Skip to content Skip to site navigation

Cardinal Key

Simplicity and Security

Get a Cardinal Key

In September 2021, rates will change for some of the technology services provided by University IT. To view the majority of our planned rate changes for services that are broadly available to our community, please visit this page. For more information, please visit the rates section of our website.

CardinalKey Office Hours are now 2 hours daily. From 10:00-12:00PST Mondays, Wednesdays, and Fridays and 14:00-16:00PST Tuesdays and Thursdays.

Between now and September 2021, there will be a campus-wide initiative for all university employees to use Cardinal Key to access webmail, Axess, and Google Docs (including Google Drive) from their devices.

Enforcement is gradually rolling out across campus. Two weeks prior to your enrollment date, you will receive an email invitation to set up your Cardinal Key(s). The message will include setup instructions as well as a link to request a temporary exception if needed. 

Not all individuals in a given workgroup will be converted on the same date.  If you do not receive a notification email on the same date as your colleague, please be patient. Your turn will come.

Learn more about Cardinal Key enforcement »

Visit FAQs »

Cardinal key disabled alert on laptop screen

Need to Clear Your Browser Cache & Cookies? Don’t Forget to Re-enable Cardinal Key

April 15, 2021

Learn more about Need to Clear Your Browser Cache & Cookies? Don’t Forget to Re-enable Cardinal Key

Unlock Your Passwordless Future with Cardinal Key

March 15, 2021

Learn more about Unlock Your Passwordless Future with Cardinal Key

Stanford is going passwordless! Cardinal Keys reduce or eliminate the need to use your SUNet ID and password for web-based logins and eliminate the need to use your username, password, and two-step authentication for VPN connections.

Cardinal Keys are intended to simplify your login experience while providing stronger protection for your account. Cardinal Keys are far stronger than a username and password.

A Cardinal Key is a digital certificate that is installed on a device and provides a user’s identity to a remote server in place of a SUNet ID and password. Cardinal Keys are installed on a per-device basis, and the same Cardinal Key provides authentication to VPN and web single sign-on.

In order to use a Cardinal Key your device must be running BigFix, VLRE, or Mobile Device Management (MDM) and be compliant.

The Cardinal Key service is not currently supported on the following:

  • Android devices
  • Linux platforms
  • Devices granted a compliance exception

Supported Platforms

Platform Browsers VPN Clients
  Chrome Safari Internet Explorer Microsoft Edge Firefox ESR Cisco AnyConnect Native VPN
Windows Supported Not AvailableN/A Supported Supported Supported Supported Not Supported
Mac Supported Supported Not AvailableN/A Supported Supported Supported Not Supported
iOS Not Supported Supported Not AvailableN/A Not Supported Not Supported Not Supported Supported
Android Cardinal Key is not supported on Android and Linux platforms at this time.
Linux

Features

  • Improves security -  provides greater protection against credential phishing.
  • Less typing - reduces the need to enter SUNet and password on compliant devices.

Designed for

Faculty, staff, and students 

Requirements

  • Valid SUNet ID with Two-Step Authentication configured
  • Computer running BigFix or VLRE, or mobile device managed by Mobile Device Management (AirWatch)
  • Device must be compliant, without an exception on file, in MyDevices
  • You must have administrator rights on the computer in order to install a Cardinal Key
  • Supported operating systems:
    • Windows 8 and later
    • macOS 10.14 and later
    • iOS 12 and later
  • Cisco AnyConnect VPN client is required for connecting to the Stanford VPN with Windows and Mac computers

Data security

May be used on devices that store and transmit Low, Moderate, and High Risk Data.

Rates

Free of charge

Get started

Please note: A Cardinal Key is unique to a device, so a single Cardinal Key should not be installed on multiple devices.

For those in the initial phase, to get started download and install a Cardinal Key:

Facilitated Install - Configure Cardinal Key automatically for Windows and Mac.

Manual Install - Configure Cardinal Key manually.

Get help

For assistance, please submit a Help ticket.

Learn more

Last modified July 21, 2021