Skip to content

IFS Signature Service on Mobile Maintenance app

Compatibility notes

Only the Mobile Maintenance app supports the IFS Signature Service. Usage of digital signatures is only supported on iOS and iPadOS platforms and compatible YubiKey devices. For iPhones and iPads with a Lighning port, YubiKey devices having the same connector can be used. NFC-equipped YubiKey devices can only be used on iPhones that support the technology. The USB-C port on iPad Pro devices cannot be used with YubiKeys for digital signature purposes. A companion app provided by Yubico should be installed as a prerequisite (further information below).

Initial set-up process

Before being able to digitally sign documents using the Mobile Maintenance app on Apple devices, the "Yubico Authenticator" companion app should be downloaded onto the device via the Apple App Store. Once downloaded, open the app and follow the steps below. This is a one-time setup unless the certificate or YubiKey should be replaced.

  1. Press the 3-dot icon on the top right corner of the app.
    iOS registration step 1
  2. Select "Configuration".
    iOS registration step 2
  3. Select "Smart card extension".
    iOS registration step 3
  4. Insert YubiKey or pull down to activate NFC.
    iOS registration step 4
  5. Press the plus sign (+) button next to the desired certificate on the hardware token (Slot 9c is typically used for digital signature purposes).
    iOS registration step 5
  6. Check that it has been moved to the bottom section.
    iOS registration step 6

The certificate on the YubiKey should now be registered in the device keychain. To remove this, press the minus sign (-) next to the item.

Signing documents using the hardware token

When a Mobile Maintenance app requests for the hardware token for signing, an on-screen prompt will be displayed. For the YubiKey devices, the companion app will show a notification. This usually appears as a popup at the top of the screen. If it is dismissed mistakenly, open the notifications list by swiping down from the top of the screen and select it. This will time out in a minute if no user action was taken. The Mobile Maintenance app will be unresponsive during this time and it is not possible to cancel the operation due to iOS/iPadOS limitations.
iOS signing step 1

The companion app will request the PIN code of the YubiKey device and to either plug it in or pull down to activate NFC. If NFC is used, the YubiKey device must be placed near the designated area of the Apple device. Please refer to the device manufacturer documentation to learn more about NFC on specific devices.
iOS signing step 2

Once the data has been successfully signed, the companion app will show a confirmation screen and request to navigate back to the Mobile Maintenance app. Press the top left corner of the screen to navigate back to the Mobile Maintenance app.
iOS signing step 3

iOS signing step 4

If there was an error during the signing process, an on-screen popup would be shown. If there are errors during the upload process of the signature and/or the document, they are displayed in the Sync Monitor page and can be resolved from within the app. Please see the next section for details.

Error handling within the Mobile Maintenance app

If an error occured while uploading the document and/or the signature file to the server, it has to be resolved from within the Mobile Maintenance app. To see a list of pending uploads, open the Sync Monitor from the side menu, and switch to the Uploads tab. The list will allow performing actions on each item by selecting one. The below options are available.

  • Delete - Deletes the pending upload. Note that this will delete both the document and signature file data from the device and is irreversible. This is not a recommended action if the signature is mandatory to perform any business logic. This option is given to allow the user to continue working when there's a unrecoverable error in the signing process.
  • Upload Document Only - In the case where the signature file upload fails or it cannot be validated, this option can be used to send only the document to the server. It can then be viewed from Cloud Web and actions can be taken separately to digitally sign it without using the Mobile Maintenance app.
  • Retry - This option will attempt the signing process from the beginning. The existing signature file would be deleted and the document signing will take place again. The hardware token is required to complete the retry process. If the retry fails multiple times, then there's a critical error, in which case the other options may need to be used.
  • Cancel - Dismisses the menu