inWebo Integration for user authentication
Overview
inWebo authentication can be used as an OTP authentication provider with Comala Document Control for Cloud when using the Quality Management Systems workflow.
The inWebo Service ID and inWebo API key - both provided by the inWebo app - are added to the global configuration of Comala Document Control.
Each user to undertake an approval with the requirement for an e-signature needs to
be configured as a user in inWebo administration for access to the appropriate inWebo Service ID
download and install the inWebo authentication mobile app to generate an OTP token
add their inWebo username and the OTP token to the workflow popup to activate the approval buttons
Using inWebo disables the use of other 2FA apps and the OTP authentication is managed through inWebo MFA authentication services.
Set up inWebo
To set up the use of inWebo with Comala Document Control for Cloud
choose/configure an existing Service ID in the company inWebo account
generate an inWebo API Certificate from the inWebo administration website
add the Service ID, the API certificate file, and inWebo Passphrase sourced from inWebo administration to the global configuration of Comala Document Control
You must have an inWebo client account.
In the inWebo administration
choose your managing customer account and the Service ID you are using for Comala Document Control for Cloud
For the chosen Service ID
add the Comala Document Management for Cloud site as a Secure Sites
choose the Connectors type as Web Services
You can then create and download an inWebo API access certificate.
To create a new certificate
choose Download a new certificate for the API in the INWEBO API ACCESS CERTIFICATES tab
inWebo allows you to create a certificate file in either PEM format or PKCS12 format and configure the certificate to
add a description
set the certificate rights
add a certificate passphrase
set the period of validity
choose Download to save a copy of the inWebo API certificate file
In the Comala Document Control app global configuration
Under OTP Providers
add the inWebo Service ID
attach the API inWebo Certificate file (downloaded from inWebo administration)
add the inWebo Passphrase
Save the global configuration
The Service ID is displayed together with confirmation that an inWebo Certificate has been added.
Using inWebo disables the use of other 2FA apps.
On the content, a user (who has been added and configured in the inWebo administration for the ServiceID) must add their inWebo username and an OTP token generated by the user using the inWebo mobile app