Steps to Verify SSM CTC Certificate

01   PRE-REQUISITES

User need to download both Pos Digicert root certificate and intermediate certificate. ( Both certificates can be downloaded from Pos Digicert’s website. )

Steps to Download Pos Digicert Root and Intermediate Certificates

Step 1

Go to https://www.posdigicert.com.my/downloadpage/root-certificate

Step 2

Search at POS DIGICERT CLASS 2 ROOT CA G2 section, click at these two certificates to download to your local machine.

1. PosDigicert Class 2 Root CA G2 – This is the root certificate used for Org Certificate
2. PosDigicert Document Signing - This is the intermediate certificate used for Org Certificate

Step 3

Save those digital certificates to your preferred location at your computer.

Note: The screen may be different depending on end user’s choice of browser.

02   STEPS TO IMPORT DIGITAL CERTIFICATE INTO ADOBE READER / ACROBAT OR WINDOWS

You can import the digital certificates to your trusted identity list to be used for signature validation.

Steps to Download Pos Digicert Root and Intermediate Certificates

IMPORT DIGITAL CERTIFICATE INTO ADOBE READER / ACROBAT

Step 1

Open Adobe Reader/ Acrobat application, then go to the Preferences dialog box ( Edit > Preferences ).

Step 2

Under Categories, select " Signatures " . To view Identities & Trusted Certificates, click " More ".

Step 3

Select Trusted Certificates on the left. (Digital IDs > Trusted Certificates ). To import the previously downloaded root and intermediate certificates, click Import.

Step 4

Browse for the certificates that you have downloaded earlier. Refer 2.1 Pre-requisites.

Step 5

Click on each of the contact. It will display the certificate associated with the current selected contact on Certificate section below. Then click Trust.

Step 6

Please make sure you tick on the ‘Use this certificate as a trusted root’. Then click OK.

Step 7

Repeat step 6 and 7 for the other certificate.

Step 8

Once done, click Import.

Step 9

Click OK at the Import status pop-up message. The imported Pos Digicert’s root and intermediate certificate will be displayed at the Trusted Certificates.

IMPORT DIGITAL CERTIFICATE INTO WINDOWS

ROOT CERTIFICATE

Step 1

Double click root certificate file to install. Click at Install Certificate.

Step 2

Click Next

Step 3

Browse certificate store

Step 4

Select certificate store ‘Trusted Root Certificate Authorities’

Step 5

Click Next

Step 6

Click Finish

INTERMEDIATE CERTIFICATE

Step 1

Double click root certificate file to install. Click at Install Certificate.

Step 2

Click Next

Step 3

Browse

Step 4

Select certificate store

Step 5

Next

Step 6

Click Finish

CONFIGURE ADOBE READER TO TRUST CERTIFICATE INSTALLED IN WINDOWS

Step 1

Open adobe reader. Go to menu Edit > Preferences

Step 2

In signatures categories > Verification > More

Step 3

Under Windows Integration, please tick 2 boxes - Validating Signatures and Validating Certified Documents and then Click OK

2.      How to trust Date & Time Stamping (DTS) certificate in Acrobat Reader application

STEP 1:

To view the signature status   ( untrusted certificate )

1. Open your Signature Panel. ( left hand side of your pdf document )
   
   
2. Right click on the Signature name
   
   
3. Select "Show Signature Properties..." from the list
   
   
4. If the screen shows the statement as per item 4 ( "The signature includes an embedded timestamp but it could not verified." ).Please continue to   STEP 2: To configure the Adobe Reader’s signer trust setting

STEP 2:

To configure the Adobe Reader’s signer trust setting

1. At the Signature Properties screen,
   Click on the "Advanced Properties..." button
   

2. At the Advanced Signature Properties screen,
   Click on the "Show Certificate..." button
   

3. At the Certificate Viewer screen,
   Click on the "Trust" tab
   
   
4. Click on the "Add to Trusted Certificate..." button
   
   
5. Then, a message box will appear.
   Click on the "OK" button
   

6. At the Import Contact Setting screen,
   Please tick the "Certified documents" item and all component under Certified documents
   
   
7. Click on the "OK" button.
   Now, close all the screens which are open and proceed to the next step

STEP 3:

To view the trusted signature status

1. Open your Signature Panel. ( left hand side of your pdf document )
   
   
2. Right click on the Signature name
   
   
3. Select "Show Signature Properties..." from the list
   
   

4. Statement should appear as per screen 4
   ( The signature includes an embedded timestamp. Timestamp:... )
   
   
5. If statement still appear as per screen 5,
   ( The signature includes an embedded timestamp but it could not verified.)
   Click on the "Validate Signature" button
   
   
6. Now you should be able to see the Trusted Time Stamp used