Registration FAQs
What is Exostar’s Managed Access Gateway (MAG)?
Exostar’s Managed Access Gateway (MAG) is a secure Identity and Access Management solution for highly-regulated industries, including Aerospace & Defense. With the cloud-based solution, organizations enjoy benefits including account management, web-based single sign-on, and a single place to access applications shared with buyers and partners.
Why does my Organization have to Register for MAG?
MAG accounts are required to access applications. Some Exostar applications are available to everyone with an account, some partner applications require an invitation. If you self-register, please provide your User and Organization ID numbers when requesting a partner’s invitation. Each user is required to have their own account.
How does my Organization Register for a MAG account?
Your Partner company must invite your organization to complete a registration for a MAG account via email. Reach out to your Partner to get invited. If you self-register, please provide your User and Organization ID when requesting an invitation from your partner.
Once you receive your email invitation follow the steps below:
1. From the MAG Account Activation Email, click the Accept Invitation button.
2. You are redirected to a new page, click Get Started to begin the registration process.
3. Complete the registration form and fill out all your information. Verify all information is correct before clicking Next.
4. You will receive a registration confirmation and email with your account details and role information.
NOTE: Whoever submits the registration form is automatically designated as the Organization Administrator.
You can register for Certification Assistant and Exostar’s Federated Identity Service (FIS) without receiving an invitation from a partner company. Self-Register here.
Once you receive your email invitation follow the steps below:
1. From the MAG Account Activation Email, click the Accept Invitation button.
2. You are redirected to a new page, click Get Started to begin the registration process.
3. Complete the registration form and fill out all your information. Verify all information is correct before clicking Next.
4. You will receive a registration confirmation and email with your account details and role information.
NOTE: Whoever submits the registration form is automatically designated as the Organization Administrator.
You can register for Certification Assistant and Exostar’s Federated Identity Service (FIS) without receiving an invitation from a partner company. Self-Register here.
How does an Individual User Register for a MAG Account?
Users can complete self-registration for MAG by clicking the Self-Register link.
Organization or Adoption Administrators can also create user accounts. Users will receive an account activation email to setup their account.
Users whose organizations are not already subscribed to partner applications require an invitation from them. Please provide your User and Organization ID numbers when requesting a partner’s invitation.
Organization or Adoption Administrators can also create user accounts. Users will receive an account activation email to setup their account.
Users whose organizations are not already subscribed to partner applications require an invitation from them. Please provide your User and Organization ID numbers when requesting a partner’s invitation.
Already have MAG account – how do I access additional Partner (buyer) applications?
To access additional Partner applications, the Partner company must invite you to their application first.
Please note, your MAG Organization Administrator can register for SourcePass and Exostar’s Federated Identity Service (FIS) via their MAG account. Although these applications are available for public registration, you should work with your Partner company (buyer) contact to confirm if registration should be completed.
Please note, your MAG Organization Administrator can register for SourcePass and Exostar’s Federated Identity Service (FIS) via their MAG account. Although these applications are available for public registration, you should work with your Partner company (buyer) contact to confirm if registration should be completed.
I completed Account Activation, but need to return to the Credentialing Process. How do I return to account setup?
To log back into MAG, by accessing the registration link in the Login Success email or click here: https://ui.portal.exostar.com/iamui/mfa/userReference. Then login with your User ID/Email and Password to complete the process.
Login FAQs
How do I Activate and Setup my MAG Account?
1. After you register with Exostar, you receive an email with your account information and role, click the Activate my Account button to get started.
2. Follow the prompts to create your password. Click Next.
3. Setup your security questions, provide the answers, and click Next.
You are redirected to the MAG Dashboard, where you can manage your application access.
2. Follow the prompts to create your password. Click Next.
3. Setup your security questions, provide the answers, and click Next.
You are redirected to the MAG Dashboard, where you can manage your application access.
I accidentally exited during the Account Activation process. How do I get back to it?
If you exit out of the account registration process at any time, you can log back in by accessing the registration link in the Login Success email or click the link:
https://ui.portal.exostar.com/iamui/mfa/userReference. Then login with your User ID/Email and Password.
https://ui.portal.exostar.com/iamui/mfa/userReference. Then login with your User ID/Email and Password.
How do I Login to my MAG account after account activation?
1. Go to https://portal.exostar.com. (You can favorite/bookmark this link to easily access it for future logins).
2. In the login window, enter User ID/Email. Click Next.
3. Enter Password. Click Next.
2. In the login window, enter User ID/Email. Click Next.
3. Enter Password. Click Next.
I received an Error Message during login. What should I do?
You may receive an error message during login if you have multiple MAG user accounts, and your browser has cached your information. Follow these steps to login:
1. Click on your name (Profile Menu) in the top right corner, and verify the account you are logged in with matches the account listed.
2. If a different user account displays other than the one you are logged in with, clear your browser’s history (cache and cookies).
3. Return to the login process.
1. Click on your name (Profile Menu) in the top right corner, and verify the account you are logged in with matches the account listed.
2. If a different user account displays other than the one you are logged in with, clear your browser’s history (cache and cookies).
3. Return to the login process.
Credential FAQs
What Types of Credentials does Exostar offer?
– Standard User ID/Email and Password
– One-Time Password (OTP) Hardware Token with or without identity proofing
– Phone One-Time Password (OTP) with or without identity proofing
– Exostar Mobile ID Bundle (powered by Authy™), includes Phone OTP and Exostar Mobile ID with or without identity proofing
– Federated Identity Service (FIS) Digital Certificates: Basic Level of Assurance (BLOA), BLOA Secure Email, Medium Level of Assurance (MLOA) Software & Hardware.
– Exostar’s Enterprise Access Gateway (EAG) solution
– One-Time Password (OTP) Hardware Token with or without identity proofing
– Phone One-Time Password (OTP) with or without identity proofing
– Exostar Mobile ID Bundle (powered by Authy™), includes Phone OTP and Exostar Mobile ID with or without identity proofing
– Federated Identity Service (FIS) Digital Certificates: Basic Level of Assurance (BLOA), BLOA Secure Email, Medium Level of Assurance (MLOA) Software & Hardware.
– Exostar’s Enterprise Access Gateway (EAG) solution
How do I Purchase Credentials?
1. Login to your MAG account and click the Get 2FA button on your dashboard/home page.
2. You are redirected to Exostar’s web store. From the Purchase your Exostar Subscription page, select the desired credentials.
3. Follow the prompts to complete your purchase.
2. You are redirected to Exostar’s web store. From the Purchase your Exostar Subscription page, select the desired credentials.
3. Follow the prompts to complete your purchase.
Can Credentials be Shared?
No, user accounts and activated credentials cannot be shared and is against Exostar’s policy. OTP Hardware Tokens, Phone OTP, and Exostar Mobile ID subscriptions that have not been activated can be transferred.
Why can’t I access my Application even though I Purchased & Activated my Credentials?
Either you purchased an incorrect credential or have not logged in with your activated credential yet. If you purchased an incorrect credential, you are required to purchase the correct credential. To confirm the credential you logged in with, follow the steps below:
1. From the MAG Dashboard, click Launch from the application card or you may click Elevate Credential Strength (green button) from the My 2FA Credentials section.
2. You are redirected to the Two-Step Verification page, that displays a list of 2FA Credentials associated with your account.
3. Select one of the methods and proceed with the authentication process.
4. After you return to the MAG Dashboard, your credential strength displays and you should be able to open the application.
1. From the MAG Dashboard, click Launch from the application card or you may click Elevate Credential Strength (green button) from the My 2FA Credentials section.
2. You are redirected to the Two-Step Verification page, that displays a list of 2FA Credentials associated with your account.
3. Select one of the methods and proceed with the authentication process.
4. After you return to the MAG Dashboard, your credential strength displays and you should be able to open the application.
Why is my OTP Credential still Suspended even though I Purchased a Renewal?
Please note it can take up to 24 hours for the renewal to process. If it has exceeded 24 hours, please contact Exostar Customer Support.
Can I receive a Refund for my Credential Purchase?
eTools purchases, activated credentials, expired license keys for products or used renewals are ineligible for refund. For questions about refunds, please contact Exostar Customer Support.
Credentials by Partner / Application
The credential type is dependent upon the security requirements for the application you are accessing. Please review the table below, and if you cannot find the information or need additional assistance, please contact Exostar Customer Support or the representative of your partner organization.
Application / Partner | Acceptable Credentials |
---|---|
BAE Systems Portal | – Email or User ID and Password + Phone OTP with proofing – Email or User ID and Password + Hardware OTP Token with proofing – Email or User ID and Password + Exostar Mobile ID with Proofing – Email or User ID and Password + FIS MLOA Hardware Certificates – DoD CAC – NGC OneBadge – Boeing SecureBadge – Enterprise Access Gateway (EAG) – Level 3 or above – NASA PIV Cards – Canada DND PKI Smart Card |
BAES UK Maritime Naval Ships Windchill Project | – Email or User ID and Password + Phone OTP with or without Proofing – Email or User ID and Password + Hardware OTP Token – Email or User ID and Password + Exostar Mobile ID – Email or User ID and Password + FIS MLOA Software or Hardware Certificates |
Boeing Supplier Portal | – Email or User ID and Password + Hardware OTP Token with Proofing – Email or User ID and Password + FIS MLOA Hardware Certificates – Enterprise Access Gateway (EAG) – DOD CAC – NGC OneBadge – Canada DND PKI Smart Card |
Boeing SCP | Hardware OTP Token with Proofing |
Boeing 787 SCMP | Hardware OTP Token with Proofing |
Partner Information Manager (PIM) | – Email or User ID and Password + Phone OTP Without Proofing – Email or User ID and Password + Hardware OTP Token or Authy – Email or User ID and Password + FIS MLOA Hardware Certificates – Enterprise Access Gateway (EAG) or RIDP Users |
Huntington Ingalls Industries / Information Manager | – Email or User ID and Password + FIS MLOA Hardware Certificates – DOD CAC – NGC OneBadge – Canada DND PKI Smart Card |
Lockheed Martin Aeronautical Aero JTD CSAS Web F-16 EDCS Airlift EDCS F-16 EDCS Palmdale F-22 Fleet Management Tool LM AeroSource F-35 Production Lockheed Martin OneAero Online Account Request System (OARS) Transportation Management System User Acceptance LM AeroSource | – Email or User ID and Password + FIS Basic Certificates OR – Email or User ID and Password + Hardware OTP Token – Email or User ID and Password + FIS MLOA Software Certificates – Email or User ID and Password + FIS MLOA Hardware Certificates – Enterprise Access Gateway (EAG) – NGC OneBadge – Canada DND PKI Smart Card |
Lockheed Martin Procure to Pay (LMP2P) | – Email or User ID and Password + Phone OTP with Proofing – Email or User ID and Password + Exostar Mobile ID with Proofing – Email or User ID and Password + Hardware OTP Token with Proofing – Enterprise Access Gateway (EAG) – Email or User ID and Password + FIS MLOA Hardware Certificates |
ProcurePass Buysite (BAE Systems) | Email or User ID and Password |
Raytheon Supplier Portal Raytheon SecureForms Raytheon Supply Chain Platform (RSCP) | – Email or User ID and Password + Phone OTP with Proofing – Email or User ID and Password + Hardware OTP Token with Proofing – Enterprise Access Gateway (EAG) – Email or User ID and Password + FIS MLOA Hardware Certificates |
Rolls-Royce Global Supplier Portal | Either of the following credentials are acceptable depending upon the application you need to access within GSP: – Email or User ID and Password + FIS Basic Certificates OR – Email or User ID and Password + FIS MLOA Software Certificates – Email or User ID and Password + FIS MLOA Hardware Certificates – Enterprise Access Gateway (EAG) – NGC OneBadge – Canada DND PKI Smart Card |
Supply Chain Platform – BAE Systems | – Email or User ID and Password + Phone OTP with Proofing – Email or User ID and Password + Hardware OTP Token with Proofing – Email or User ID and Password + Exostar Mobile ID with Proofing – Email or User ID and Password + FIS MLOA Hardware Certificates – DoD CAC – Enterprise Access Gateway (EAG) – Level 3 or above |
Supply Chain Platform – NNS | – Email or User ID and Password + FIS MLOA Hardware Certificates – DOD CAC – NGC OneBadge – Canada DND PKI Smart Card |
Additional Resources
Please review the following pages to learn more about One-Time Password and Federated Identity Service (FIS).