Technical documentation coming soon
If you want to integrate with itsme, contact us for more information and technical documentation:
# About itsme
Belgian Mobile ID (BMID), also referred to as 'itsme', is an identity scheme originating from Belgium. The scheme is co-created by banks and telecom providers to allow easy digital identity proofing and signing use cases. Currently itsme has millions of users in the Belgium market, which is still increasing significantly. itsme provides a mobile application to citizens requiring users to perform a one-time registration before users can start using the service. Users can either onboard in the itsme application either through a bank account or derive the identity directly from the Belgian National Identity Card (Belgium eID).
itsme offers a secure and easy means of electronic identification that allows end-users to digitally log in to and/or register for business and government services and sign documents.
# Method types
The itsme scheme supports different method types, designed for different use areas. The available types are listed below:
- Identity Proofing: used to identify, onboard users and/or sign documents (AES)
- Authentication: used to authenticate recurring users
- Signing: used to sign documents (QES)
# User information in the response
The following information can be derived from an itsme identity proofing flow (other flow types will return less information):
- Family name
- Given name(s)
- Phone number
- Email address*
- Postal code*
It is also possible to request additional data from the user through itsme. Signicat needs a justification before enabling these additional data attributes on the service. This will be agreed on during the onboarding process.
- Place of birth
- eID number (the eID card serial number)
- National identification number (in Belgium: "Rijksregisternummer")
- Issuance locality*
- Validity of the eID card*
- eID picture* (portrait picture of the card holder)
The itsme authentication only returns a unique ID for that specific user that can be linked to a previous itsme identity proofing, which also contains this unique ID.
*itsme does not guarantee the availability of these attributes for all users.
# Typical flow
itsme can be used to securely identify users electronically with validated attributes. You can implement itsme in your own client application and provide users the possibility to identify and/or authenticate through their own trusted bank environment.
Typically the following is applicable when going through the itsme flow:
- The user visits your website and proceeds to onboard/authenticate through itsme.
- You are redirected to the Signicat platform and an itsme transaction for that specific user is started.
- The user will be redirected to itsme and must provide the mobile phone number in the itsme UI.
- The user must then give consent in the mobile itsme application to share the attributes and the user will be redirected to your website.
- Signicat then retrieves a confirmation of a successful transaction and returns the attributes to you.
# Get started with the integration
Integration with itsme is done similarly to other Signicat's eID methods. This section describes how to get started with setting up itsme.
If you need more general information on how to integrate with Signicat using the OpenID Connect (OIDC) or SAML 2.0 protocols, see the Authentication quick start guide.
# Initial preparations
- Register in the Signicat Dashboard (opens new window).
- In the Signicat Dashboard, set up an organisation, an account and a domain.
We recommend you to create a Sandbox account to test our services before implementing them in production.
# Add itsme
Once your Dashboard account is configured, you must add itsme to the list of supported ID methods.
Before you can add itsme in the Dashboard, you must configure itsme access with an onboarding manager. To get help with this, please contact us (opens new window).
To add itsme:
- In the Signicat Dashboard, go to Authentication > ID Methods.
- Click Add new.
- Choose itsme and click Save.
# Test information
# Obtaining an itsme test account
To be able to test, you need an itsme test account and you must install the E2E itsme test application on a mobile device. Please find the steps below how the account can be activated.
To obtain an itsme account, please send an email to email@example.com and request an itsme test account. After receiving the account, please follow the below description to set up the account correctly.
To download the E2E itsme app, please use one of the links below (depending on the OS of your device):
For iPhone users, you need to trust Belgian Mobile ID NV (Go to Settings/General/Profiles & Device Management)
Once the itsme application is installed correctly, please follow itsme's step-by-step guide (opens new window).
If you have questions about activating the itsme test account, please contact firstname.lastname@example.org.
itsme test account doesn't work with QES
itsme test accounts can only be used in the test environment and for the following services; identity proofing, authentication and confirm. At the moment it's not possible to use an itsme test account for the hash signing service (QES), as itsme does not have a dedicated test environment for qualified signatures. This means that in the Signicat test environment you will need an actual itsme production account to complete QES transactions.
# Other sources
Here is a list of useful references to videos and demos:
- Information about itsme (opens new window)
- itsme document repository (opens new window)
- itsme branding guidelines (opens new window)
Are there any features you think are missing? Anything you'd like to see on our site? You can share your thoughts on our community pages:
If you have questions, please contact Signicat Support:
See also our support page.