Support

Digital Sign has at your disposal a Customer Support and Support team (SAC) where we can assist you with any issues and problem solving.

New Digitalsign Certification Authority

New CA

DigitalSign is pleased to report that it has successfully completed the accreditation of new Certification Authorities for the issuance of Qualified Digital Certificates with the National Security Office (GNS), using the latest cryptographic algorithms, including the 'Elliptical Curves' technology.

These new CAs have already been published, since 03/25/2021, in the Trust List published by the European Union (EU List of eIDAS Trusted Lists - LOTL) –https://esignature.ec.europa.eu/efda/tl-browser/#/screen/tl/PT/7

Certification Chain

To proceed with the installation, download the installer of the certification chain in the following link:

If you intend to install manually, the certification chains for the new CA's are as follows:

Update of a certificate issued in the old CA

DigitalSign has successfully completed the certification of a new Root Certification Authority (ROOT CA), which makes it NECESSARY to update your certificate issued in the old CA, to ensure it remains VALID.

To make this process simpler and faster, DigitalSign provides a certificate updater. Please see the instructions and the example video below.


For updating certificates issued on a physical device (Smartcard, Token), please download the updater following the steps described and example video below.

1) Install and run the UpdateCertificado.exe application available at: https://downloads.digitalsign.pt/AtualizarCertificado.exe
2) Enter your certificate device and press next
3) Select your Qualified Certificate from the list and press next
4) Enter your PIN;
5) You can close the app.

Thank you, you have successfully updated your certificate.

Notes:
1. The certificate reissue and update process does not entail any cost or submission of documentation by the certificate holder, and can be completed at the comfort of your home or office;
2. The expiration date of your digital certificate remains unchanged;
3. This new CA (Certification Authority) is already stated in the Trust List published by the European Union (EU List of eIDAS Trusted Lists)

Issuance of the Advanced Digital Certificate

Download and App Installation

To issue your Advanced Digital Certificate, it is necessary to install the App “Advanced Certificate Issuance Service”, using the data mentioned in point 3 of the email received informing that the certificate is ready to be collected.

1. Download the application available at the following link: https://downloads.digitalsign.pt/DsIssue/DsIssueSetup.exe

NOTE: If the download does not start automatically, try downloading from another browser.
Compatible with Windows Operating System version 8.1 or higher.

2. After installing, open the application and fill in the data received by email with the order details - then click on ”Validate”

passo1

3. Complete your email validation via email request sent by DigiCert.

passo2

4. Please follow the instructions in the application to complete the installation of your Advanced Digital Certificate.

passo3

passo4

passo5

Frequently Asked Questions (FAQ)

Why haven't I received the email to collect the certificate?
If the document process was completed and the payment made, but no certificate collection email was received, please contact DigitalSign Customer Support - Telephone: +351 253 560 642 / suporte@digitalsign.pt

I have interrupted the DSissue application and have not completed the certificate collection, what should I do?
It is mandatory to resume the issuance and/or installation at the same step where it was started.
Please run again the application by entering the order details and the process will resume at the step where the issuance was suspended.

It is mandatory to resume the issuance and/or installation at the same step where it was started.
Please run again the application by entering the order details and the process will resume at the step where the issuance was suspended.
Please contact DigitalSign Customer Support - Telephone: +351 253 560 642 / suporte@digitalsign.pt

I have finished the certificate collection/issuance. Where can I find the backup file (.pfx)?
A backup copy of the certificate (a file in the '.pfx' format) is automatically saved on the desktop of the computer in use with following description DigitalSign-«no order».pfx.

How to back up the advanced digital certificate already issued?
Please follow the instructions in this manual

HSM Cloud

How does the remote signature work?

DigitalSign is a qualified provider of security services (see Trusted List published by the Supervisory Entity - Gabinete Nacional de Segurança - on the website of the European Commission - https://esignature.ec.europa.eu/efda/tl-browser/#/screen/tl/PT/7 and being aware of the difficulties of using the electronic signature using smartcard or token, implemented the IDcert service that aims to create a certificate and its use, in a totally remote and centralized way in its secure datacenters.

Using the HSM Cloud Certificate

For use in systems integrated with DigitalSign

When integrated with our partners, you do not need to install any software. The subscription process is extremely simple - you just need your credentials (email + password) and to have your mobile phone with you (you will receive a confirmation SMS):

Assinatura HSM Cloud

For Generic Use

For use in other applications (such as Microsoft Word, Adobe Acrobat, PDF Sign & Seal, etc.), you will need to install the required middleware - VirtualCSP - to ensure integration:

Notes: For use in:

  • PDF Sign&Seal needs to have version 6.6.0 or higher installed. To see your version of PDF Sign & Seal see the Help -> About panel;
  • Microsoft Office - You must have version of Microsoft Office 2013 or higher installed.

Download

Download middleware (VirtualCSP) from:

https://downloads.digitalsign.pt/VirtualCSP.Installer.v2.2.3.0.msi

and then install as instructed in the 'INSTALLATION' tab.


NOTE: Minimum Requirements for Using VirtualCSP: Computer with 64-bit Operating System, Version 'Windows 8.1' or Higher

Installation and use on windows system

Installation guide

Usage best practices

SafeSign Standard (SafeSign IC) – Management Software

The SafeSign Standard (SafeSign IC) is innovative software developed exclusively for DigitalSign customers, in order to simplify the use of digital certificates issued by DigitalSign Certification Authorities.

Check with the operator of the Customer Service (CS) of DigitalSign, what options are available for the proper use of the software with your cryptographic device (card or token).

WARNING: At no time import and export certificates to your cryptographic device, you may eventually damage your certificate.

Whenever it is necessary to issue a new certificate due to misuse of the Software, DigitalSign, will not be responsible. The issuance of a new certificate and a new document validation is required.

Any doubts about our software, please contact one of our specialist operators.

Cryptographic device

The cryptographic device that contains your digital certificate is personal and non-transmissible use. Remember that your certificate is your identity in the virtual world! Do not give to others your card or token containing your certificate, or provide the access codes (PIN and PUK), as they are unique to use with your certificate.

NOTE: By facilitating your certificate together with your passwords (PIN and PUK), the holder can, for example, create legal documents on your behalf, among others.

The cryptographic device should only be used when performing a digital signature. The digital certificate replaces your handwritten signature, as such, identifies the person who holds it.

In case of loss of the device, inform DigitalSign as soon as possible, so we can proceed to the revocation of it. Revocation action should be made by the holder. Following revocation, your certificate will no longer be valid and, therefore, you will need to purchase another.

Take care of your device containing your certificate, bend it, do not damage the chip, exposing it to heat or water, if your device does not run for misuse, your certificate will be unusable.

DigitalSign, is not responsible for misuse of the certificate and the mismanagement of the cryptographic device.

When in doubt, contact DigitalSign Support operator, which will help you as best as possible.

Online Validation

Video Call - Accepted identification documents

To validate online your identity by video call, you will need your identification document, namely, identity card or passport.

  • Example: Valid Portuguese Identity Card issued after 2009

Please check the list of accepted ID’s for making the videocall, sorted by country/nationally.

Please note that:

  • Identification documents without a term of validity are not accepted;
  • Not accepted: residence permits, copies and expired/damaged ID’s.
  • The customer must grant access to camera and microphone to do the video call.
  • The video call must be performed by the certificate holder, without any third-party intervention.

Online Identity Validation

1. Please access the link received by email to start your online identity validation.

2. Once there, please enter your order number and Identification phrase set by you and proceed with the validation process.

3. Install the App 'IDnow Online-Ident' directly from Play Store (ios) or Google Play (android).

4. Open the application and start the identification process with your Ident-ID
Your Ident-ID will be provided on this page.

You may follow up the process through the images below:

5. After starting the video call, an operator will guide you through the identification process and perform your online identity verification.

After the process is completed on your mobile device, please wait until the identification is validated.

Downloads

Technical Support Application

TeamViewer is the tool used by DigitalSign, to provide technical support. Download TeamViewer application and run it when prompted, provide the ID and password to our Customer Service team.

Guides

1. Qualified Digital Certificate - Installation of the Certification Chain

CSR - Certificate Signing Request

What is a CSR?

The CSR (Certificate Signing Request) is an encrypted file that contains the public key, location and URL (Web address) of the company.

To create a CSR, you must use the Web server software. When generating CSR, the Web server creates two files: a private key and CSR.

The CSR is required when the client asks a server ID. The CSR has to be sent to us together with the application of server certificate.

How to create a CSR?

Before you start the request to issue an SSL certificate, you must ensure that you already have the CSR.

When generating the CSR, most server software requests the following information: common name (por exemplo, www.example.com), organization name and location (country, state/province, city/town), key type (typically RSA), and key size (minimum 2048 bits).

Below you will find the instructions for the main servers. For other servers you can consult this help.

  • Microsoft IIS

CSR Generator: DigiCert Certificate Utility
Instructions: IIS 10 | IIS 8/8.5 | IIS 7 | IIS 5/6 | IIS 4 | PFX Import/Export

  • Microsoft Exchange Server

CSR Generator: CSR for Exchange 2007 | DigiCert Certificate Utility
Instructions: Exchange 2016 | Exchange 2013 | Exchange 2010 | Exchange 2007 | PFX Import/Export

  • Apache Server (Open SSL)

CSR Generator: Open SSL CSR Wizard
Instructions: Apache Server | Ubuntu Server with Apache2 | PFX Import/Export

  • Tomcat Server (Keytool)

CSR Generator: Java Keytool CSR Wizard
Instructions: Tomcat Server | Java Based Server

  • Microsoft Lync

CSR Generator: DigiCert Certificate Utility
Instructions: Lync 2013 | Lync 2010

What is the aspect of a CSR?

Visually the CSR is text that starts with a line containing: '-----BEGIN CERTIFICATE REQUEST-----' and ends with the last line with: '-----END CERTIFICATE REQUEST-----'

Example:

-----BEGIN CERTIFICATE REQUEST-----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-----END CERTIFICATE REQUEST-----

General Use - Certificates

Usage context  QDC 
 ADC 
 Sign any documents and contracts on behalf of the organization. X  
 Sign documents and contracts not involving the transfer or encumbrance of real estate. X  
 Sign routine documents which does not involve the assumption of any obligations or commitments by the Organization.

X

 
 Sign on Electronic Platform of Licensing of Health Units (Law No. 127/2014).

X

 
 Sign on Hiring Electronic Platforms (Law No. 96/2015 of 17 August).

X

 
 Sign communication from the onset of activity and real estate transactions along IMPIC - Institute of Public Markets, Real Estate and Construction (Law 83/2017 - Article 46).

X

 
 Sign communications electronically to the Town Councils, within the legal system of urbanization and construction (Law 60/2007).

X

 
 Sign on Hiring Electronic Platforms (Law No. 96/2015 of 17 August);
+
 Sign communication from the onset of activity and real estate transactions along IMPIC - Institute of Public Markets, Real Estate and Construction (Law 83/2017 - Article 46)
+
  Sign communications electronically to the Town Councils, within the legal system of urbanization and construction (Law 60/2007)

X

 
 For electronic billing only.  

X

 For e-mail signature only.  

X

Consumer Information

In the event of a consumer dispute, the consumer may resort to the following consumer dispute resolution entity:

Centro de Arbitragem de Conflitos de Consumo do Vale do Ave/Tribunal Arbitral - Guimarães
E-mail: triave@gmail.com
Phone number: 253 422 410
Website: www.triave.pt

For updates and more information, please consult the Portuguese Consumer Porta available at www.consumidor.pt (under the article 18 of the Portuguese Law no. 144/2015, of 8 September)

^