For registered participants: CS OTE Portal Sandbox CZ

Certificates

The communication with CS OTE is encrypted by digital certificates. The certificate can be hardware type, like USB token and smart card, or can be software type, stored in a software repository. Each individual who will access OTE system should acquire certificate. Issuing costs of the certificate are borne by the applicant.


The list of supported certification authorities and certificates for client and SSL communication with CS OTE system:
Authority Country Commerce CA
(authentication and encryption)
Qualified CA
(Digital signature/mark/seal)
Note
První certifikační autorita, a.s.
http://www.ica.cz/ 
CZ  YES 
  • all the commerce certificates 
YES 
  • I.CA Qualified CA/RSA 07/2015
  • I.CA Qualified 2 CA/RSA 02/2016
  • I.CA - Qualified Certification Authority, 09/2009
  • I.CA - Qualified root certificate
 
Česká pošta, s.p. (PostSignum)
http://www.postsignum.cz/
CZ  YES 
  • all the commerce certificates
YES 
  • PostSignum Qualified CA
  • PostSignum Qualified CA 2
  • PostSignum Qualified CA 3 
 
 eIdentity a.s.
http://www.eidentity.cz/app
CZ  YES 
  • all the commerce certificates 
YES 
  • ACAeID2.1 - Qualified Issuing Certificate
    (kvalifikovaný systémový certifikát vydávající CA)
  • ACAeID3.1 - Qualified Issuing Certificate
    (kvalifikovaný systémový certifikát vydávající CA)
 
NetLock Ltd
http://www.netlock.hu/ 
HU  YES 
  • NETLOCK Trust Advanced CA 
  • NETLOCK Trust Advanced Plus CA
YES 
  • NetLock (Class QA)
  • NetLock (Class Q Legal)
  • NetLock (Class Q)
  • NetLock (Class Q Legal Spec.) 
  • NETLOCK Trust Qualified CA
  • NETLOCK Trust Qualified QSCD CA
  • NETLOCK Trust Qualified SCD CA
  • NETLOCK Trust Qualified EV CA
 
 GLOBALTRUST
http://www.globaltrust.eu/
AU  YES 
  • GLOBALTRUST ADVANCED 1
  • GLOBALTRUST CLIENT 1
  • A-CERT CLIENT (only issued ones)
  • A-CERT ADVANCED (only issued ones) 
NO Previously ARGE DATEN
 QuoVadis
https://www.quovadisglobal.com/
 CH/BE YES 
  • QuoVadis Swiss Advanced CA G2
  • QuoVadis Swiss Advanced CA G3
YES 
  • QuoVadis Belgium Issuing CA G2
 
 GeoTrust
https://www.geotrust.com/
US  YES 
  • GeoTrust SSL CA - G3 
NO   
 GoDaddy.com
https://uk.godaddy.com/
US  YES 
  • GD Root Certificate Authority - G2 
NO   

 


The list of supported certification authorities and certificates only for client communication with CS OTE system:
Certification Authorities
Country
Requested Certificate
Link
GlobalTrust
Austria
Globaltrust advanced 1
NetLock
Hungary
NETLOCK Trust Advanced Plus CA
POSTArCA
Slovenia
POSTArCA
QuoVadis
Netherlands
QuoVadis EU Issuing Certification Authority G3
Certum Poland

CERTUM QCA
CERTUM QCA2
Certum - Certum Level III CA

https://www.certum.eu/
ArubaPEC S.p.A. Italy ArubaPEC S.p.A. NG CA 2
ArubaPEC S.p.A. NG CA 3
https://www.pec.it/
Asseco Data Systems S.A. Poland

CertumQCA a CertumQCA2

https://www.assecods.pl/
Unizeto Technologies S.A. Poland

Certum Digital Identification CA SHA2
Certum Organization Validation CA SHA2
Certum Digital Identification CA SHA2

http://www.unizeto.pl/
Unizeto Sp. z o.o. Poland

Certum CA

http://www.unizeto.pl/

 


The list of supported certification authorities and certificates only for server communication with CS OTE system:
Certification Authorities
Country
Requested Certificate
Link
QuoVadis
Switzerland
Business SSL - only for server communication
 
GeoTrust
 
USA
GeoTrust SSL CA - G3 (True BusinessID True BusinessID Wildcard Enterprise (OV) SSL Enterprise (OV) SSL Wildcard)

GlobalSign

Belgium

AlphaSSL CA

http://globalsign.com

 

1. Acquiring new certificates

  • Certificates might be used for both production and test (Sandbox) environments of the CS OTE,
  • Certificates can be acquired regardless the application process for the agreement with OTE.


For details please follow up to the relevant certification authority website listed in the table above. 

 

Contacts


 

2. Registration certificates to CS OTE


Export and registration of the public part of the certificate

Please register the public part of the certificate to CS OTE that is used to verify the user’s identity against the private part of the certificate. Login to CS OTE is possible immediately after the registration of the certificate.


Certificates can be registered by:

  • Authorized person to manage other user accounts and certificates,
  • User who have at least one valid certificate
     

4 pairs of certificates can be registered at one user account. 


Manual for contractual parties containing further information on automatic communication, OTE-COM application and e-mail communication.pdf (800 KB)

Manual for registration certificates to CS OTE.pdf
 (696 KB)


Please note for a new company the registration is completely done by OTE.

 

3. Renewal certificates

Users renew their certificates according the instructions of his certification authority.

Users with still valid certificate or Authorized persons register the renewed public parts to CS OTE as described in Section 2.