- This line was added.
- This line was removed.
- Formatting was changed.
What is Nexus GO PDF Signing?
Nexus GO PDF Signing is a cloud service that enables all your users to make secure digital signatures on PDF documents. The documents are uploaded to and signed in the Nexus GO PDF Signing Portal.
You can either let your users sign documents with the built-in methods Nexus Personal Mobile or Swedish BankID, or use existing identities in your corporate directory to let users sign documents with any type of credential. To use your existing identities, you need to connect the service to an identity provider, such as Nexus Hybrid Access Gateway.
You can also have the PDF signing built into your own applications using the PDF Signing API.
Simply sign up for a subscription, and your users can start making digital signatures straight away.
- About Nexus GO
- Nexus Personal Mobile
- PDF Signing API
- PDF Signing API - examples
- Terms: Nexus GO PDF Signing
- Set up Azure Active Directory as identity provider to Nexus GO PDF Signing
- Set up Hybrid Access Gateway as identity provider to Nexus GO PDF Signing
How does Nexus GO PDF Signing work?
A PDF document is signed in the Nexus GO PDF Signing Portal in the following way:
- An administrator logs in with Nexus Personal Mobile to the Nexus GO PDF Signing Portal, uploads a pdf document, invites persons to sign, and selects the required signing method for each person. An email is sent to each person.
- Each signer follows the link in the email to the Nexus GO PDF Signing Portal, and signs the document with the required method.
For each signer, the following steps take place in Nexus GO:
- A one-time RSA key pair is created.
- The signer is associated to the key pair with two-factor authentication.
- A hash of the PDF document is generated and signed with the private key of the key pair. The private key is then discarded.
- The identity of the signer is securely bound to the key pair in a certificate, issued by the CA of the service, through the use of an HSM.
- The signed document hash, the newly generated certificate, and a time stamp is built into the PDF file.
Yes. The following features of the solution makes Nexus GO PDF signatures compliant to the level of Advanced Electronic Signature in the EU regulation eIDAS (electronic IDentification, Authentication and trust Services):
To order Nexus GO PDF Signing:
To use an external identity provider, the connection must be configured both in the identity provider and in Nexus GO. For example, some user attributes must have the same names in both services, and metadata from each service must be uploaded in the other.
For a complete example examples of how to set up both the identity provider and Nexus GO, see Set up Hybrid Access Gateway as identity provider to Nexus GO PDF Signing and Set up Azure Active Directory as identity provider to Nexus GO PDF Signing.
For a general description of the steps to configure an Identity Provider (IDP) in Nexus GO, see here:
To set up the API, follow these steps:
To upload a PDF document for signing, you need to be an administrator in the Nexus GO PDF Signing Portal:
Two signing methods are available out-of-the-box: Personal Mobile and Swedish BankID.
If you have an identity provider (IDP) set up connected to your corporate directory, you can also connect to that and take advantage of all the connected authentication methods. See separate question in this section.
To deploy your own identity provider, you can use the Nexus Smart ID solution. For more information, see here.
When someone requests you to sign a document, you will get an email with Signature request in the subject.
To sign the document:
To view all requests:
Signed documents can be downloaded within 30 days of the signing.
To download a signed PDF document:
To see the visual signature of the PDF document:
To validate the digital signature of the PDF document and see all the signature details:
To add the Nexus GO root certificate to the list of trusted certificates in Adobe Acrobat Reader: