Executing the function of one`s e-signature during obtainment of various online services (for instance, obtainment of abstracts or participation in public procurement), digital signature (DS) contains confidential information about its owner. Therefore, DS`s validity should be extended every year for safety reasons. Doing it, a citizen acknowledges that certificates were not lost and haven`t been acquired by an unauthorized party.
Notifications on the expiration of the EDS
RK NCC registration certificates issued for a file system is valid for 1 year. RK NCC registration certificates issued for key information carriers (ID card, Kaztoken, eToken, аKey, jaCarta) are valid for 3 years.The system of the National Certifying Center of the Republic of Kazakhstan implemented the automatic sending of two types of notifications on the upcoming expiration of the EDS with a proposal to extend it online.
- Multiple email notifications – 1 month before, 2 weeks before, 7 days before. To receive these notifications, you must specify your e-mail in the personal account in the NCC RK.
- SMS notification 10 days before the date of expiry of the EDS. SMS comes to the phone number registered in the Mobile Citizens Database, i.e. to the one that is attached to the user in the eGov Personal Account.
How Legal entities can extend DS`s validity by themselves?
On the homepage at National Certification Authority website, you need to go to “Personal Account” section, then sign in to the Personal Account. (Picture 1).
Sign in to your Personal Account. (Picture 2).
In the window opened, you should select the “Keys Repository” from the list containing: Personal Computer, eTokenPRO (Java, 72K), JaCarta, Kaztoken, AKey. (Picture 3).
In the “Path to keys repository” field, you need to indicate the path to where your certificates are contained. Select the authentication key (AUTH_RSA) and press the “Open” button. (Picture 4).
Press the “Enter” button. (Picture 5).
In the emerging dialogue window, enter Your password for keys repository.. NB: The default password for Kaztoken: 12345678, eToken PRO (Java, 72K), JaCarta, AKey: 1234567890. (Picture 6).
Press the “Update the list of keys” button. If the password is correct, then the authentication key will be displayed. Press the “Sign” button. (Picture 7).
Entering the staff’s Personal Account has been performed.
Working in Personal Account
User’s “Family Name” menu contains information on NCA user profile. (Picture 8).
The profile data contains user’s personal information. In the settings, you may select the interface language, as well as cancel the receipt of notifications to your email. (Picture 9).
“My Digital Signature Keys” Menu
To work with digital signature keys, go to the “My digital signature keys” tab. (Picture 10).
In the drop-down menu, select one of the below subsections:
• Digital signature keys renewal – provides capability of submitting an application online (subject to availability of effective keys), with no need to validate the application in Registration Authority;
• Digital signature keys revocation – provides capability of revoking the certificates;
• List of digital signature keys – displays the existing certificates;
• Checking the application status – provides capability of checking the status of the application submitted and of setting the certificates;
• Change of digital signature key password – provides capability of changing the password for digital signature keys.
Checking the Application Status
To check the application status, go to “My Digital Signature Keys” tab – “Check Application Status” section. In “Application Number” field, fill in the obtained unique number and press “Search” icon. (Picture 11).
To set up the certificates, specify the folder where your private keys were stored and click the search icon. Indicate the storage place of your private keys generated at the time you submitted the application and press the “Open” button. (Picture 12)
NB! In the event that in setting up the certificates, the keys were generated to one of the supported secure media: eToken 72K, JaCarta, Kaztoken, AKey, you should preliminarily connect the device to the PC.
If you use the PC as keys repository, the fields for filing in the password will appear. Invent and enter your password for digital signature keys.
NB!! Password must contain Latin characters and digits. The password length should be 6 to 32 characters. In addition, password may include: Latin upper-case letters and wildcard characters «#$^+=!*()@%&_?-.».
You MUST remember the password you indicated! The password shall NOT be recovered! NCA shall not keep your password, and if you lose your password, these digital signature keys must be revoked.
Press the “Upload certificates” button. (Picture 13).
The window will appear informing of the successful setting of the certificates. (Picture 14).
Digital Signature Keys Renewal
In this section, you may submit your application online (subject to availability of effective digital signature keys), with no need to validate the application in Registration Authority.
Important! To activate this application, the top executive’s consent is required.
The main fields will be filled in automatically, in line with the already existing certificate. Indicate the email (as necessary), the locality, the keys repository and the Path to repository.
Press the “Submit application” button. (Picture 15).
NB! The “Personal Computer” repository is insecure. We recommend using the secure key information media to reduce the risk of compromising the digital signature keys.
Tick the box for confirmation of correctness of the application under submission and press the “Confirm” button. (Picture 16).
Enter the password and press the “Sign” button. (Picture 17).
Remember the application number. Upon the approval of the application by top executive, install the certificates as per the “Checking the application status”. (Picture 18).