Authorisations

 

There are three roles within the certificate request process:

  • The certificate requester completes the certificate request on behalf of the organisation.
  • The certificate approver signs the request on behalf of the organisation with the organisation's own domains
  • The agreement signer signs the GTCs as part of the certificate acquisition process.

The three roles can also be performed by a single person. When acquiring Gold certificates via web shop, you can use the following customer agreement in which all roles are covered by a single authorisation. Please indicate the existence of this authorisation upon placing each web shop order or enclose a copy.

Would you like to add or cancel authorisations for access responsibles within a Managed PKI? If so, please use our change form and authorisation form on the Managed PKI page (topic “Contract modification and termination”):

If the certificate requester is not the owner of a domain, he or she can complete a domain authorisation form and have this signed by the domain owner.  Alternatively, web shop customers can also prove that they have access to the domain by entering their request ID of the certificate application

  1. either in a file /. well-known/pki-validation/swisssign-check.txt without any additions (no forwarding allowed)
  2. or in one meta tag of an HTML file /. well-known/pki-validation/swisssign-check.htm in the formcreate (no forwarding allowed)
  3. or in a TXT entry of the DNS record of the domain: swisssign-check= enter

Please ensure for all authorisations that the organisation's authorised representatives as per the commercial register entry, organisation entry, etc. provide their signature. If a "dual signing authority" is specified in the commercial register, the authorisation should also be signed by both individuals as per the register entry. 

  • Please ensure for all authorisations that the organisation's authorised representatives as per the commercial register entry, organisation entry, whois database etc. provide their signature.
  • If the Commercial Register requires a "collective signature" of two persons, the authorization should also be signed by two persons in accordance with the entry in the Register.

Loading