Skip to Content
Getting StartedQuick Start Guide

Quick Start Guide

This guide walks you through the key steps to get up and running with Digital Trust Foundry after you’ve received your tenant.

1. Log In to Your Tenant

Navigate to your tenant URL:

https://your-tenant.digitaltrustfoundry.com

Log in with the administrator credentials provided during tenant provisioning. On first login, you’ll be prompted to change your password.

2. Set Up Your Enterprise Identity

Your enterprise identity is the foundation for all signing authority in your tenant.

  1. Navigate to the Enterprise Management section in the Platform at platform.us1.digitaltrustfoundry.com
  2. Create your enterprise record with your organization’s legal name
  3. The system will create an enterprise AID (Autonomic Identifier) — this is your organization’s cryptographic identity
  4. Optionally import a vLEI credential to link your identity to your verified legal entity

Once your enterprise is registered, it appears in the Enterprise Management UI with an active status and a bound enterprise AID.

3. Add Users and Delegate Authority

Register Users

As tenant administrator, register team members who need access:

  1. Go to User Management in the Platform
  2. Add users with their email, name, and role
  3. Each user receives login credentials and will generate their own cryptographic keypair on first login

Delegate Signing Authority

To enable users to sign on behalf of the organization:

  1. Navigate to Enterprise Identity Management
  2. Appoint top-level officers — the platform creates a KERI delegation event from the enterprise AID to each officer’s AID
  3. Top-level officers can then delegate to level-2 officers, and so on
  4. Each delegation is recorded as a verifiable chain

4. Generate API Keys

For programmatic access to the platform:

  1. Go to API Keys in the Platform settings
  2. Create a new API key with a descriptive name
  3. Store the key securely — it won’t be shown again
  4. Use the key with the X-API-Key header in your API requests

API base URL: https://platform.us1.digitaltrustfoundry.com/api

See the Developer Guide for full API documentation.

5. Create Your First Trustable

A Trustable is a piece of content wrapped with verifiable trust metadata.

Via the API

curl -X POST https://platform.us1.digitaltrustfoundry.com/api/v1/trustables \
  -H "X-API-Key: your-api-key" \
  -H "Content-Type: application/json" \
  -d '{
    "content": { "type": "invoice", "amount": 1500.00 },
    "schema": "your-schema-said"
  }'

Via the Platform UI

  1. Navigate to Trustables in the Platform
  2. Click Create Trustable
  3. Define the content and schema
  4. Assign a signer (an authorized officer)
  5. The signer approves the signing request in their Wallet

The resulting Trustable carries a cryptographic signature, a SAID (Self-Addressing Identifier) for tamper evidence, and a verifiable chain of authority back to your enterprise identity.

6. Set Up KATE (Optional)

KATE (Keys at the Edge) allows officers to sign from their own devices rather than using custodial keys on the server.

  1. Officers install the KATE browser extension
  2. Pair the extension with their Platform account
  3. Signing requests are routed to the officer’s device for local approval

This provides stronger security guarantees since private keys never leave the signer’s device.

What’s Next?

  • Wallet & Signing — Learn about the signing workflow in Using the Platform
  • Enterprise Identity — Deep dive into delegation chains in Enterprise Identity
  • Trustables — Understand governance models and lifecycle in the Trustables section
  • API Integration — See the Developer Guide for full API reference
Getting Your TenantKERI Deep Dive
Quick Start Guide