The first step to using ObjectID securely is configuring your cryptographic distributed identity. Here’s exactly how the process works:

1. Generate Your Seed
   Using the dedicated button in the dApp, create a new cryptographic seed.
   Important: immediately store this seed securely in a password manager—losing it means losing access to your identity.
2. Generate Keys and Identity
   From the seed:
   • A cryptographic key pair (private and public key) is derived.
   • The system generates:
     • an IOTA blockchain address, and
     • a Decentralized Identity (DID) compliant with W3C standards.
3. Link Your Identity to a Domain
   If you haven’t previously configured the dApp with this seed, you will be prompted to specify a domain name (e.g., yourbrand.com) to associate with your DID.
4. Create and Embed the Identity
   The dApp will:
   • Create the DID document, inserting a Service Endpoint that points to your website/domain. The DID Document is then deplyed on IOTA blockchain,
   • Generate a self-signed Verifiable Credential (VC) using your private key.
     This VC certifies that the same entity controls both the DID and the web domain. The VC is provided in form of a file (automatically donwloaded) naned did-configuration.json
   • Publish the Verifiable Credential
     You must upload the generated file to the /.well-known/ directory of your web server.
     This allows external verifiers to confirm the domain-to-DID binding.
5. Validation Check
   Once the file is correctly published, in reentering in the dApp, it will perform automatic checks:
   • Verifying that the identity controls the domain.Verifying that the domain links back to the identity.
   If everything is correct, two green check marks will confirm the successful configuration.
6. Finalize and Enter the dApp
   Select your identity, accept the End-User License Agreement (EULA), and access the full functionality of ObjectID.