A subset of PIV/CAC users are experiencing errors when authenticating

Login.gov experienced a major incident on February 8, 2026 affecting Single Sign-On & Identity Proofing (secure.login.gov), lasting 1h 21m. The incident has been resolved; the full update timeline is below.

Started: Feb 08, 2026, 08:25 PM UTC
Resolved: Feb 08, 2026, 09:47 PM UTC
Duration: 1h 21m
Detected by Pingoru: Feb 08, 2026, 08:25 PM UTC

Affected components

Single Sign-On & Identity Proofing (secure.login.gov)

Update timeline

investigating Feb 08, 2026, 08:25 PM UTC

We are seeing authentication errors for a subset of our PIV/CAC users. We are currently investigating the issue.
resolved Feb 08, 2026, 09:47 PM UTC

We have identified the problem. It resulted from expired certs used by our PIV/CAC hosts. We have updated the certs and bundles on the hosts; users that previously had issues can now sign in successfully. We will continue to monitor and update accordingly if any new findings are reported.