What has replaced AUSkey?
AUSkey has been replaced by a new whole of government digital identity service – myGovID and Relationship Authorisation Manager (RAM).
Together, these services offer an easy, secure and more flexible authentication and authorisation solution.
- Standard and Admin AUSkeys have been replaced by myGovID and RAM, and
- Device AUSkeys have been replaced by a new Machine-to-Machine (M2M) authentication solution.
See ATO video – Your new key to business is here, for a general overview.
For assistance with:
- myGovID and RAM please contact the ATO on 1300 287 539, select 2 for myGovID or 3 for RAM enquiries.
- the USI Web Service please contact us at IT@usi.gov.au.
Linking your ABN in RAM
RTOs with non-individual associates and Government entities that do not have an individual associate against their ABN cannot independently connect through RAM. This could include TAFEs, trustee companies, companies that use an ‘alternate director’, public and private schools (including school council/boards) and incorporated and unincorporated associations.
If your business does not have individual associates listed in the Australian Business Register, a 'primary person' needs to link it in RAM. For example, a director or public officer for the corporate trustee or subsidiary company are considered a primary person. Assistance on the linking process is available from ATO - Principle Authority.
Organisation Portal users
Organisation Portal users need to have their own digital identity.
Principle authorities - Australian Business Register (ABR) listed individual associates, of an RTO’s ABN must also acquire a digital identity and can authorise another person with a digital identity to connect to the USI Registry Organisation Portal (on behalf of the RTO). This is similar to how a Standard/Personal AUSkey was set up however new mechanisms are used and the replacement file is not stored on a computer or USB. Allowing a connection to be made using any device, anywhere, anytime.
See the ATO Video – How to get started with myGovID and RAM for more information.
Student Management System (SMS) users
SMS users need a new Machine-to-Machine (M2M) credential to interact with the USI Registry.
Components of the M2M solution include:
- A machine credential
- Machine Authentication Service – Secure Token (MAS-ST)
Principle authorities create and download machine credentials using RAM. Credentials can be installed on a server or stored locally to support locally hosted or desktop software.
A machine credential administrator must be nominated for each credential. That person is responsible for creating, as well as the ongoing management and safeguarding of the machine credential on behalf of the business.
The new credential is compatible with the latest versions of USI and SBR Software Developer Kits. The intent is that you will only need to obtain the new credential and change to use the new MAS-ST endpoint.
Cloud hosted service users
RTOs using cloud-hosted services do not have to obtain their own M2M credential. The host service provider is required to use their M2M credential to authenticate a connection to the USI Registry.
After obtaining a digital identity and claiming their business in RAM, the principle authority of an RTO needs to access RAM and nominate/endorse the host service provider submitting transactions on their behalf.
Detailed information can be found from My cloud software services.
What should you do now?
Upgrade to USI web services Version 3
If Web services version 2 is no longer supported therefore if you have not already done so, RTOs who utilise web services will need to upgrade to Version 3.
RTOs who are unsure of their current web services version, should check with their software developer.
Obtain a digital identity and set up in RAM
If you are a principle authority for your business you can obtain a digital identity using the myGovID app. It’s easy, just download and install the app from the Apple App or Google Play store and set up your myGovID.
- Download the myGovID app
- Prove your identity
- If you are a principle authority of a business (DSP or RTO), claim your business in RAM
- Begin authorising others in your business
- Acquire your machine credential in RAM
For more help, see ATO videos: