Skip to main content
Skip table of contents

[ADMIN FAQ] How do I manage Swisscom seals easily?

Content

This article introduces you to the topic of Swisscom seals and how to manage them.

1. Managing Swisscom seals in MOXIS

As soon as a Swisscom seal has been created, it can be added to various users and assigned to different tenants via the process management. This article explains how to manage Swisscom seals in MOXIS.

1.1. Assigning Swisscom seals

Available seals are displayed in MOXIS in a SubjectDN table (see figure 1). Once created, the Swisscom seal can be assigned to MOXIS and web service users as well as seal administrators by entering the previously created personal encryption password and the corresponding MOXIS user/seal administrator/web service user.

11a_Siegel.png

Figure 1: Assigning a seal in MOXIS

XiTip 
Please note: A seal can only be assigned to users and seal administrators who have already set up personal encryption.

1.1.1. Assigning a seal to MOXIS users and seal administrators

A seal can only be assigned to MOXIS users and seal administrators (see figure 2) if they are assigned to the corresponding tenant group. If this is not the case, they do not appear in the drop-down menu for selection.

14a_Siegel_Admin.png

Figure 2: Assigning a seal to a seal administrator

1.1.2. Web service users: assigning the Swisscom seal

Web service users can only be assigned the Swisscom seal (see figure 3) if the system and swisscomSealApi roles are activated for them.

12a_Siegel_zuweisen.png

Figure 3: Assigning seals to web service users


As soon as the seal has been assigned to the web service user, an access token is created. Please copy this and provide it to the administrator of the respective seal service client (see figure 4).

image-20241120-120730.png

Figure 4: Access token for web service users

1.2. Setting up process management for Swisscom Seal

A separate process must be created for the generation of orders to be signed with the Swisscom Seal. To do this, please log in to the administration area and navigate to the process management-tab siganture. Here, in the area Qualified Signatures, activate the option Company Seal for the process and assign the corresponding tenant (client) to the process

Since the Swisscom seal corresponds to a qualified electronic signature, it is also recommended that you define the QES for a decision level in the process start parameters on the Recipient tab to ensure that no other signature quality can be selected.

1.3. Troubleshooting

1.3.1. Error message: No personal key pair found

If you see this error message (see figure 5), there is only one solution: you need to create an encryption password.

15a_Kein_Schlüsselpaar_Siegel_1.png

Figure 5: Creating an encryption password in MOXIS 

1.3.2 Error message: Seal not configured

If your users receive the error message below during the signing process (see figure 6), there is an error in the configuration.

16a_Siegel_entsperren.png

Figure 6: Error message during the Swisscom labelling process

To rectify the error, please view the configuration.

Please note: If the configuration has been carried out correctly, please check whether the seal has already been unlocked for the signature process (see Figure 7).

17a_Siegel_entsperren.png

Figure 7: Unlock seal for the signature process

JavaScript errors detected

Please note, these errors can depend on your browser setup.

If this problem persists, please contact our support.

Contact Support Close