SAP Knowledge Base Article - Public

3090550 - Sign with a signer-held digital certificate

Symptom

For most use cases, customers, and places, a standard electronic signature is sufficient. However, transactions in heavily regulated industries, in certain countries or with governmental entities may require or prefer digital signatures.

A digital signature uses a technology called a digital certificate to authenticate the signer’s identity. Digital certificates indicate that the signers have completed extra steps to confirm their identities. A signer’s digital certificate creates the signature and then attached to the signed document.

If the sender requires you to sign with a signer-held certificate, then you must provide a digital certificate to complete the signing process.

Some digital certificate providers store your certificate for you. However, with a signer-held certificate, your certificate is installed on your computer or stored on a smart card or USB drive.

Environment

SAP Signature Management by DocuSign XX-PART-DSN

Resolution

Where do I get a digital certificate?

To learn where you can get your personal digital certificate, see Use digital certificate-based signatures for more secure agreements. This article lists Trust Service Providers (also called Certificate Authorities) that provide digital certificates.

Supported browsers

  • Chrome
  • Firefox
  • Microsoft Edge (Chromium-based)
  • Safari (v11 and earlier only)

Prerequisites

Before you can sign documents with a digital certificate, you must have:

  • A digital certificate on your device, on a USB drive, or on a smart card
  • If you’re using a smart card, then you must also have a smart card reader driver installed on your device
Note: You must have already installed or connected your certificates and readers to your personal device. DocuSign eSignature does not install the certificates for you.

Additional prerequisites for signing with Chrome or Firefox

Before you can sign with a digital certificate using Chrome or Firefox, you also need:

  • The DocuSign PKI browser extension for Chrome or Firefox
  • The DocuSign PKI native application

The steps include the instructions for installing these components.

Additional prerequisites for signing Safari

Before you can sign with a digital certificate using Safari, you also need Java 8 or later installed on your device

Note: The steps include the instructions for installing Java, if necessary. You don’t need to install browser extensions or native applications.

Next steps

Sign with your signer-held certificate using Chrome or Firefox

  1. Review and accept the Electronic Record and Signature Disclosure and select Continue to open the documents.
  2. Complete any fields as you normally would and select the field to apply your signature.
  3. If your device is not set up to use signer-held certificates, the Install DocuSign modal prompts you to install the extension and application you need to complete the signing process. Select the first INSTALL button to install the DocuSign extension for your browser.
    Screenshot of the Install DocuSign modal prompting you to install the two components required to sign using Chrome or Firefox. The screenshot shows the prompt on Google Chrome.
  4. Follow all of the prompts required to install the extension. You might be redirected to the browser’s extension library.
    When the browser extension finishes installing, the INSTALL button in the Install DocuSign modal switches to DONE and a green checkmark appears.
    Screenshot of the Install DocuSign modal after installing the DocuSign Google Chrome Extension. The INSTALL text is changed to DONE, and a green checkmark appears to the left of the installed component.
  5. Next, select the INSTALL button for DocuSign PKI.
    The DocuSign PKI Installer downloads to your device.
  6. Open the DocuSign PKI Installer and follow the prompts to complete the setup process, accepting the default settings.
  7. After you install both components, select CONTINUE.
    Note: You only need to complete this setup process once.
    A list of signer-held certificates found on your device opens.
    Image of the list of digital certificates found on the user's device. Each certificate has a radio button for selection and an information icon.
  8. Select the certificate you want to use to sign the document, then select CONTINUE.
  9. You might be prompted to complete an additional step to confirm your identity. Complete any intermediate steps and review the terms of use, then select SIGN.
    Note: You must review and accept the terms to finish signing.
    Image of the prompt to confirm your identity. This prompt asks the user to enter a security code.
  10. If there are more signature fields, you might need to select your digital certificate again for each one.
When you’re finished signing, a confirmation opens and you have the option to save the document to a new or existing DocuSign eSignature account.

Sign with your signer-held certificate using Safari

  1. Review and accept the Electronic Record and Signature Disclosure and select Continue to open the documents.
  2. Complete any fields as you normally would and select the field to apply your signature.
  3. You’re prompted to locate your digital certificate. Select CONTINUE.
    Image of the prompt to locate your digital certificate.
  4. If Java is installed on your device, the system shows the relevant signer-held certificates it finds on your device.
    Image of the list of digital certificates found. Each certificate listed has a radio button for selection and an information icon.
  5. (Optional) If Java isn’t installed on your device, follow the prompts to install it, then restart Safari.
  6. (Optional) If Java is installed but Safari doesn’t identify it, follow these steps:
    1. Select Preferences from the Safari menu.
    2. Select the Security tab, then select the Enable JavaScript option.
    3. Reopen the envelope.
    4. Select CONTINUE to locate your digital certificate.
  7. Select the certificate you want to use to sign the document, then select CONTINUE.
  8. You might be prompted to complete an additional step to confirm your identity. Complete any intermediate steps and review the terms of use, then select SIGN.
    Note: You must review and accept the terms to finish signing.
    Image of the prompt to confirm your identity.
  9. If there are more signature fields, you might need to select your digital certificate again for each one.
When you’re finished signing, a confirmation opens and you have the option to save the document to a new or existing DocuSign eSignature account.

Keywords

PKI ;digital certificate , KBA , XX-PART-DSN , SAP Signature Management by DocuSign , XX-PART-DSN-SRV , Change Requests, Services, Provisioning , How To

Product

SAP S/4HANA Cloud 2108