Versions Compared

Old Version 3

changes.mady.by.user Robert Alexander Marshall

Saved on

compared with

New Version 4

changes.mady.by.user Robert Alexander Marshall

Saved on

Key

  • This line was added.
  • This line was removed.
  • Formatting was changed.
Table of Contents
maxLevel3
minLevel2
absoluteUrltrue
excludeRelated Links
typeflat
separatorpipe

Overview

An e-signature is required to authenticate a user identity to undertake an approval decision in the Quality Management System workflow.

Each user needs

Info

A time-based token generated by the authentication app is required each time the user needs to approve a page that requires an e-signature.

Global administrators can reset existing valid setup tokens for a user and amend the signing token expiry date.



E-signature process and approval signing token in the Quality Management System workflow

The compliance review Quality Management Systems (QMS) workflow requires users to use their email and a signing token to confirm their identity when registering an approval. The workflow requires e-signature authentication for all reviewers in both the Draft and the In Approval states.

Image RemovedImage Added

Users need a one-time signing token to digitally sign their documents. Users enter a signing token along with their email address.

The first time a user is asked to electronically sign a Confluence page, they will see a setup Setup a personal code link is displayed.

Info

The approval decision buttons are disabled until the reviewer sets up the personal code and then adds their email and personal code token to the workflow popup.

Each approval signing token generated by the app is temporary and expires quickly (less than a minute).

If a user navigates away from the content with an approval activated but not undertaken, a new signing token is required on returning to the page to activate the approval.

When the review is undertaken it is logged as electronically signed.

OTP Token

To activate each approval in the Quality Management System workflow, the e-signature process requires the user to add their email and the current signing token generated by the authenticator app.

The token is generated by a third-party app installed on your smartphone or device.

Authentication app setup

When the first-time user chooses the set up a personal code link, the user is asked to setup set up an authentication app:

  • installation of an authenticator app (Authy, Google etc) on the user smart device.

  • linking the authenticator app to the instance using an email-generated QR code link.

  • addition of an app-generated numeric token to confirm the setup for the specific user in the current instance.

The authenticator app generates a new valid numeric signing token every 30 seconds.

Once set up, each approval will require requires a numeric signing token from the authenticator app to activate the approval for the user.

Image Removedcdcc_approvalpopup_esignature_email_token_elle.pngImage Added
Info

The approval becomes active when the valid signing token is entered correctly into the workflow popup along with the user email address,

inWebo MFA authentication

inWebo can also be used with Comala Document Management for Cloud. 

Using inWebo disables the use of other 2FA apps and the OTP authentication is managed through inWebo.

When using inWebo

  • Comala Document Management must be globally configured to use inWebo MFA authentication

  • the validation of the user is managed by inWebo administration

  • each user must have an inWebo account

  • each user generates an OTP token using the inWebo Authenticator app installed on their Android or IOS mobile device