Enable security features

Enable security features

The option Enable security features provides additional authentications to make the signer identification more robust.



Require '1 - factor authentication' before document preview

Enabling this security feature ensures that an invitee signing a document goes through an OTP authentication through their Email ID or Phone Number (either can be configured while sending the document) before being able to view the document. This adds a layer of security to safeguard your documents in case of mistaken forwarding of signing invitations to the wrong parties.


 Require '2 - factor authentication' before document preview

Enabling this security feature ensures that the invitee signing a document goes through an OTP authentication through their Email ID and Phone Number ( both have to be configured while sending the document) before being able to view the document. This adds a layer of security to safeguard your documents in case of mistaken forwarding of signing invitations to the wrong parties.

 

There are 2 scenario’s in case of a 2-factor authentication:


  1. Link accessed via email/phone number - In case the signing link is accessed via:

    1. Invitee Email - Leegality will count that as an authentication in itself and the user will only have to carry out the OTP authentication for the mobile number

    2. Invitee Phone Number - Leegality will count that as an authentication in itself and the user will only have to carry out the OTP authentication for the email .

  2. Link accessed via other any other source - In this case 2 OTP authentications will be carried out. 1 for each Email and Phone Number.


Enabling this security feature, a link to the raw pdf document will be sent in all the OTP verification email’s/messages.




Capture GPS location

If the security feature “Capture GPS location” is enabled, the signers will need to allow access to their location coordinates before being permitted to sign the document. The GPS coordinates captured will be reflected in the audit trail.

Activating Capture GPS location

Once the document is created or during the creation of workflow, on the invitee configuration page click on “invitee level options”, under more options toggle on “Enable security features” and then toggle on “Capture GPS location”




Signing Journey of Capture GPS location

During the signing journey, the GPS location will be captured, and click on “proceed”, the captured location will appear in the audit trail.





Note: Signer has to give the location access to the browser for capturing GPS location while signing the document.


Note: Geotagging works with high accuracy on mobiles and tablets as they have the required hardware receiver instrument for GPS capture. Laptops and Desktops will not give high accurate GPS location.

Capture photo

If the security feature "Capture photo" is enabled, the signer will need to grant access to their camera for live photo capture. The signer will not be allowed to sign the document until the live photo capture is completed.


Activating Capture photo

Once the document is created or during the creation of workflow, on the invitee configuration page click on “invitee level options”, under more options toggle on “Enable security features” and then toggle on “Capture photo”.



Signing Journey of Capture photo

Step 1: During the signing journey, the below instructions will appear on the screen which have to be followed.




Instructions


On the next page, a camera preview will appear

  •  Capture a 5 second video clip of yourself

  •  In well-lit place

  •  With only 1 person before the camera

Avoid

  •  More than 1 person before camera

  •  Dimly-lit setting

  •  Wearing accessories such as spectacles and headphones.

 

Step 2: After having the prerequisites as mentioned on the instruction page click on “Proceed”.

Step 3: The signer will need to allow access to their camera for capturing the photo.




Face capture with user liveliness check

This feature prompts the signer to do a face capture along with an OTP verification (the OTP will appear on the screen) in order to proceed with the signing process.


Activating Face capture with user liveliness

Step 1: Once the document is created or during the creation of workflow, on the invitee configuration page click on “invitee level options”, under more options toggle on “Enable security features”.




Step 2: Toggle on “Capture photo” and “User liveliness” once “Enable security features” is enabled.



In the Signing Journey

Step 1: During the signing journey, the below instructions will appear on the screen which has to be followed.




Instructions: 

  • Capture a 5-second video clip of yourself


  •  Displaying OTP in front of you


  •  In well-lit place


  •  With only 1 person before the camera


  •  Remove accessories such as spectacles and headphones.


Step 2: After having the prerequisites as mentioned on the instruction page click on “Proceed”. 


Step 3: The signer will need to allow access to their camera for capturing the short live video and show the OTP that is appearing on the screen.


Two ways to show OTP during liveliness: 

1. QR Code: Scan the QR code in the phone camera which will lead to the OTP page in the phone browser which the signer has to show in front of the camera and capture the video.

2. On blank page: Write down the OTP on the blank page and show it in front of the camera and capture the video.


Step 4: Once the short video is captured, click on “Proceed” to proceed with the signing of the document.




Note: The signer will not be allowed to sign the document until the system verifies the OTP appearing on the screen and written on paper or shown on the phone.



    • Related Articles

    • Security

      The security tab allows you to configure certain safeguards for your signing invitations/documents. In case a security setting is turned on it will be enforced upon all the documents created via new document flow and Workflow creation. If the ...
    • Two-factor Authentication (2FA) during signing

      Description Two-factor Authentication (2FA) during signing is a security feature that ensures the authenticity of the signer of a document.  2FA mandatorily requires a sender to specify both the email address and the phone number of the signer. The ...
    • Invitee level options

      “Invitee level options” provide various options to further modify the signing journey for the particular invitee. By using “Invitee level options”, the sender of the document can set the retry attempts for Aadhaar signing, restricting the signer from ...
    • Reviewer Role

      Description The reviewer role is a non-signing invitee type where the invitee either approves or rejects a document sent to them. The purpose of this invitee type is to allow the sender to ensure that there is a review of the document before the same ...
    • NeSL eSign

      How to activate Account settings >> Department >> eSignature To activate NeSL eSign, “NeSL eSign” needs to be enabled.  NeSL eSign can be made the Default signature type using the Default toggle.  NeSL eSign settings can be configured by clicking on ...