Once the certificate is pending delivery, the steps to be taken by the Digital Certification Service Manager and the T-CAT owner user are to deliver, download and install the T-CAT P.
The deadline for delivering the T-CAT P is 30 calendar days from when the certificate is pending delivery.
To receive the email with the instructions to follow to make the download, the user holding the certificate must first sign the delivery sheet and define a password with the Service Manager.
Important: the user has 10 days to download the certificate, after these it will be automatically revoked for security reasons and that the T-CAT P can only be downloaded once, therefore it is essential to download it on the computer of the owner user.
Below we detail the steps:
Step 1.- Download the T-CAT P
To download the certificate, follow the instructions in the email by clicking on the link provided.
When the user clicks on the link, the application will prompt:
The suspension code , which appears in the download email
The password that is defined at the time of delivery of the certificate
The captcha
Once done, click Send .
The application informs the user that the process may take a few minutes. To start the process click on Proceed.
The application will start generating the keys. After that, the following screens will be displayed:
If you press "Save" the file will be saved in the location defined for downloads. If, on the contrary, you press "Open", the certificate will be downloaded and installed in the browser used.
Step 2.- Installation of the T-CAT P
The user will find the file with the extension .p12 or .pfx downloaded on their computer, in the folder defined for downloads.
The file with this format contains the certificate and the private keys.
To install it, double-click on the file and then follow the wizard steps:
The password requested in the next step corresponds to the " suspension code":
OPTIONAL:
To be able to export (make a copy of) the certificate once it is installed in the browser and to be able to install it on other browsers or devices, you must select the "Mark this key as exportable" option.
If you want to protect the T-CAT P with a user password, you must check "Enable secure protection of the private key".
If this last option is enabled, the system will warn every time an application needs to make use of the certificate's private key (identification or signature).
- Once the previously mentioned option is marked, if you continue the wizard you will reach the "Finish" button and then the following screen will appear, where you must click on "Security level".
- On the next screen mark "Alt" and continue the wizard.
- Finally, indicate the code you want to use for the use of the certificate and Finish the import wizard. The certificate is already protected with a PIN. VERY IMPORTANT : You must enter a PIN that is easy to remember. If it is forgotten, it cannot be recovered, it would involve reinstalling the p12 or pfx file, and if it was no longer accessed, the certificate would need to be revoked.
Press "accept" and the T-CAT P will have been installed in the certificate repository and can now be used.
Step 1.- Download the T-CAT P
To download the certificate, follow the instructions in the email by clicking on the link provided.
When the user clicks on the link, the application will prompt:
The suspension code , which appears in the download email
The password that is defined at the time of delivery of the certificate
The captcha
Once the form is completed, click Submit .
The application informs the user that the process may take a few minutes. To start the process click on Proceed.
Once the download process is complete, the following screen will be displayed:
Step 2.- Installation of the T-CAT P
On the MAC you will need to go to "Finder" in the "Downloads" folder and look for the file that has just been downloaded (your certificate) with a long number and extension ".pfx" or ".p12".
Click on the file and a screen like the one below will be displayed to put the password (password is the suspension code).
Once the installation is complete, go to "Keys" in the "My certificates" folder and in this you will find the installed certificate.
The T-CAT P download is operating system independent as it is a standard P12/PFX format file that can be installed on any operating system, browser and application (that support the use of certificates), including Linux .
The point is that in Linux there is no central store of certificates, as in MAC and Windows, and therefore you have to go application by application installing it; browser, email, etc...
Browser: Can I use the idCAT or T-CAT P on more than one computer or browser?
Today, software certificates (e.g.: T-CAT P) can be installed on these devices following the instructions in the corresponding manual:
The AOC Consortium works continuously to obtain the maximum recognition of its certificates as well as to guarantee their operation with the most used combinations of operating systems and computer programs (Internet browsers, office applications, etc.).
In the same sense, the analysis of the profiles of the users of the AOC Consortium certificates has made it possible to identify which are the most used combinations and to concentrate efforts on maintaining the compatibility of the AOC Consortium certificates with them.
The following tables show the different compatibility scenarios of the AOC Consortium certificates.
| compatible |
| Incompatible |
Windows operating systems
| Operating System Version | T-CAT (SafeSign 3.0.124) | T-CAT (SafeSign 3.0.76) | T-CAT (SafeSign 3.0.40) | Software (idCAT, T-CAT P) |
| Windows XP Professional (SP3) | ||||
| Windows XP Embedded | ||||
| Windows XP Tablet PC Edition | ||||
| Windows 2003 Server (SP2) | ||||
| Windows 2003 Server R2 (SP2) | ||||
| Windows Vista Ultimate (SP2) | ||||
| Windows Vista Business (SP2) | ||||
| Windows Vista Enterprise (SP2) | ||||
| Windows Vista Professional (SP1) | ||||
| Windows 7 Ultimate (SP1) | ||||
| Windows Server 2008 Enterprise SP2 | ||||
| Windows 8.1 | ||||
| Windows 10 |
Applications on Windows
| application | T-CAT (SafeSign 3.0.124) | T-CAT (SafeSign 3.0.76) | T-CAT (SafeSign 3.0.40) | Software (idCAT, T-CAT P) |
| Internet Explorer 8 | ||||
| Internet Explorer 9 | ||||
| Internet Explorer 10 | ||||
| Internet Explorer 11 | ||||
| Microsoft Outlook 2003 | ||||
| Microsoft Outlook 2007 | ||||
| Microsoft Outlook 2010 | ||||
| Microsoft Outlook 2013 | ||||
| Microsoft Outlook 2016 | ||||
| Mozilla Firefox up to 3.6 | ||||
| Mozilla Firefox 13.0.1 | ||||
| Mozilla Thunderbird up to 3.1 | ||||
| Mozilla Thunderbird 13.0.1 | ||||
| Adobe Reader X | ||||
| Adobe Reader XI | ||||
| Adobe Reader DC | ||||
| Google Chrome 18.0, 21.X, 35.0, 49.0 |
Note: Internet Explorer 11 as of August 2021 Microsoft will stop supporting and updating this browser
Compatibility with MAC OS
| scenario | T-CAT (SafeSign 3.0) | T-CAT (SafeSign 3.0.77) | Software (idCAT, T-CAT P) |
| MAC OS X 10.5 / Mozilla Firefox 0.9.1 | 10.2 and 10.3 | ||
| MAC OS X 10.5 / Mozilla Thunderbird 0.7.1 | 10.2 and 10.3 | ||
| MAC OS X 10.6 – 10.8 / Mozilla Firefox 14.0.1 | Previous installation of the PKCS#11 library | Certificate installed in the application repository | |
| MAC OS X 10.9-10.10 / Mozilla Firefox 14.0.1 | Previous installation of the PKCS#11 library | Certificate installed in the application repository | |
| MAC OS X 10.6 – 10.8 / Mozilla Thunderbird 14.0 | Previous installation of the PKCS#11 library | Certificate installed in the application repository | |
| MAC OS X 10.6 – 10.8 / Adobe Reader X | Previous installation of the PKCS#11 library | Certificate installed in the application repository | |
| MAC OS X 10.9-10.10 / Adobe Reader X, XI, DC | Previous installation of the PKCS#11 library | Certificate installed in the application repository | |
| MAC OS X 10.11 / Mozilla Firefox | Certificate installed in the application repository | ||
| MAC OS X 10.11 / Mozilla Thunderbird | Certificate installed in the application repository |
Compatibility with LINUX
| scenario | T-CAT (SafeSign 3.0.77) | Software (idCAT, T-CAT P) | |
| Linux Ubuntu 12.0.4 / Mozilla Firefox 15.0 | Previous installation of the PKCS#11 library | Certificate installed in the application repository | |
| Linux Ubuntu 14 – 16 / Mozilla Firefox 15.0 or higher | Previous installation of the PKCS#11 library | Certificate installed in the application repository | |
| Linux Ubuntu 12.0.4 / Mozilla Thunderbird 15.0 | Previous installation of the PKCS#11 library | Certificate installed in the application repository | |
| Linux Ubuntu 14 – 16 / Mozilla Thunderbird 15.0 or Higher | Previous installation of the PKCS#11 library | Certificate installed in the application repository | |
| Linux Ubuntu 12.0.4 / Adobe Reader 9 | Previous installation of the PKCS#11 library | Certificate installed in the application repository | |
| Linux Ubuntu 14-16 / Adobe Reader 9 or Higher | Previous installation of the PKCS#11 library | Certificate installed in the application repository |