How to use Digital Signature and PKI in SharePoint Server 2013

Similar Messages

• Installing and configuring microsoft sharepoint server 2013

  Could you please advise where can I get this book "installing and configuring microsoft sharepoint server 2013"? Thanks for your help.

  There is a free ebook here:
  http://www.microsoft.com/en-us/download/details.aspx?id=30384
  It's also the title of a section of technet but that's not available in printed format as far as i know.
  http://technet.microsoft.com/en-us/library/cc262957.aspx

• How to use Icloud calendar and contacts with calendar server

  Hi
  I have a small network setup using a mountain lion server and a couple of mac mini's running snow leopard. In addition I have several iphones and ipads attached to the network.
  I want to syn calendars and contacts accross all devices but dont want to use icloud for the private stuff. I have the basics working but can not get the general icloud contacts and appointments to sync on the mac mini's. Is there a way to sync this data or do I have to duplicate each appointment , one to icloud the other to the server address book and calendar.
  I know that there is a way to sync snow leopard with icloud but I do not want all data on I could as some of it is sensative, so require to keep it internal.
  Any help would be appreciated.
  cheers

  Thanks for the help
  Not sure I have explained myself properly, I already have the server set up and have a local calendar and address book working.
  The issue I am having is how to integrate it with the icloud address book and appointments.
  for example,
  I have an appointment at 10.30 with a client, I need to have this show up on all mobile devices and the local network mini's. As it stands I have to put it in twice, once in the icloud calendar and once in the local network calendar. I would like to be able just to add it once and it show on all clients.

• PKI- Digital signature and doc cypher

  Hello everybody, I have a problem and I need help please. This is my situation:
  I would like to cypher a world document and add a digital signature. I want to use certificates to do so. That is why I have developed a PKi in order to get certificates to use digital signature and ASYMMETRIC encryption. I have to add that I am trying to assure
  non repudiation, integrity and confidentiality of word documents.
  Is there any way to do it? if so, how can i do it and what software application do you recommend? thanks!

  As Elke explains and shows via that link, that informs you how to digitally sign a document.  However a digital signature only provides non-repudiation and integrity of a document, not confidentiality.  Symmetric Encryption is needed for that. 
  You would not use Asymmetric encryption to bulk encrypt files, it would be too slow.
  Unfortunately there is no easy way to symmetrically encrypt files with the tools available in modern Windows distributions.  Personally I would digitally sign the document, then use a tool like 7-Zip
  to encrypt them with AES-256 and a passphrase, or to go one better than that use Symantec Encryption Desktop. Using the latter allows you to do encrypt either with a passphrase, or with
  your targets PGP public key (that does of course assume they are also using PGP) so that only they can decrypt it with their private half.
  Also signing an Office document (or PDF for that matter) with an internal PKI certificate is only valuable if the documents are internally distributed within the same organisation, or when the other organisation(s) trust your root CA certificate, otherwise
  they will not be able to verify the signature (think of it like the error in your browser with the red X stating there is a problem with your certificate).
  I'm not quite sure what your use case is, but if it's just for distributing internal documents then no problem.  Otherwise you'll have to get a document signing certificate from a vendor like
  GlobalSign who have a trusted root certificate which ships with most operating systems so that anyone who receives the document can verify it.
  D

• How to Print Digital Signature in Smart forms.

  Hi Experts,
  Any one please help me how to use digital signatures in SMARTFORMS.?
  Which are the tables used to store digital signatures and please any one have any demo program which prints the the digital signature using smartforms kindly let me know.
  Thanks,
  Sunil kairam.

  Hi Sunil,
  After doing some research in sdn and other sources i found the following result...
  Digital Signatures are nothing but graphics that we can store in SAP and use in our Smart Forms.
  For Example you can create a .bmp file of your signatures, upload it via SE78, and then use it in your Smart Forms in your Footer Area as "Authorized Signatory".
  The Logic in the Print Program can be something as follows -
  1. Maintain a Z Table having fields like PLANT, FORMID (Name of the SmartForm), USERID.
  2. Before calling the Form, the validation is made for the Logged in User with the Z Table created.
  3. If the User Entry exists in the Z-Table, the Form is called and the Signature Image is displayed in the Footer Block i.e. the Authorized Signature.
  4. If user entry does not exist in the Z-Table then the message is displayed "You are not the Authorized for Printing the Form" and exits the Transaction.
  refer to these links:
  [http://help.sap.com/saphelp_nw04s/helpdata/en/23/c8b4cb4b3847a9bc32fe100f368411/frameset.htm]
  [http://help.sap.com/saphelp_nw04/helpdata/en/21/530b37cb3ed605e10000009b38f936/frameset.htm]
  if u find some info on the topic pls let me know..
  best of luck!!!
  thanks
  ravi

• Digital Signatures and Workshop Papers

  Guys,
  Also posted [here|http://www.sapfans.com/forums/viewtopic.php?f=7&t=317491]
  Has anyone used digital signatures in PM workshop papers?
  If so, how do we load the digital signatures, and what code is used to import them into the workshop papers
  Thanks in advance
  PeteA

  Hi Amber,
  The work is based on the finalization and imminent publication of the
  wsse Oasis spec. This is targeted for WLS 8.1 SP3, and you can contact
  our outstanding support organization, reference CR134931, for details.
  Regards,
  Bruce
  Amber Osterman wrote:
  >
  I recently attended the webinar on Web Services interoperability w/ .NET. The
  presenter mentioned that digital signatures and encryption did not work w/ Workshop
  8.1. Is it fixed in 8.1 SP2? Also, are there any interoperability issues w/
  NET and Workshop using digital signatures and encryption.

• Digital Signatures and Encryption

  I recently attended the webinar on Web Services interoperability w/ .NET. The
  presenter mentioned that digital signatures and encryption did not work w/ Workshop
  8.1. Is it fixed in 8.1 SP2? Also, are there any interoperability issues w/
  .NET and Workshop using digital signatures and encryption.

  Hi Amber,
  The work is based on the finalization and imminent publication of the
  wsse Oasis spec. This is targeted for WLS 8.1 SP3, and you can contact
  our outstanding support organization, reference CR134931, for details.
  Regards,
  Bruce
  Amber Osterman wrote:
  >
  I recently attended the webinar on Web Services interoperability w/ .NET. The
  presenter mentioned that digital signatures and encryption did not work w/ Workshop
  8.1. Is it fixed in 8.1 SP2? Also, are there any interoperability issues w/
  NET and Workshop using digital signatures and encryption.

• Digital Signature and Encryption using IAIK

  What support does Netweaver provide for Digital Signatures and Encryption. Does it use IAIK for implementing security. It will be good if somebody could give some starting points.

  Welcome to SDN!!!
  Starting point: http://service.sap.com/security
  You can use sapcryptolib (provided by SAP) for Digital Signatures and Encryption. (Also described in the link mentioned above).
  Regards
  Juergen

• Digital Signatures and APEX

  Has anyone had any success implimenting digital signatures (PKI) within APEX?
  Here is a brief synapsis of what we are looking to accomplish and realize that third-party hardware/software might be necessary. We require users to login using LDAP credentials. We want them to be able to generate documents (i.e. PDF, Word, or Excel) from our application data. We want the users to have the ability to Digitally Sign their documents. We will be issuing individual private keys & certificates and we are considering generating the documents as XML. We are still in requirements gathering, but wanted to explore any and all capabilities within APEX.
  Any thoughts? Thanks.

  Hello Francesco,
  I want to  generate a digital signature (PKCS#7,XML) using SAP SSF API as explained in
  http://help.sap.com/saphelp_nw04/helpdata/en/4f/65c3b32107964996a56e4165077e24/content.htm and in Amol Joshi's reply in
  Digital Signatures and Document Encryption api
  so my question  is From which PI/XI version and its SPS this SAP SSF LIBRARY is supported ?
  Kind Regards,
  Kubra fatima.

• Securing Digital Signatures and none of that other stuff

  Hello.  I am new to getting help from highly knowledgeable people in this type of forum.  This will be my second question asked.  The first time response was quick, correct, and succinct.  I am grateful for your help and I thank you.  I will need to find out how to close out the thread I initiated wit the first question.  Now my second question will allow me to cut to the chase, (provided I learned correctly what my mentors told me when responding to my first question).  Here it is: I want to lock my digital signature to a PDF document without the use of a third party CA or without becoming a do it yourself CA.  From my perspective it would seem that these programs or services are far more that I need.  I simply need to secure, lock don my digital signature of PDF document that I send out to government agencies.  It’s a one way trip.  Copies of the documents are provided to members of my association, again a one way trip.  I need to have my digital signature integrated into the text of the document and secure as well as the PDF document itself.  That is all I want to do; no tracking, no secured return digital signatures, etc.  I prefer to by a add in or an easy to use software program, but if I absolutely have to, I can work with the “cloud”.  Can anybody point me in the right direction?   Eally need help.
  Thanks for your consideration and past assistance.
  HALO

  There are many different types of digital signatures. I use digital signatures that are self-signed. They cannot be verified by the people that receive them, but guarentee the documents haven't been changed since signed.
  This article might help: http://help.adobe.com/en_US/acrobat/X/standard/using/WS11dd809af63f0e1e-43e0464b12b4384d3b 6-8000.html
  As to your previous thread. We do not close threads usually as other people with similar issues may want to post or read the thread. You can go and mark the thread as solved.

• How to get digital signature for Google Map geocoding V3 in PL/SQL?

  Hi, Gurus:
      Could anyone provide me an example about how to generate digital signature for Google Maps service v3 in PL/SQL? We tried to upgrade our program using Google maps service from v2 to v3. We are using PL/SQl on background to send request to Google for geocoding. We found some sample code to register with digital signature, but none of them is based on PL/SQl. Notice I used Google business client ID "gme-XXX" and wallet.
  https://developers.google.com/maps/documentation/business/webservices/auth#digital_signatures
  Google Maps API - more URL signing samples
  Here is my code for V2. I notice in order to get signature, I need to use HMAC-SHA1 algorithm.
  procedure Get_Geocoding(P_s_Address in varchar2, P_s_Geocoding out varchar2, P_n_accuracy out number, P_b_success out boolean) is
    l_address varchar2(4000);
    l_url varchar2(32000);
    l_response varchar2(3200);
    n_first_comma number;
    n_second_comma number;
    n_level_length number;
  BEGIN
    /* TODO implementation required */
    l_address:=APEX_UTIL.URL_ENCODE(P_s_Address);
    l_address := replace(l_address,' ','+');
    l_url := 'http://maps.google.com/maps/geo?q='||l_address||'&'||'output=csv'||'&'||'client=gme-XXX';
  l_response := utl_http.request(l_url, APEX_APPLICATION.G_PROXY_SERVER, '/u02/app/oracle/admin/apexsb/wallet', 'XXXXXXXX');
    n_level_length:=0;
    n_first_comma:=instr(l_response,',',1,1);
    n_second_comma:=instr(l_response,',',1,2);
    n_level_length:=n_second_comma-n_first_comma-1;
    P_n_accuracy:=0;
    if n_level_length>0 then
    P_n_accuracy:=to_number(substr(l_response,n_first_comma+1, n_level_length));
    end if;
    l_response:=substr(l_response,instr(l_response,',',1,2)+1);
    --dbms_output.put_line('In function: l_response ='||l_response);
    P_s_Geocoding:=l_response;
    if (P_s_Geocoding<>'0,0') then
    P_b_success:=true;
    --dbms_output.put_line('true');
    else
    P_b_success:=false;
    --dbms_output.put_line('false');
    end if;
  END;
  Thanks!

  Hi, guys:
      I tried to generate digital signature for Google map service
       Maps for Business: Generating Valid Signatures - YouTube
      Generating an HMAC-SHA-1 Signature Using Only PL/SQL
        OAuth and the PL/SQL | Data Warehouse in the Cloud
     but I got error message from Google:
  Unable to authenticate the request. Provided 'signature' is not valid for the provided client ID. Learn more: https://developers.google.com/maps/documentation/business/webservices/auth
     I think there is something wrong with my code to generate signature, as if I remove the part regarding client and signature, it will work, can anyone help me on this problem?
  /*Procedure Get_Geocoding is used to get geocoding with accuracy level for V3 business account, you can find Google map digital signature descrirption from
  https://developers.google.com/maps/documentation/business/webservices/auth#digital_signatures
  if geocoding is 0,0, procedure returns false to indicate failure of get geocoding*/
  procedure Get_Geocoding2(P_s_Address in varchar2, P_s_Geocoding out varchar2, P_n_accuracy out number, P_b_success out boolean) is
    --private key for Google business account, this is provided by Google with client name.
    l_private_key_src varchar2(200):='xxxxxxxxxxxxxxxxxxx';
    l_private_key_b64_alter varchar2(200):= translate(l_private_key_src,'-_','+/');
    l_private_key_bin raw(2000);
    l_client_name varchar2(100):='gme-xxx';
    l_signature_mac raw(2000);
    l_signature_b64 varchar2(200);
    l_signature_b64_alter_back varchar2(200);
    l_Google_service_domain varchar2(200):='http://maps.googleapis.com';
    l_address varchar2(4000);
    l_url varchar2(32000);
    l_path varchar2(32000);
    l_response varchar2(32000);
    l_page UTL_HTTP.HTML_PIECES;
    n_actual_length number;
    json_obj json;
    json_tempobj json;
    jl_listOfValues json_list;
    json_geom_obj json;
    json_loc json;
    l_lat  VARCHAR2(40);
    l_lng  VARCHAR2(40);
    l_status VARCHAR2(255);
    json_accuracy json;
    --temp_string varchar2(10000);
    n_first_comma number;
    n_second_comma number;
    n_level_length number;
    BEGIN
  /* TODO implementation required */
  l_private_key_bin := utl_encode.base64_decode(UTL_I18N.string_to_raw(l_private_key_b64_alter, 'AL32UTF8'));
  l_address:=APEX_UTIL.URL_ENCODE(P_s_Address);
  --dbms_output.put_line(l_address);
  l_address := replace(l_address,' ','+');
  l_path := '/maps/api/geocode/json?address='||l_address||'&'||'sensor=true';
  dbms_output.put_line(l_path);
  l_signature_mac :=DBMS_CRYPTO.mac(UTL_I18N.string_to_raw(l_path, 'AL32UTF8'), DBMS_CRYPTO.hmac_sh1,l_private_key_bin);
  l_signature_b64:= UTL_RAW.cast_to_varchar2(UTL_ENCODE.base64_encode(l_signature_mac));
  l_signature_b64_alter_back:=translate(l_signature_b64,'+/','-_');
  dbms_output.put_line(l_signature_b64_alter_back);
  --get response from Google map service
  l_url:=l_Google_service_domain||l_path||'&client='||l_client_name||'&signature='||l_signature_b64_alter_back;
  --l_url:=l_Google_service_domain||l_path;
  dbms_output.put_line(l_url);
  l_page:=utl_http.request_pieces( l_url, 99999);
  for i in 1..l_page.count loop
  l_response:=l_response||l_page(i);
  end loop;
  n_actual_length:=length(l_response);
  dbms_output.put_line(n_actual_length);
  dbms_output.put_line(l_response);
  --parse JSON result
  json_obj:=new json(l_response);
  l_status := json_ext.get_string(json_obj, 'status');
  IF l_status = 'OK' then
  jl_listOfValues := json_list(json_obj.get('results'));
  json_tempobj := json(jl_listOfValues.get(1));
  json_geom_obj := json(json_tempobj.get(3));
  json_loc := json_ext.get_json(json_geom_obj, 'location');
  l_lat := to_char(json_ext.get_number(json_loc, 'lat'));
  l_lng := to_char(json_ext.get_number(json_loc, 'lng'));
  P_s_Geocoding:=l_lat||','||l_lng;
  dbms_output.put_line('##########'||P_s_Geocoding);
  case json_ext.get_string(json_geom_obj, 'location_type')
  when 'ROOFTOP' then P_n_accuracy:=9;
  when 'RANGE_INTERPOLATED' then P_n_accuracy:=7;
  when 'GEOMETRIC_CENTER' then P_n_accuracy:=5;
  else P_n_accuracy:=3;
  end case;
  P_b_success:=true;
  else
  P_b_success:=false;
  P_n_accuracy:=0;
  P_s_Geocoding:='0,0';
  end if;
    END;

• Digital signatures and wet ink signatures

  HI all,
  I am in the process of converting our paper checklists into fillable pdf forms.  Everything is working well, but Im trying to get my head around digital signatures.
  Ideally I just want to click the signature part, choose a user from a list, enter the password and the 'wet ink' signature that is scanned in gets added to the form.
  So on my laptop I setup a new appearance for my signature, scanned my signature and added it to my digital signature.  Perfect.
  Problem is, I want to be able to use this on other computers.  I copied the digital signature .pfx file and imported it on that new computer, which worked, but it drops the 'wet ink' signature and appearance.
  It also appears that anyone can create a digital ID on my laptop and choose my wet ink signature appearance, and sign the document which makes it appear as if I have signed it.  I was hoping the wet ink signature was locked with the digital signature but it appears this isnt the case.
  Im trying to find the best way to store our signatures (we are all on a network), so that any user can use any computer and ideally lock the wet ink signature to the digital signature.
  Many thanks
  Chris

  It doesn't work for everyone, but if you are considering moving to the world of digital signatures, it's best to forget the signature appearance ("wet"). This is just a distraction to the actual signature, and it encourages a deeply flawed workflow: one where people look at the picture on the page rather than learning about digital signatures and how to verify them. Since digital signatures are (if done properly) unfakeable and (in some places) legally recognised, it is best to completely change workflow, rather than trying to give the illusion it is just an electronic version of a paper workflow.

• Java SSF for Digital Signatures and Document Encryption

  Hello,
  I have read in "SAP Help - Java Development Manual" that there is a Java SSF library for Digital Signatures and Document Encryption API.
  http://help.sap.com/saphelp_nw04s/helpdata/en/4f/65c3b32107964996a56e4165077e24/frameset.htm
  I am trying to develop an example application in NWDS using Interfaces/classes (ISsfData, SsfDataXml...), but NWDS does not find this classes in any library.
  I have searched for Javadocs in NWDS plugins directory and this classes and interfaces should be in JAR com.sap.security.api.jar, but they aren't there.
  Our WAS version is: NW04s WAS 7.0 SP11 and he have downloaded Java Crypto Library (IAIK) and also SAP XML Toolkit.
  Does anyone know how to find or obtain this library?
  Thanks in advance,
  Jorge Linares

  Hello Francesco,
  I want to  generate a digital signature (PKCS#7,XML) using SAP SSF API as explained in
  http://help.sap.com/saphelp_nw04/helpdata/en/4f/65c3b32107964996a56e4165077e24/content.htm and in Amol Joshi's reply in
  Digital Signatures and Document Encryption api
  so my question  is From which PI/XI version and its SPS this SAP SSF LIBRARY is supported ?
  Kind Regards,
  Kubra fatima.

• Digital Signature and SharePoint 2013

  Dear Expert,
  My company has a plan to do digital signature and sharepoint 2013. Now, we focus for internal use that I know use AD CS. and in near future we use for external use. We plan to buy 3rd party certificate.
  My question
  1. How to implement this solution? Please suggest
  2. If I implemented AD CS, can we use public certificate in near future.
  3. Can we use public certificate with SharePoint 2013?
  Thank you

  Hi,
  Based on your description, my understanding is that you want to use Digital Signature in SharePoint Server 2013.
  You can use digital signatures in forms ,then use these forms in you SharePoint site.
  In InfoPath form ,you can change the form to allow signature here: File>Info>Advanced form options >Digital Signatures .You can choose to sign the whole form or a field .
  https://social.technet.microsoft.com/Forums/en-US/0ed54d57-d67d-41cd-bd1b-9e5a4be10d0c/use-of-digital-signature-in-sharepoint-2010?forum=sharepointcustomizationprevious
  besides, here is a similar post, you can take a look at:
  http://sharepoint.stackexchange.com/questions/78058/custom-digital-signatures-or-hash-on-list-items
  For more information about implemented AD CS, refer to the following link:
  http://technet.microsoft.com/en-us/library/hh831574.aspx
  Best Regards,
  Lisa Chen    
  Forum Support
  Please remember to mark the replies as answers if they help and unmark them if they provide no help. If you have feedback for TechNet Subscriber Support, contact
  [email protected]                                                   
  Lisa Chen
  TechNet Community Support

• Question from worse than Newbie about digital signatures and Adobe Reader.

  1st, thanks for taking the time to even look. 2nd, We are trying to use digital signature pads with PDF documents created by Documaker 11.4. In Adobe Pro there is a setting "Extend features in Adobe Reader" that will allow users with Adobe Reader to sign the PDF documents, however our "guy" creating the forms cannot find anything like this in Documaker. I've never used Documaker before and dont have a copy to even play with, but I was hoping there was a simple "go here, click this" answer.
  Any and all help is greatly appreciated.
  Thanks for you time,
  Jeff Holt

  I'm not expert on Documaker, but I'm close to them and will try to find an answer if I can be sure of the question.
  Documaker is capable of creating PDF signature markers in the output PDF. Those markers are compatible with tools like Acrobat which can sign the documents. Is your question about how to create the markers or are you doing that and finding that Acrobat Reader will not allow you to sign them?
  I'd have to research Adobe's licensing for Acrobat and Reader to see if that was the issue. I know certain features in Acrobat Reader are locked down by Adobe so you have to have another product license from them to enable the feature. If that is the problem, then I'm pretty sure that Documaker has no mechanism to provide a license token to specifically enable the Acrobat Reader product.
  If you can provide more specifics, I'll try to follow up. You may also contact Customer Support, if you haven't already and open a case there requesting a specific question be answered.
  Best Regards.