Skip to main content
Version: Next

How to define access to eCAC

Overview

This guide explains how to define access to Centro Virtual de Atendimento ao Contribuinte (eCAC) domains, specifically the Declaração de Débitos e Créditos Tributários Federais (DCTF) procedure. It is useful to users and admins configuring access to this eCAC procedure.

Background

eCAC is an online platform provided by the Receita Federal do Brasil that allows taxpayers to digitally access and manage various tax-related services. Like other Brazilian government services, eCAC uses Conta GOV.BR as a single sign-on (SSO) authentication platform. Given the technical challenges of this setup, Redtrust administrators need to configure two groups of sites, one of them defined as a regular expression.

Step 1: Create site groups

  1. Go to Policies > Sites > Add sites group.

  2. Create a site group for the GOV.BR platform. Add two sites as follows:

    1. In Sites group name, add SSO eCAC.
    2. In Sites, select Site.
    3. In Add site, add certificado.sso.acesso.gov.br and click Add.
    4. In Add site, add sso.acesso.gov.br and click Add.
    5. Click Apply.

  3. Create a site group for the DCTF procedure and navigation. Add one regular expression and four sites to the group:

    1. In Sites group name, add DCTF eCAC.

    2. In Sites, select Regular expression.

    3. In Add site, add the following expressions and then click Add.

      cav\.receita\.fazenda\.gov\.br\/ecac\/\#
      cav\.receita\.fazenda\.gov\.br\/ecac(\/)?(\/default\.aspx)?(#)?

    4. Back in Sites, select Site.

    5. In Add site, add the following expressions and then click Add.

      cav.receita.fazenda.gov.br/autenticacao/login/govbrsso
      cav.receita.fazenda.gov.br/ecac
      cav.receita.fazenda.gov.br/ecac/
      cav.receita.fazenda.gov.br/ecac/aplicacao.aspx\?id=10015&origem=menu

    6. Click Apply.

Step 2: Create a policy

  1. Go to Policies > New.
  2. In the General section, enter eCAC DCTF and click Next.
  3. In the Certificates section, add any certificate or certificate groups and click Next. In this example cert-group1.
  4. In the Who? section, add the user group and click Next. In this example UserGroup_local.users@local.users.
  5. In the Where? section, click Add sites. Select SSO eCAC and DCTF eCAC and click Add > Next, then click Apply.

Step 3: Verification

  1. Access https://cav.receita.fazenda.gov.br/autenticacao/login and click Entrar com gov.br.
  2. Select Seu certificado digital.
  3. In the dialog box, select the certificate you want to authenticate with.
  4. Go to Declarações e Demonstrativos > Assinar e Transmitir DCTFWeb.

If everything went well, you have accessed the DCTF procedure.

warning

Be aware that this configuration allows users to access the DCTF procedure only. Users will be denied access to all other procedures.