Zero Trust Changes

Do Not Call Telemarketer login instructions

The National Do Not Call Registry Telemarketer website is upgrading its login process in compliance with the latest federally required security standards as outlined in the Federal Zero Trust Strategy (M-22-09). These changes will enhance the website’s cyber and data security through a stronger password policy and Multifactor Authentication (MFA) for all users accessing the site.


Creating a Stronger Password and selecting Preferred MFA method

Starting April 18, 2024, the Do Not Call Telemarketer website (site) will require you to use a strong passphrase in compliance with the Federal Zero Trust Strategy (M-22-09). You will also need to select your preferred MFA method.

  1. Login to the site with your existing Organization ID and password.
  2. Select a phone number to receive an authentication phone call.
  3. Answer the call and press pound on your phone keypad. NOTE: the phone call will come from phone number 855-330-8653. The FTC uses a Microsoft service to send these phone calls, so even though the voice greeting says “This is Microsoft,” the phone call is from FTC and it can be trusted.
  4. Enter your current password on the first field and a new password on the second and third fields.
  5. Next, select your preferred Multifactor Authentication (MFA) method: phone, Microsoft Authenticator, or security key.

If you selected Phone Call:

Select this option if you would like to continue receiving a phone call to authenticate your login requests.

  1. You will see the “Read and Certify” page.
  2. Select “Yes, I agree and declare under penalty of perjury that the foregoing is true and correct” and click “Certify and Continue” to successfully login to the site.

If you selected Microsoft Authenticator app:

Select this option if you own a mobile device and can install the Microsoft Authenticator app through your device’s app store. Please note that our help desk will not be able to troubleshoot any software or usability issues related to your phone or your Microsoft Authenticator app.

  1. Download the Microsoft Authenticator app from the Google Play Store (for Android) or Apple App Store (for iOS) on your mobile device.
  2. Open the Microsoft Authenticator app in your phone, and in the upper right corner, select the 3-dotted menu icon (for Android) or + menu icon (for iOS).
  3. Select + Add account.
  4. Select Other account (Google, Facebook, etc.), and then scan the QR code shown on the site to enroll your account. If you're unable to scan the QR code, you can add the account manually:
    • a. In the Microsoft Authenticator app on your phone, select OR ENTER CODE MANUALLY.
    • b. In the site, select Still having trouble? This displays Account Name and Secret.
    • c. Enter the Account Name and Secret in your Microsoft Authenticator app, and then select FINISH.
  5. In the site, select Continue.
  6. In Enter your code, enter the code that appears in your Microsoft Authenticator app.
  7. Select Verify.
  8. Select “Yes, I agree and declare under penalty of perjury that the foregoing is true and correct” and click “Certify and Continue” to successfully login to the site.
  9. During subsequent logins to the site, type the code that appears in the Microsoft Authenticator app.

If you selected Security Key:

Select this option if you own a security key and would like to use it as your MFA method for the Site. For this option, you will need to use a compatible browser (Google Chrome, Mozilla Firefox, Microsoft Edge, and Apple Safari) and ensure it is updated to the latest version. Please note that our help desk will not be able to troubleshoot any hardware or usability issues related to your security key.

  1. After selecting the security key MFA method, you will see the Security Key Registration Insert your security key into a USB port on your device and click Register.
  2. The security key setup screen will appear, requesting you to confirm that you are setting up your key to access the site. Click OK.
  3. Next, enter the PIN that you created when you obtained your security key and click OK. Note: The PIN would have been setup by you when you obtained your security key.
    • a.Depending on your security key, you will be prompted to touch it to continue.
  4. Select “Yes, I agree and declare under penalty of perjury that the foregoing is true and correct” and click “Certify and Continue” to successfully login to the site.
  5. During subsequent logins to the site, you will need to insert your security key into a USB port on your device after entering your Organization ID and Password to complete your authentication and gain access to the Site.

This is a one-time set up for all users. After this set up is complete, your next and future logins will simply require you to enter your Organization ID and password, and authenticate via your selected MFA method to login to the site.

If you experience any issues while changing your password or selecting your MFA method, please email tmhelp@donotcall.gov for assistance. Include details about the authentication method you are using and the issue(s) you are experiencing in your email.


What if I forgot my password?

If you forgot your password:

  1. Click “Forgot my password” from the User Log In page.
  2. Enter your Organization ID and the phone number associated with your account.
  3. Answer the call and press pound on your phone keypad.
  4. Enter a new password.
  5. Confirm the new password by typing it again on the confirm password field.
  6. You will see the “Read and Certify” page.
  7. Select “Yes, I agree and declare under penalty of perjury that the foregoing is true and correct” and click “Certify and Continue” to successfully login to the site.

For users located outside of the US

Starting April 18, 2024, the Do Not Call Telemarketer website (site) will require you to use a strong passphrase in compliance with the Federal Zero Trust Strategy (M-22-09). You will also need to select your preferred MFA method.

  1. Login to the site with your existing Organization ID and password.
  2. Send a verification code to your email address.
  3. You will receive an authentication email from tmnotifications@donotcall.gov with a verification code.
  4. Enter the verification code from the email to the corresponding textbox on the site.
  5. Enter your current password on the first field and a new password on the second and third fields.
  6. Next, select your preferred Multifactor Authentication (MFA) method.

If you selected Microsoft Authenticator app:

Select this option if you own a mobile device and can install the Microsoft Authenticator app through your device’s app store. Please note that our help desk will not be able to troubleshoot any software or usability issues related to your phone or your Microsoft Authenticator app.

  1. Download the Microsoft Authenticator app from the Google Play Store (for Android) or Apple App Store (for iOS) on your mobile device.
  2. Open the Microsoft Authenticator app in your phone, and in the upper right corner, select the 3-dotted menu icon (for Android) or + menu icon (for iOS).
  3. Select + Add account.
  4. Select Other account (Google, Facebook, etc.), and then scan the QR code shown on the site to enroll your account. If you're unable to scan the QR code, you can add the account manually:
    • a. In the Microsoft Authenticator app on your phone, select OR ENTER CODE MANUALLY.
    • b. In the site, select Still having trouble? This displays Account Name and Secret.
    • c. Enter the Account Name and Secret in your Microsoft Authenticator app, and then select FINISH.
  5. In the site, select Continue.
  6. In Enter your code, enter the code that appears in your Microsoft Authenticator app.
  7. Select Verify.
  8. Select “Yes, I agree and declare under penalty of perjury that the foregoing is true and correct” and click “Certify and Continue” to successfully login to the site.
  9. During subsequent logins to the site, type the code that appears in the Microsoft Authenticator app.

If you selected Security Key:

Select this option if you own a security key and would like to use it as your MFA method for the Site. For this option, you will need to use a compatible browser (Google Chrome, Mozilla Firefox, Microsoft Edge, and Apple Safari) and ensure it is updated to the latest version. Please note that our help desk will not be able to troubleshoot any hardware or usability issues related to your security key.

  1. After selecting the security key MFA method, you will see the Security Key Registration Insert your security key into a USB port on your device and click Register.
  2. The security key setup screen will appear, requesting you to confirm that you are setting up your key to access the site. Click OK.
  3. Next, enter the PIN that you created when you obtained your security key and click OK. Note: The PIN would have been setup by you when you obtained your security key.
    • a.Depending on your security key, you will be prompted to touch it to continue.
  4. Select “Yes, I agree and declare under penalty of perjury that the foregoing is true and correct” and click “Certify and Continue” to successfully login to the site.
  5. During subsequent logins to the site, you will need to insert your security key into a USB port on your device after entering your Organization ID and Password to complete your authentication and gain access to the Site.

This is a one-time set up for all users. After this set up is complete, your next and future logins will simply require you to enter your Organization ID and password, and authenticate via your selected MFA method to login to the site.

If you experience any issues while changing your password or selecting your MFA method, please email tmhelp@donotcall.gov for assistance. Include details about the authentication method you are using and the issue(s) you are experiencing in your email.

What if I forgot my password?

If you forgot your password:

  1. Click “Forgot my password” from the User Log In page.
  2. Enter your Organization ID and the email address associated with your account.
  3. You will receive an authentication email from tmnotifications@donotcall.gov with a verification code.
  4. Enter the verification code from the email to the corresponding textbox on the site.
  5. Enter a new password.
  6. Confirm the new password by typing it again on the confirm password field.
  7. You will see the “Read and Certify” page.
  8. Select “Yes, I agree and declare under penalty of perjury that the foregoing is true and correct” and click “Certify and Continue” to successfully login to the site.