Enterprise certificate
The company’s digital ID and stamp,
– also known as eSeal.
Our Business certificates / eSeal
Standard Business certificate / eSeal
- 3 years validity
- NCP level – Normal Certificate Policy
- Soft token
- SEID 2.0
- 3072 bits RSA
NCP is a high level of validation.
Available with customer-generated key and elliptical curves.
EU Qualified Seal (QCP) delivered on card (QSCD)
- 1 year validity
- EU Qualified Seal (QES), highest security level
- On the EU trusted list. Enforceable throughout the EU/EEA
- PDF signing certificates approved by Adobe (AATL) worldwide
- Cards with certificate are delivered with card reader and sent by mail
- SEID 2.0
- 3072 bits RSA
Test
Enterprise certificate
- 3 years validity
- NCP level – Normal Certificate Policy
- Soft token
- SEID 2.0
- 3072 bits RSA
Commfides generates the key. Can be delivered as LCP, NCP or NCP+.
Available with customer-generated key and elliptical curves.
safety
When you use a Business Certificate / eSeal to report to the authorities, you know you're reporting on behalf of the right company and avoid using your private credentials.
eSeal
What is a Business Certificate / eSeal?
A Business certificate / eSeal is your company’s digital credential and used to identify the company and enter into agreements. Some of the most common uses are:
- Reporting to public authorities, e.g. Altinn, the Tax Administration or the Financial Supervisory Authority of Norway
- Authentication of the company, e.g. to Elhub, the Norwegian Tax Administration’s APIs and the Debt Register
- Digital signing
Commfide’s eSeal follows strict security requirements and is approved for use both in Norway and throughout the EU.
This is how the delivery takes place:
1. Ordering
Fill out the digital order form here.
When the form is completed, it is signed by the companies procurator or authorized signatory within the country’s official company register.
2. Production
We validate the company according to public registers. The eSeal is sent within 3 working days after the order has been received and approved.
3. Delivery
The eSeal is delivered to the registered recipient. The PIN code is sent separately, digitally afterwards. The recipient confirms that the eSeal has been received.
Common uses for the Business certificate / eSeal
Altinn
All types of companies in Norway submit an A-message to Altinn. The A-message can be sent through the payroll system, via an accountant or directly to Altinn. By using an eSeal, you make reporting smooth and correct.
Signing in the EPREL database
In order to register electrical products in the EU's energy label database (EPREL), companies must use an EU Qualified eSeal (QSCD) to meet EU reporting requirements. Commfides QSCD eSeal fulfills the requirements and can be used to register the necessary information in the EPREL system.
Digitoll
Digitoll is the Norwegian Customs Administration's new solution for digital customs processing, and will make border crossing faster and easier. From 2026, all information about goods and transportation must be sent electronically before the vehicle arrives at the border. In order to submit this information, the business must have a valid business certificate, which confirms who the sender is and that the information has not been changed along the way.
Signing of digital diplomas and certificates
Schools and educational institutions can issue certificates and diplomas that are legally valid when digitally signed with a qualified eSeal (QSCD). This gives both the recipient and the employer confidence that the documentation is genuine and reliable. Commfide's QSCD certificate is approved for use throughout the EU and a signed diploma is thus recognized across national borders in the EU.
Maskinporten
Developed by the Norwegian Digitalisation Agency, Maskinporten enables companies to share information in a secure way. All companies that will use Maksinporten need a Business Certificate / eSeal.
The Norwegian Tax Agency
The Norwegian Tax Administration has several digital services that make it easy for businesses to gain access to their data. One of them is access to electronic tax cards for employees. A Business certificate can be used to gain access.
Elhub
It is a requirement that all message exchange in the electricity supplier network Elhub is encrypted with a eSeal. The certificate must be issued to the organization number that signs the message.
Reporting of employees on sick leave
NAV facilitates digital follow-up and reporting of employees on sick leave. A company certificate is used to identify the company digitally and meet the requirements for secure communication.
Administration of eSeals
E-ID Portal
All customers who want free access to the e-ID Portal, which makes it easy and clear to manage your company’s Business Certificates / eSeals.
OVERVIEW
The portal provides a full overview of all the company's eSeals, as well as the status of deliveries and invoices.
MANAGEMENT
With the eID Portal, administration is easy. You can order, cancel or renew your Business certificate with a click. One, or more, administrators are given access to manage the Business certificate for the company.
Become a reseller
The E-ID Portal makes it easy to become a reseller of Business Certificates. As a reseller, you can manage Business Certificates for as many customers as you want without losing track.
Enterprise certificate / eSeal encyclopedia
LCP
LCP stands for Lightweight Certificate Policy and is the lowest security level. LCP certificates have simpler validation and lower requirements for ordering and delivery and are used when there is a need for secure identification, but the requirements are not strict. LCP certificates are well suited for automated systems and digital services with lower risk, providing security and reliability in electronic communication.
NCP
NCP stands for Normal Certificate Policies and is Commfides' standard Business Certificate. NCP certificates offer a higher level of security than LCP, without compromising on usability or flexibility. Where LCP is suitable for simpler, automated systems, NCP is better suited for businesses that require secure authentication and signing in accordance with national and European requirements. With NCP, you get stronger identity control at issuance and thus greater trust in digital processes - a combination of high security and broad applicability.
NCP+
NCP+ is an extended version of NCP, with stricter requirements for the ordering and delivery process, as well as technical security. It provides a higher level of trust and is often used in services where extra security is needed, but where the very highest (qualified) level is not required.
QCP
QCP stands for Qualified Certificate for electronic Signature and is the highest trust level for digital certificates according to the EU eIDAS regulation. A QCP confirms the identity of a person or entity and is used, for example, to create qualified electronic signatures with full binding legal validity throughout the EU/EEA - in the same way as a handwritten signature.
QSCD
QSCD stands for Qualified Signature Creation Device and is an approved technical device or software used to create electronic signatures with the highest level of security, according to the EU eIDAS regulation. A QSCD protects the user's private key and ensures that the signature is legally binding and cannot be forged.
Test certificate
All types of Business Certificates / eSeals can be ordered as test certificates for use in test environments. Test certificates have no authentication requirements.
eIDAS
eIDAS stands for electronic IDentification, Authentic and trust Service and is an EU regulation aimed at increasing digital interaction across national borders. All Commfides certificates are issued at eIDAS level.
eIDAS 2.0
eIDAS 2.0 is an updated version of the eIDAS Regulation and introduces, among other things, the new EU Digital ID Wallet - a digital wallet where citizens can store and use their identity and important documents (such as driving licenses, diplomas, etc.) digitally throughout the EU. This provides increased control over their own digital identity and makes it easier and safer to use public and private digital services.
SEID 2.0
SEID 2.0 is a Norwegian standard for digital certificates and electronic identity. It is used to ensure secure identification and signing in both public and private services, and is adapted to the requirements of the EU eIDAS Regulation.
FAQ - Frequently asked questions about Business certificate / eSeals
A business certificate / eSeal is a digital proof of identity for businesses. The eSeal serves as the company’s electronic identity in various contexts that require authentication, such as signing electronic documents, logging in on behalf of the company, reporting or connecting to APIs. A eSeal can be used by individuals manually or in automatic processes between machines.
In a technical sense, the eSeal is a digital certificate that confirms the company’s identity. The information about the company in the certificate has been verified by an approved certificate issuer, a so-called CA – Certificate Authority. Commfides is one of the approved issuers in Norway. The business certificates we issue comply with the international X.509 standard for digital certificates within Public Key Insfrastructure.
The eSeal confirms the company’s identity using PKI – Public Key Infrastructure. The certificate contains a public key that is available to everyone and a private key that only the company has access to. The certificate links the public key to the company, based on the issuer’s check of the company information. Thus, the certificate can be used to create a secure connection between the company and the other party.
This confirmation is used as the basis for a number of digital actions that the company is involved in, such as connecting to various public services such as the Norwegian Tax Administration’s APIs, signing tenders and reporting to Altinn. If an employee uses their private e-ID for these purposes, uncertainty arises as to who is committing to the action. A eSeal creates a clear distinction between private and professional roles.
The eSeal can be used to log in to or access a number of public services such as ID-Porten, the Norwegian Tax Administration’s APIs and Helsenett. It can also be used for reporting, for example:
- Sick leave reporting to NAV
- A-melding to Altinn
- Reporting of securities transactions to the Financial Supervisory Authority of Norway
- For energy companies towards Elhub
- Reporting to the Norwegian Petroleum Directorate
eSeals can also be used to secure message exchange within the public sector.
Another important application is the signing of tenders and contracts. Here, the certificate streamlines the process and helps to minimize the risk for the signatory, the supplier and the buyer. If the tendering process is carried out electronically, an electronic signature may be mandatory. In contrast to a personal signature, a signature with a company certificate is binding for the company.
You can order a business certificate by filling out the order form here. The business certificate is sent to the recipient via encrypted email, while the password is handed out separately in person.
The person ordering the eSeal must have a role in the company that is registered and visible in the Brønnøysund Register. Examples of such roles are general manager, councilor, contact person, authorized signatory or authorized signatory. It is also possible to authorize individuals in the company to order eSeals. In this case, the order must be signed by one of the people with a role as described above. The authorized person can order eSeals either via the order form or in Commfides e-ID Portal.
The recipient of the eSeal will receive it by e-mail. The password for the eSeal must be sent separately. It can either be sent using Posten’s PUM service for collection at the post office (which is linked to the recipient’s address), or the recipient can collect the password in person at Commfides, at Lysaker in Oslo. The recipient must be able to present a valid passport, or a national or European ID card.
If you need multiple eSeals, whether for your own business or on behalf of customers in the role of reseller, there is a good solution. Commfides provides access to a web-based tool, called the e-ID Portal, where a person from the company can order, manage and keep track of certificates. The portal provides an overview of the status of ordered certificates and simplifies both the ordering and delivery process. The portal is free and is suitable for those who need the majority of certificates and who want a good overview.
eSeals follow a common European standard in line with EU regulations. The so-called eIDAS regulation, which came into force in 2018, regulates electronic identification and trust services. New eSeals are issued according to the national certificate profile SEID 2.0. These certificates have increased security with stronger cryptography than before, and can be used across European borders.
We send the Business Certificate within 4 working days of receiving and approving the order. Delivery time may vary depending on demand. Please contact customer service if you have any questions about your order.
