Page tree




MAG Application and FIS Administrators

Administrator Training

Exostar's Training Team offers bi-monthly Organization and Application Administrator training, live, via WebEx. Please see the MAG Webinars page for registration information, as well as training event dates.


Responsibilities of Application Administrators

Application Administrators routinely perform these common application access tasks in Managed Access Gateway (MAG):

    • Approve Terms & Conditions for applications
    • Approve, deny, or suspend access to applications for users
    • Request access to applications
    • Manage E-mail Subscriptions (related to MAG administration)

Scroll to the sections below for the step-by-step instructions on how to perform these tasks.



Manage Application Access


Accept Terms and Conditions

Step 1.  Log into your MAG account. On your Home tab, the application displays Pending Acceptance of Terms and Conditions.

Step 2.  Click View Service Agreement.

Step 3.  Click I Agree.

NOTE: Once you receive the confirmation message, users within your organization can request access to the application.  You can only accept Terms and Conditions for applications you administer.


Approve or Deny Application Requests

Step 1.  Log into your MAG account, click the Registration Requests tab. 

Step 2.  Click Authorize Application.

Step 3.  If there are pending requests, the user's application request displays.

Step 4.  Click the hyperlinked Request ID.

Step 5.  Review the information and click Next.

Step 6.  Select Approve or Deny from the drop-down menu.  If denying, you are required to enter comments.

Step 7.  Click Next.


Request Application Access

Step 1.  Log into your MAG account, click the Administration tab.

Step 2.  Search user, and click user ID link to open user’s profile.

Step 3.  Under Application Settings, click Request Access next to the desired application.

NOTE:  If you requested application access on behalf of a user, the request does not require you to manually approve or deny the request from the Registration Requests tab. 

Step 4.  After clicking Request Access, a comments box displays. If needed, enter additional comments. For applications that require SP Administrator approval, the SP Administrator is able to view your comments.

Step 5.  Enter comments and click Submit. When the SP Admin views the request, comments display.


Suspend Application Access

Step 1.  Log into your MAG account, click the Administration tab.

Step 2.  Search user, and click user ID link to open user’s profile.

Step 3. Under Application Settings, click Suspend next to desired application.

Step 4.  Select suspension reason in pop-up window. Click Suspend.


Email Subscription Management

Email Subscription Management provides the ability for Application Administrators to disable certain email notifications such as profile updates, email updates, or user registration notifications. To manage email subscriptions:

Step 1.  Log into your MAG account.

Step 2.  Click the Gear Icon (top, right corner) and select Email Settings.

Step 3.  Select email notifications you want to turn on or off.

Step 4.  Click Submit.



Responsibilities of FIS Administrators


FIS Administrators perform these common tasks in Managed Access Gateway (MAG):

  • Authorize FIS requests from users
  • Revoke FIS certificates for users within their organization
  • Upgrade their organization from FIS BLOA to FIS MLOA

Scroll to the sections below for the step-by-step instructions on how to perform these tasks.

Authorize FIS

You require the FIS Administrator role to approve FIS requests. To approve FIS requests:

Step 1.  Log into your MAG account. 

Step 2.  Click Registration Requests, then Authorize FIS

Step 3.  Pending requests display. Click the Request ID.                       

Step 4.  User and certificate information displays. Please verify the user's user ID, first and last name matches their legal name.

For example, Patrick Starr is a match for starrp_8036. If the request displays a first and last name of Patrick Starr but the user id is doej_1234, the request must be denied. Additionally, ensure the user registered a business domain email address. For MLOA Certificates, ensure the user’s first and last name matches their proofing appointment identity documents. If an account is non-compliant, users need to work with their Organization Administrator to obtain a new account. 

Step 5.  You can modify the following fields if the user entered incorrect information:  

    • Partner/Application that requires the digital certificates.
    • Certificate Assurance Level: Basic (BLOA), Medium (MLOA), or Unknown.
    • Certificate Usage: Only displays if user selects Basic.
    • Certificate Type: Software, Hardware, or Unknown.
    • Certificate Validity Period: 1 or 3 years. One year is only available for Basic.
    • Request Reason: Reason why user requires certificates.

NOTE: Required fields are marked with an asterisk.

Step 6.  From FIS Administrator Action, select Approve or Deny. If denying, you are required to enter comments. Click Next.

Step 7.  If approving a BLOA certificate request, the user receives an email with installation instructions. If approving MLOA certificates, the request is routed to Exostar for purchase review and proofing dispatch.


Revoke FIS

FIS Administrators can revoke certificates for users within their organization. Once certificates are revoked, they can no longer be used. New certificates require purchase.

Step 1.  Log into your MAG account. 

Step 2.  Go to the Administration tab, then click View Users

Step 3.  Complete user search. 

Step 4.  From results, click the hyperlinked User ID

Step 5.  Scroll to the Certificates section. Click Revoke

Step 6.  Select the certificates you are revoking. You are required to select a revocation reason and enter comments. Click Submit

Step 7.  You receive a Certificate Revocation Request form. Click Sign

Step 8.  A signing page displays. Enter your MAG password in the Passcode field. Click Sign

Step 9.  Click Done (located in the lower, right corner of the page). 


  • Users can revoke their own certificates at any time.
  • You should revoke a user’s certificates if you believe the security of those certificates have been compromised in any way.
  • You should revoke a user’s certificates if they are no longer employed with your organization.
  • Revocation of certificates is a permanent action. i.e., there is no way to recover those certificates and the user must reapply should they need those certificates.


Upgrade Organization to FIS MLOA

If your organization is subscribed to the Basic Level of Assurance (BLOA) Digital Certificate Service, but your users require the Medium Level of Assurance (MLOA) Digital Certificates, please contact your Organization Administrator for assistance. They can request an upgrade for FIS MLOA.


How useful was this content?

Your Rating: Results: 1 Star2 Star3 Star4 Star5 Star 11 rates