before the Token can be activated you will need to print, read, and complete the portion in the blue box of the Subscriber Agreement form. Take the completed form to a DOE Trusted Agent so that they may verify your identity and complete their portion of the form. It is a requirement that the identity of a DOE Two-Factor Authentication Token subscriber be verified against acceptable identity source documents. You must present the required documents when you meet with the Trusted Agent.

The DOE Trusted Agent will examine and record certain information gathered from your identity source documents as part of their duties. The DOE Trusted Agent will then fax the completed User Acknowledgement Agreement form to the DOE Headquarters PKI Support Team at 301-903-2172. The DOE Trusted Agent will maintain the original User Acknowledgement Agreement form at their facility, or they may mail the original to:

Department of Energy
Greg Doan
19901 Germantown Road
IM-622          CA-126
Germantown, MD 20874

Once the original or faxed copy of the completed Subscriber Agreement form is received by the DOE Headquarters PKI Support Team, and Federal Sponsorship is validated, your Two-Factor Authentication Token will be assigned to you.

Please contact the DOE Headquarters EITS Service Desk at if you have any further questions or to obtain a copy of the Subscriber Agreement Form.