Authentication Requirements for IL4 and IL5 Environments¶
Accessing Impact Level 4 (IL4) or Impact Level 5 (IL5) environments requires completing several prerequisites in order. Work through each step before moving to the next.
Important
Some applications may require Cloud Native Access Point (CNAP) whitelisting. Review CNAP Whitelist to understand the requirements and how to submit a CNAP whitelist request.
Requirements summary¶
| Requirement | IL4 | IL5 |
|---|---|---|
| Government access card (CAC, ECA, or PIV) linked to P1 SSO account | ✓ | ✓ |
| Appgate SDP (if accessing from outside NIPRNet) | ✓ | ✓ |
| Additional compliance scripts (if accessing from outside NIPRNet) | — | May apply |
Obtain and link a government access card to your Platform One (P1) account¶
IL4 and IL5 environments require a CAC, ECA, or PIV card linked to a P1 SSO account for authentication. If you do not have a government access card, you must obtain one before proceeding. The required card type depends on your affiliation and access requirements. Once the card is obtained, configure the equipment and link it to your P1 SSO account.
- For guidance on how to obtain an access card, see Government Access Cards Overview.
- For guidance on how to obtain and configure a DoW-approved External Certification Authority (ECA) hardware token to read the access card, see Install External Certification Authority Tokens.
- For guidance on equipment setup and linking your card to a P1 SSO account, see Link Access Card with Platform One Account.
Install Appgate SDP¶
If you are accessing IL4 or IL5 environments from outside NIPRNet, you must install Appgate SDP. See Appgate SDP Setup for guidance.
Run compliance scripts¶
IL5 access from outside NIPRNet may require running additional compliance scripts.
For further assistance, reach out to your Implementation Manager.