National Data Centre Website Hosting Procedure

Procedure for Hosting New Website on NDC Server

1. Web Hosting on NDC Server Please follow following procedure for hosting new website
on NDC Server.

1.1 Write an official letter to NDC, EICTDA for availing Hosting Services of NDC.

1.2 To facilitate hosting the website on NDC Server, the user needs to forward filled-in
Forms, as per the following.

1.2.1 Filled-in Website Registration Form (EICTDA-WSRF001) for allocation of web-

space on NDC Server.
1.2.2 Filled-in Form for Creation of User-ID/Password under www.tenders.gov.et to
upload the information/Tenders, if required.
1.2.3 Filled-in E-mail Account Creation Form(s) under Paid Web Hosting Plan
(EICTDA-WSRF001).

1.3 To facilitate hosting the website on NDC Server, the user needs to forward Softcopy of
website contents, as per the following details.

1.3.1 If website contents are in Geez, please use UNICODE-based fonts

(Visual geez) for creation of the website.
1.3.2 It is mandatory to obtain security clearance from Cyber Security group/team, NDC
before hosting any new website on NDC Server in the public domain. If the
website is purely static, NDC can initiate self certification for security clearance
before its release, which generally takes about a _______ time.
1.3.3 If proposed website contains any web-enabled module, the following may be
noted.

1.3.3.1 Please use RDBMS (as per the available platform at National Data Centre)
as back-end instead of simple database for development of web-enabled
application.
1.3.3.2 The security audit of the web-enabled application will have to be done by
the owner of the website/web-enabled application, through empanelled
Security Auditors.
1.3.3.3 The web-enabled application/website may be forwarded to NDC along
with the Security Clearance Report.

2. Hosting under Paid Web Hosting Plan: - Hosting charges for the website requiring desired
web-space on NDC Server will be made available on the datacenter’s website.

NDC-WebHostingProc-06 Page 1/3 Dated – 29-09-2008

National Data Centre Website Hosting Procedure
The hosting of Website on NDC Server under Paid Web Hosting Plan includes the
following.

2.1 E-mail user accounts (free with recommended E-mail quota) under ‘Web Hosting Plan’ for
Paid Users only.
2.2 Website updation facility through FTP over VPN.
2.3 Listing of the site with at least 5 popular Search Engines.

3. Security of Websites/Web-enabled Applications (IT Security Audit) As hosting

infrastructure of NDC is secured, it is mandatory that all websites/web-enabled applications
hosted on NDC servers be audited for content security and obtain audit clearance Certificate,
before it’s release. No Website/Web-enabled application can be hosted on NDC Server,
without obtaining security clearance from a Security Auditor. Security audit of Website/Web-
enabled application is mandatory for hosting the same in NDC Server.

3.1 NDC does not have charging criteria for audit of any website or Web-enabled
application.
3.2 If the website/web-enabled application is designed/developed by the user
(or through third party), the responsibility of security audit rests on the user. Thus the
user can make security audit as a part of website/web-enabled application
development process.
3.3 NDC can provide staging server as well as Database Server facility to the user for
deployment of Website/Web-enabled application on temporary basis to conduct
security audit remotely by the Security Auditor. This facility is provided to the user for
a limited period of one/two months only.
3.4 Generally, the audit is conducted on the basis of website/web-enabled application
made available to the Security Auditor. Any further addition of dynamic contents or
change in application logic attracts security re-audit. The user must be aware about this
aspect of the audit to ensure availability of safe website/Web-enabled application on
NDC Server.

5. As per Government of Ethiopia Policy, user has to obtain desired domain [i.e.,
GOV.ET for Government Departments/Organizations] for releasing the website in the
public domain.

6. Domain under .gov.et [www.gov.et/]

6.1 Registration of 3 level domain under .gov.et is to be taken up and handled by the
rd

concerned user directly with the Domain Registrar, which is also the NDC.

NDC-WebHostingProc-06 Page 2/3 Dated – 29-09-2008

National Data Centre Website Hosting Procedure
6.2 Registration of 4 level domain under .gov.et is being coordinated by NDC, EICTDA.
th

The following processes involved in the registration and activation of the domain.

6.2.1 Forward filled-in 4th level .gov.et Domain Registration Form (EICTDA-
WSRF001).
6.2.2 NDC will register the domain, as per the details provided in the form. After that
a Domain Registration ID is forwarded by Domain Registrar to the User as well
as to NDC, EICTDA through E-mail.
6.2.3 This Domain Registration ID is to be filled-in for issuing Authorization letter to
Customer Administrator/web developer by the HoD of that user organization.
6.2.4 The Customer Administrator/web developer, who has been nominated as
Authorized persons by the NDC to control the domain GOV.ET, will issue
Authorization letter to Domain Registrar.
6.2.5 Any domain under GOV.ET can be activated by NDC only after the receipt of
Authorization letter, which is issued by the Customer Administrator/web
developer.
6.2.6 The User organization should get the Authorization letter issued by the
Customer Administrator/web developer and provide scanned copy of the same to
NDC, EICTDA to expedite activation of the desired domain at the earliest.

Note: -

A. All the required filled-in forms (mentioned in the document) & other related documents are
available on the website of NDC option “Utility Forms/Documents”, i.e.
http://www.ndc.eictda.gov.et/req.htm.

B. All the Static website or Web-enabled Application are being made available on NDC
(Production) Server only after obtaining Security Clearance from Security group, NDC.
Therefore, it may be noted that any further addition of dynamic contents on the website
(operational/running on NDC Server) or change in application logic in the running application
will attract security re-audit by the concerned User Organization. Therefore, please ensure that
any application being loaded on the server should be cleared by the empanelled Security
Auditor.

For more details, please visit: -

Website of NDC – www.ndc.eictda.gov.et

Website of Web Services, NDC - http://www.ndc.eictda.gov.et/webservices

NDC-WebHostingProc-06 Page 3/3 Dated – 29-09-2008