Applying for issue of SSL certificate

Run browser and enter the following URL: pki.gov.kz. Homepage of the National Certification Authority of the Republic of Kazakhstan will appear.

1

Click “Obtainment of digital signature keys” menu and go to “SSL Certificate-For Legal Entities” section.

In the window opened, view the information and press the “Submit application” button.

2

Familiarize with user agreement, tick the box and click “Confirm” button.

3

In the window opened, indicate BIN and code from the picture and afterwards click “Check BIN” button.

4

After BIN is checked, fill in your IIN.

5

After BIN and IIN are filled in, a sample form to submit application for issuance of SSL registration certificate will appear.

6

Then, you need to indicate your e-mail in “E-mail” field (the field is optional). You will receive information on the status of registration certificates, and also when you apply, application number and application form to be submitted to the Registration Authority will be sent to your e-mail.

NB! Be careful when filling in “E-mail” section, if you make a mistake you won`t receive notification of successful registration as well as application number.

Below, in sequential order, indicate region and city where the application will be verified.

7

The next “Domain name” field is mandatory. Here you should indicate your domain name for which SSL registration certificate is created.

In “Storage place” field select storage for key container.

NB! The “Personal Computer” repository is insecure. We recommend using the secure key information media to reduce the risk of compromising the digital signature keys.

In case if “PC” was chosen as storage place, in “Keys Storage” field indicate folder in which key container (private key) will be created and click “Open” button.

8

9

Then press “Apply” button.

10

The request number will appear in the next window.

NB! Remember your request number; it is needed for identification of your application in Registration Authority, and also for installation of issued registration certificate.

Save and print application in any convenient format.

11

After you apply, private key will be generated on your personal computer and you can check it by opening a folder that you indicated in your application.

12

After the application is sent, you will obtain a written notification on your e-mail (if it was indicated during registration) confirming that a request to obtain registration certificate was made via NCA of the RoK website and it will have your request number. It should be mentioned that NCA of the RoK does not bear responsibility for delivering an information letter. If there is no letter, check “Spam” folder; verify the correctness of the e-mail address or that your postal server is reliable.

NB! Upon application submission, the application should be verified by chairman of your organization and afterwards you should visit Registration Authority with the package of required documents within 1 month from the moment of application submission. In case if you do not verify your application in Registration Authority within the indicated period, your application will be canceled. The required package of documents can be found on the official website of NCA of the RoK.

Checking the application status and installing the registration certificate

After the application is verified in Registration Authority, use the capability to check the status of your application.

To do this, go to “Checking request status” section.

13

In the window that appears in “Request Number” field indicate the obtained unique number and click “Search” button.

14

You will see information on your request indicating the current application status.

“Application status” field will indicate the processing stage of your application.

In case if registration certificates were successfully issued the status will be as follows “Registration Certificates are Issued”.

15

To set up the certificates, please indicate the folder where your private keys were stored and press the search icon.

Indicate the storage place of your private keys generated at the time you submitted the application and press the “Open” button.

16

If you use the PC as keys repository, the fields for password will appear. Invent and enter your password for digital signature keys.

NB! Password must contain Latin characters and digits. The password length should be 6 to 32 characters. In addition, password may include: Latin upper-case letters and wildcard characters «#$^+=!*()@%&_?-.».

17

You must remember the password you indicated! The password shall NOT be recovered! NCA shall not keep your password, and if you lose your password, these digital signature keys must be revoked.

Press the “Upload certificates” button.

After registration certificates are installed, the window appears indicating the request status “Certificates installed”.

18

Open the folder indicated in application. Upon successful undergoing of all stages of registration certificate obtainment, one ready-to-use registration certificate will be located in the folder.

19

Obtainment of registration certificate has been successfully completed.

Should any problems occur in your receiving the certificate, please do not hesitate to call technical support 1414, or write an email to: support@pki.gov.kz