This document is posted to help you gain knowledge. Please leave a comment to let me know what you think about it! Share it to your friends and learn new things together.
This document contains commercial-in-confidence material. It must not be disclosed to any third party without the written authority of Ascertia Limited.
Commercial-in-Confidence
AD S S G o > S ig n C o n n e c t o r f o r
S h a r e P o i n t v 1 . 1
D e p l o y m e n t G u i d e
AS CE RTIA LTD
J U LY 2 0 2 0
D o c u m e n t V e r s i o n - 1 . 1 . 0 . 3
ADSS Go>Sign Connector for SharePoint - Deployment Guide
1.1 Scope This manual describes the installation process for deploying ADSS Go>Sign Connector for Microsoft SharePoint 2013.
1.2 Intended Readership This manual is intended for SharePoint administrators who are responsible for managing SharePoint services.
1.3 Conventions The following typographical conventions are used in this guide to help locate and identify information:
• Bold text identifies menu names, menu options, items you can click on the screen, file names, folder names, and keyboard keys.
• Bold Courier New font identifies commands that you are required to type in.
1.4 Technical support Ascertia has a dedicated support team providing product technical assistance, integration assistance and general customer support. Ascertia Support can be accessed in the following ways:
In addition to the free support service describe above, Ascertia provides formal support agreements with all product sales. Please contact [email protected] for more details.
A Product Support Questionnaire should be completed to provide Ascertia Support with further information about your system environment. When requesting help it is always important to confirm the following:
• System platform details
• Connector version number
• Details of the specific issue and the relevant steps taken to reproduce it
• Database version and patch level
• The product log files
1.5 What’s new in ADSS SharePoint connector v1.1 • Supports Microsoft SharePoint 2013.
• Option to trigger SharePoint workflows on signing and declining of a document is now configurable.
• Set Meta information against the document based on last performed action. See Appendix E: Notes for developer
• Windows 2003/2008 Server + SP1 with IIS 6.0/7.0 or Apache Web
Server or IBM HTTP Server
• Linux with Apache Web Server or IBM HTTP Server
Hardware: Use a modern multi-core CPU, 2GB RAM,100 MB disk space
HSMs
(If these are used)
The following PKCS#11 Hardware Security Modules are supported:
• Thales SafeNet Luna and ProtectServer HSMs
• nCipher nShield Solo or Connect HSMs
• Utimaco HSMs
• Microsoft Azure Key Vault HSM
• Amazon AWS Cloud HSM
ADSS Server can also use PKCS#11 compliant smartcard(s) and secure
USB token(s). Other PKCS#11 v2.x compliant HSMs should also work and
can be supported upon request.
Admin/Operator
browsers
The following Internet browsers are supported for accessing the ADSS
Admin web console:
• Internet Explorer 8.x and above
• Firefox 20.x and above
• Google Chrome 26.x and above
The details given above are minimum system requirements; these may need to be revised to meet specific performance requirements.
2.1 Signing Prerequisites Ensure that the SharePoint end-users have sufficient rights so that they can digitally sign the document. You can assign any of the following rights individually or in a combination to allow end-user to update the SharePoint document library once signing is concluded.
• Design
• Contribute
• Approve
• Manage Hierarchy
ADSS Go>Sign Connector for SharePoint - Deployment Guide
3.1 Overview A typical deployment environment consists of the following:
• SharePoint Server 2013 The solution is added to the existing deployment of SharePoint 2013.
• ADSS Server This provides the back-end security services to the connector. The security services include
cryptographic key and trust anchor management, server-side signature creation, signature
verification and auxiliary services.
3.2 Solution Package The solution is deployed to a SharePoint Server using a package file (SignwithGoSign.wsp), which contains the components of the connector. See section 4 for the instructions on deploying the solution.
ADSS Go>Sign Connector for SharePoint - Deployment Guide
Appendix B: Troubleshooting Following is the list of common issues and their resolutions:
Error The timer job for this operation has been created, but it will fail because the administrative service for this server is not enabled.
Resolution In case you receive an error message concerning failure of Timer Jobs retracting the solution, follow the steps given below:
1. In Central Administration, click the Job status link.
2. Click Application Server Administration Service Timer Job.
3. Click on the Run Now button.
4. At the SharePoint 2013 Management Shell command prompt, type the following command:
stsadm -o execadmsvcjobs
If SharePoint administrator is deploying SharePoint over internet then ensure that "Alternate Address Mappings" is configured properly which allows to map web requests to a specific URL. You can do this by using the SharePoint Central Administration Web site available inside IIS on the machine hosting SharePoint 2013. The SharePoint administrator has to add an "Internal URL" and have to select an "Access Mapping Collection".
Error Failed response: Error: Access is denied
Resolution This error message appears when you are using Internet Explorer (version 8 or above). To resolve this issue, follow the steps given below to change the Security settings in Internet Options:
1. Start Internet Explorer.
2. On the Tools menu, click Internet Options.
3. On the Security tab, click Internet, and then click Custom Level.
4. In the Security Settings list, change Access data sources across domains (under Miscellaneous) to Enable.
5. Click OK to close the Security Settings dialog box.
6. Click Yes when you receive the following message:
Are you sure you want to change the security settings for this zone?
7. Click OK to close the Internet Options dialog box.
ADSS Go>Sign Connector for SharePoint - Deployment Guide
Resolution This is a generic error message displayed by SharePoint. This error message is usually displayed in the following situations:
1. When ADSS is not accessible to the SharePoint application: Verify that the address of ADSS Go>Sign service, mentioned in the configuration file, is correct.
2. ADSS session has expired: Re-open the document and try signing the document again.
3. User is not authorized to use the application or website: Assign rights to the users who are expected to sign documents.
4. ADSS Go>Sign Service license has expired: Contact Ascertia sales team ([email protected]) to acquire a new license file.
Error Blank Screen is shown
Resolution Verify that the option to run java scripts is turned on in the internet browser settings.
Error Sign and Draw buttons are disabled
Resolution The Sign and Draw buttons are shown as disabled when the option to use field name as prefix is enabled in the ADSS Go>Sign profile. You can read more about this feature at the following ADSS Admin Guide site:
Appendix D: Known Issues The following is a list of known issues in ADSS SharePoint connector:
1. Username is incomplete or incorrect: If username of a user consists of a domain name (for example, domain\user.name), it may not be displayed completely.
2. Workflow status is not updated: The workflow status remains unchanged if a document is modified after signing or declining it.
ADSS Go>Sign Connector for SharePoint - Deployment Guide