Prerequisites

To use the service, register a business customer account with ELSTER or a signature certificate in accordance with an EORI number and then log in.

You can find a list of possible certificates in the eIDAS Dashboard for the European Commission.

Certificate management

After successfully registering with the “Certificate Management for B2A” service, you can upload your certificates.

You will need these signature and encryption certificates for the communication of your participant software with the ATLAS procedures, including IMPOST and WKS, dAKZ, as well as with the central EU applications (e.g. ICS2)

You must select the correct intended use when uploading the certificates so that you are able to use your certificate for the appropriate applications. To select the following uses, you will also need an EORI number.

Currently, the following uses are available for the corresponding applications:

• EU Trader Portal: system-to-system communication with the EU via ICS2
• EU Conformance Test: mandatory conformance test before live operation (ICS2)
• ATLAS Digital Signature: document signature in the web service communication via ATLAS
• ATLAS SSL/TLS Communication: connection establishment (authentication of SSL web clients)
• dAKZ Digital Signature: document signature in the web service communication via dAKZ
• dAKZ SSL/TLS Communication: connection establishment

Please note:

• For SSL/TLS certificates, the KeyUsage digitalSignature as well as the extendedKeyUsage clientAuthentication must be set.
• For signature certificates, the KeyUsage digitalSignature and nonRepudiation must be set. (Type B of the European Standard ETSI 319 412-2).
• When uploading certificates with the intended uses dAKZ Digital Signature or dAKZ SSL/TLS Communication, the person or organisation uploading the certificate must be the certificate holder.