Download and Install AATL or Qualified Certificate for Electronic Seals/Signatures

Download and Install AATL or Qualified Certificate for Electronic Seals/Signatures

Introduction

This guide outlines the download and install steps for the following: 

Prerequisites

Note: You may use your own smart card as an alternative to the USB token offered by GlobalSign. If you are using your own smart card, you will need to meet prerequisite #5 below:

  1. You will need a SafeNet USB Token. This will be mailed to you when you place your order.
  2. Download and install SafeNet Authentication Client drivers. Note: For renewals, it's not necessary to reinstall Safenet drivers. However, we recommend verifying that you are using the latest Safenet driver available in the link above.
  3. Plug in and reset the password. The default password is 1234567890. 
  4. For Qualified Certificates, the correct Qualified Signature Creation Device (QSCD) which is the Safenet eToken 5110 cc should be used. Also, the default administrator password for this token is forty-eight 0's and the default Digital Signature PUK is six 0's. You can choose to tick the respective checkboxes to auto-populate the Administrator Password and Digital Signature PUK accordingly for your convenience. Note: The Qualified Certificate is only compatible with the indicated token. 
  5. Add GlobalSign to your trusted sites.
  6. For certificate pickup, you must have access to a Windows PC and Microsoft Internet Explorer. Once the certificate is installed on the USB token, you may sign from other platforms such as OS X.

Download & Install

  1. Once your order has been approved, vetted, and you have your USB token initialized, open the pickup link from your pickup e-mail in Internet Explorer.
  2. Enter the Temporary Pickup Password that was set at the time of ordering:
    Step 2.JPG
  3. Click Yes when prompted to allow digital certificate operations. 
    Step 3.png
  4. To install on a SafeNet USB token provided by GlobalSign, select:
    eToken Base Cryptographic Provider.

    To install on a smart card provided by you or your company, select:
    Microsoft Base Smart Card Crypto Provider.
  5. Check the box to agree to the subscriber agreement and click Next.
    Step 5.JPG
  6. Enter the password for your USB token. This was set during the initialization process.
    Step 6.png
  7. The screen may appear to freeze for a minute or two; do not press the back button on your browser. You should see the light on your USB token blinking. Eventually you will see a message to wait for a while as shown below. 
    Step 7.png
  8. Once the token has finished the keypair generation, click the button to Install My Certificate.
    Step 8.png
  9. Again click Yes to allow digital certificate operations. 
    Step 9.png
  10. Finally, click OK when you get the Install Success message. 
    Step 10.png

Additional Resources

  1. Adobe PDF Signing Overview

Related Articles

GlobalSign System Alerts

View recent system alerts.

View Alerts

Certificate Inventory Tool

Please click the button below to log in or sign up.

Log In - Sign Up

SSL Configuration Test

Check your certificate installation for SSL issues and vulnerabilities.