Quick Start Guide
This guide walks you through the key steps to get up and running with Digital Trust Foundry after you’ve received your tenant.
1. Log In to Your Tenant
Navigate to your tenant URL:
https://your-tenant.digitaltrustfoundry.comSign in with your username (not email) and the password you set when you opened the invite link.
The first administrator account defaults to Edge signing: after your first sign-in you’ll be prompted to connect the Foundry Wallet browser extension. Once connected, the wallet becomes your sign-in method — the login page detects it and signs you in with one tap, and password sign-in is disabled for the account. (No extension on this computer? The login page also offers QR sign-in via the Foundry Wallet mobile app.)
2. Set Up Your Enterprise Identity
Your enterprise identity is the foundation for all signing authority in your tenant.
- Navigate to the Enterprises tab in the sidebar (admin only).
- Create your enterprise record with your organization’s legal name
- The system will create an enterprise AID (Autonomic Identifier) — this is your organization’s cryptographic identity
- Optionally bind a vLEI credential to link your identity to your verified legal entity
Once registered, your enterprise appears in the Enterprises view with an active status and a bound enterprise AID.
3. Add Users and Delegate Authority
Register Users
As tenant administrator, register team members who need access:
- Go to the Users tab in the sidebar.
- Add users with their username (used to log in), email, full name, and role.
- Each user receives an invite email with a one-time link to set their password. On first login, custodial users get their keys provisioned automatically; edge users are prompted to connect a Foundry Wallet — they must do this before they can sign or be assigned as officers.
Delegate Signing Authority
To enable users to sign on behalf of the organization:
- Navigate to the Enterprises tab and open your enterprise.
- Appoint top-level officers — the platform creates a KERI delegation event from the enterprise AID to each officer’s AID
- Top-level officers can then delegate to level-2 officers, and so on
- Each delegation is recorded as a verifiable chain
4. Generate API Keys
For programmatic access to the platform:
- Go to the API tab in the sidebar (admin only).
- Create a new API key with a descriptive name
- Store the key securely — it won’t be shown again
- Use the key with the
Authorization: Bearerheader in your API requests
API base URL: https://your-tenant.digitaltrustfoundry.com/api/v1
See the Developer Guide for full API documentation.
5. Create Your First Trustable
A Trustable is a piece of content wrapped with verifiable trust metadata.
Via the Platform UI
The Trustables UI is hidden by default. Click ‘Development’ in the sidebar to reveal it.
- Open the Trustables tab.
- Click Create Trustable.
- Choose a schema, fill in the subject and content, then assign a signer (an authorized officer).
- The signer approves the request in their Wallet — either in the Platform’s Wallet tab, or on the Foundry Wallet extension or mobile app if they’re paired in Edge mode.
Via the API
Trustable creation requires a structured request describing content, schema, lifecycle, publication policy, and signing authority. See the Trustables API reference for the full field-by-field shape. Authenticate using the API key from step 4:
curl -X POST https://your-tenant.digitaltrustfoundry.com/api/v1/trustables \
-H "Authorization: Bearer your-api-key" \
-H "Content-Type: application/json" \
-d @trustable.jsonThe resulting Trustable carries a cryptographic signature, a SAID (Self-Addressing Identifier) for tamper evidence, and a verifiable chain of authority back to your enterprise identity.
6. Set Up the Foundry Wallet
The Foundry Wallet lets officers sign on their own device instead of using custodial keys on the server. Edge-mode users — including the first tenant administrator, who defaults to edge — connect it as part of their first login; custodial users can be migrated to edge later by an administrator. It comes in two form factors:
- Browser extension — for desktop signing
- Mobile app — iOS and Android, with Face ID / Touch ID / fingerprint
- Officers install the Foundry Wallet extension or mobile app.
- Pair the wallet with their Platform account.
- Signing requests are routed to the officer’s device for local approval.
This provides stronger security guarantees since private keys never leave the signer’s device. See Foundry Wallet for full setup details.
What’s Next?
- Wallet & Signing — Learn about the signing workflow in Wallet & Signing Requests
- Enterprise Identity — Deep dive into delegation chains in Enterprise Identity
- Trustables — Understand governance models and lifecycle in the Trustables section
- API Integration — See the Developer Guide for full API reference