This how-to will walk you through the process of ordering and installing North American Energy Standards Board (NAESB) client certificates from SSL.com.
Ordering
- Navigate to the NAESB Client Certificates page on SSL.com’s website.
- Click the Buy Now! button.
- Select a duration for your certificate order and click the Add to Cart button.
- In the shopping cart, you can change the quantity of NAESB certificates, remove them from your cart, or return to shopping with the Shop More button. When your order is complete and correct, click Checkout.
- If you are not already logged into your SSL.com account or do not have an account yet, you will be prompted to log in or create a new account at the Checkout screen. If you have an account, select I do and I want to log in now, enter your username and password, then click Next >>.
- If you do not have an SSL.com account, select I do NOT but I want to create one, fill in the requested information (username, email address, password, and billing information), then click Next >>.
- If your account contains existing funds, they will be applied to your purchase. If your account does not contain sufficient funds, you will be prompted to add more. Click Next >> when your account has sufficient funds to complete the transaction.
- If your order has been successfully placed, you will see a green bar near the top of the browser window, reading “Order successfully placed. Click here to finish processing your ssl.com certificates.” Click the link.
- On the screen that opens, find your certificate order, then click the provide info link, located in the Action column.
- Enter the requested registrant information, then click Next >>. For NAESB certificates, you must include your NAESB entity code in the Entity Code field. You can also enter your company’s Dun and Bradstreet number (also known as a D-U-N-S or Duns number) here to expedite validation. (Please make sure that your company information in Dun and Bradstreet is correct and up-to-date before using this option.)
- Enter a name and email address for the recipient. If you wish to re-use the registrant info from the previous page, you can simply check the box next to Registrant Contact. Click Next >> after specifying the recipient.
- On the next screen, upload up to five documents for validation of your organization by SSL.com. If your certificate will also include an individual person’s name, additional documentation is required.
- Documentation for your organization should include:
- A link to a Reliable Data Source including the organization’s name, address, and telephone number. Acceptable examples include:
- A link to a government agency in the jurisdiction of the Applicant’s legal creation, existence, or recognition.
- For example, a company doing business in Alaska but incorporated in Nevada would need to appear in a search of Nevada businesses.
- A link verifying your information in a third party database that is periodically updated and considered a Reliable Data Source. Examples include:
- Dun & Bradstreet (Note: If your company has a Dun and Bradstreet number [also known as a D-U-N-S or Duns number], you can enter it along with your other company information when ordering, as mentioned above.)
- Hoovers
- Better Business Bureau
- Companies House (for UK businesses)
- A link to a government agency in the jurisdiction of the Applicant’s legal creation, existence, or recognition.
- A link to a Reliable Data Source including the organization’s name, address, and telephone number. Acceptable examples include:
In most cases, businesses and organizations will not need to upload documents to their order, but can simply provide a URL to SSL.com support staff. You can submit your link via an email to Support@SSL.com, or by using the chat link in the lower right corner of the SSL.com website.
- If your certificate will include the identity of an individual person, please also upload:
- A scan of the front of a valid, government-issued photo ID card or passport ID page. The ID number may be obscured, but we must be able to see your name, address, year of birth, and photograph.
- A scan of the back of the government-issued ID card or passport ID page.
- A photograph of of yourself holding the government-issued ID next to your face so that your face may be compared with the image on the ID. The photograph should be at least 5 megapixels (MP) – most current smartphones can provide an image of 5MP or greater.
When you are done adding files, click Submit. In some cases, SSL.com may request additional supporting documents before issuing a certificate.
- Documentation for your organization should include:
- When you have submitted your documents, your new certificate will have a status of pending validation until we verify the information you’ve submitted, including the telephone number of your organization.
- Once your telephone number has been verified, the perform callback link will be made available to you. To find it, navigate to the documents page of your order.
- Next, click the Perform Callback link, located at the lower left of the page.
- A dialog box will appear. Enter one or more email addresses to send the callback link to, and then click the Send button.
- A green alert message will appear, verifying that the callback links have been sent.
- When your callback email arrives, click the link in it.
- After clicking the link, a callback verification form will open in your web browser. To initiate a call to your verified phone number from our automated system immediately, just click the Call Now button. You can choose between a voice call and SMS text by using the radio buttons at the bottom of the form. Finally, by using the Callback Types drop-down menu, you can choose to schedule an automated call at a later time via the Scheduled Callback option, or schedule a direct call from a member of our staff by choosing Manual Callback. If you choose one of these options, form elements for scheduling the call will appear dynamically. (For more information on these options, please refer to our how-to on Callbacks for OV Certificates.)
- After clicking Call Now, a form for verification code entry will appear. When you receive your call it will include the code. Enter the four-digit code and then click the Verify Phone button.
- If everything has gone correctly, an alert message will appear in your browser confirming that callback verification is complete.
- After a successful callback, SSL.com will send you a Certificate Activation Link email message. Follow the link included in it, which will take you to the certificate generation page. Alternately, you can click the generate certificate link in the Action column of the Orders tab in your SSL.com account.
- Click the Generate Certificate button.
- Your certificate is ready! You can copy and paste your certificate and private key from the on-screen fields, or generate a PFX file by creating a password and clicking download. Your password must be at least 6 characters. Remember this password, because you will need it when installing the certificate on your computer. It is also essential that you keep your private key in a secure location and do not lose it.
Installation
Windows
- Double-click the PFX file you downloaded to open it. The filename will end with
.p12
- The Certificate Import Wizard will open. Select Current User, then click the Next button.
- The next window will ask you to specify a file to import. The file you double-clicked in step 1 should already be selected, so click the Next button to continue.
- Enter the password you created when you downloaded the PFX file from SSL.com. Under Import Options, make sure that Include all extended properties is checked. If you want to be prompted for your PFX password every time the private key is used (e.g. for signing), check Enable strong private key protection. If you would like to be able to export a PFX containing the private key at a later date, check Mark this key as exportable. When you are done selecting options, click the Next button.
- Make sure that Automatically select the certificate store based on the type of certificate is checked, then click the Next button.
- Click the Finish button.
- If you selected Enable Strong Private Key Protection in step 4, then the Importing a new private exchange key dialog box will appear. Click the OK button to continue.
- You’re all finished! Click the OK button to exit the wizard.
macOS
- Open Keychain Access.app, located in Applications > Utilities.
- Select the login keychain.
- Select File > Import Items from the menu.
- Navigate to the PFX file you downloaded from SSL.com, then click the Open button. Note that the filename will end with
.p12
. - Enter the password you created when downloading the PFX file and click the OK button.
- If prompted, enter your login password and click the OK button to unlock the Login keychain.
- The certificate and private key are now installed on the computer.
Note: If an error message appears that reads “An error occurred. Unable to import the certificate. Error: -26276,” click the OK button to dismiss the message and then check in Keychain Access to check whether the certificate and private key were actually installed. This message appears to be a common glitch on at least some versions of macOS, and may appear despite the fact that the PFX was successfully imported.
Video: Validation Requirements for OV, IV, and EV Certificates
Thank you for choosing SSL.com! If you have any questions, please contact us by email at Support@SSL.com, call 1-877-SSL-SECURE, or just click the chat link at the bottom right of this page. You can also find answers to many common support questions in our knowledgebase.