Trigger Setup
This program lets you assign multiple actions that can be executed automatically when an eSignature transaction is successfully completed.
The actions that can be triggered include the following:
-
Email
-
Run a VBScript
-
Run any program
-
Run any application
-
Write to message inbox
-
Run an SRS report
Exploring
Things you can do in this program include:
-
Add a new trigger configuration
-
Maintain the configuration of an existing trigger
-
Delete an existing trigger
You can configure Electronic Signatures to activate triggers for integration to third-party systems or notification via email (e.g. after adding a customer).
These triggers therefore enable the timely identification of abnormal events or transactions which may potentially indicate fraudulent activity.
You can also define conditional logic so that an eSignature trigger is only fired when additional conditions are met.
Functionality:
-
Configure and activate triggers to notify management when significant events occur or to prevent operators from executing various transaction types (e.g. negative receipts).
-
Define multiple actions to be executed automatically when an eSignature transaction is successfully completed.
-
Invoke SYSPRO Reporting Services reports when a trigger is fired.
-
Configure VBScripts that can be invoked when a trigger is fired.
This caters for almost unlimited triggering capability, since virtually any type of application can be invoked using VBScript.
You can configure the Electronic Signatures system to maintain a detailed transaction log for auditing purposes (which can be archived for later retrieval).
A computer-generated time-stamp records the date and time of operator entry (including creation, modification, or deletion of records). This lets you generate a secure audit trail of completed transactions, indicating who performed a transaction and when it occurred.
Functionality:
-
The eSignature Query program provides an audit log of information relating to transactions controlled by eSignatures.
-
The eSignature Report program lets you generate a report of audit log information relating to transactions requiring eSignatures.
-
The eSignature Purge program lets you remove audit log entries held on file (based on the age of the entries) to reduce the number of entries in the log table (the table can consume excessive disk space after you have used the Electronic Signatures system for some time).
This purge system is controlled using the Global Configuration options where you can enable or disable purging and maintain run time selections.
This program can't be run standalone and is accessed from the following program(s):
-
Electronic Signature Transaction Setup
From the Setup trigger hyperlink within the Configuration pane.
Electronic Signatures (or eSignatures) let you increase control over your system changes by providing security access, transaction logging and event triggering.
This is achieved through the authentication and tracking of system activities against key business processes and sensitive data.
This applies to the Electronic Signatures system within SYSPRO.
A particular transaction or event initiated or performed by a standard user (i.e. with no administrator permissions) in SYSPRO can fire a particular trigger.
A trigger is the mechanism through which, for example, a VBScript can start running, an email can be sent or another program can be launched.
For example:
Changes to supplier details in the Suppliers program serve as a trigger for an email notification to a system administrator regarding these changes by a user within your system. This email is sent at the time which changes have been made by a user.
The types of triggers available include:
-
Email
-
Run a VBScript
-
Run any program
-
Run any application
-
Write to message inbox
-
Run an SRS report
Starting
-
The Electronic Signatures system must be enabled before using this program.
-
This program is only accessible if the Access level for the transaction's condition is defined as eSignature or Log only, and the Transaction successful option is enabled within the Electronic Signature Transaction Setup program.
-
Changes made using this program only take effect after logging out of and back into SYSPRO.
-
SMTP emailing is used rather than Microsoft Outlook if the eSignature's email trigger is associated with a business object (i.e. the eSignature has e.net in the transaction description). Therefore, ensure that your Email/SMTP settings are configured correctly (Setup Options > System Setup > Connectivity).
Solving
The system administrator must define the Global Configuration settings to enable the Electronic Signatures system:
-
Open the Electronic Signature Configuration Setup program (Program List > Administration > Electronic Signatures).
-
Select the Global Configuration function to launch the Global Configuration window.
-
Enable the Electronic signatures required option.
-
(Optional) Disable the Secure by default option to ensure that any new eSignature transactions added to the system are automatically defined as Allowed by default.
If you leave this option as enabled, then the access control of all new eSignature transactions added to the system are automatically set to Denied by default.
-
At the Authentication by field, indicate which password must be used for the authentication process when you configure eSignatures that require a password to be entered before certain transactions can be processed.
-
At the Configuration level field, indicate the level at which you want to configure eSignatures:
-
System-wide (if you want to apply access control and any advanced settings to all operators and groups across the system (i.e. in all companies)
-
Company, group, operator or role (if you want to configure eSignatures for a specific company, group, operator or role)
-
-
(Optional) Enable the Specify company for operator/group/role option if you want to configure Electronic Signatures separately for different companies. Otherwise the configurations defined for each group will apply to those groups in all companies.
-
(Optional) Indicate your preferences for purging log records against the Purge options.
-
Select the Save function to return to the Electronic Signature Configuration Setup program.
-
Exit the Electronic Signature Configuration Setup program and restart SYSPRO for your changes to take effect.
The following indicates how a system administrator can create a new eSignature configuration at Operator, Group, Company or Role level:
- Open the Electronic Signature Configuration Setup program (Program List > Administration > Electronic Signatures).
-
Select the Add a new configuration toolbar function.
A new blank record is added to the list view.
-
Indicate the Security level you require as Company, Operator, Group or Role.
-
Depending on your selection against the Security level, indicate the associated code within the following columns:
-
Company
-
Operator
-
Operator Group
-
Role
-
-
Indicate the access control you require for this configuration level within the Transaction type column:
-
eSignature
-
Allowed
-
Denied
-
Log only
-
Excluded
-
Define by transaction
-
-
Select the Save function.
-
(Optional) If you defined the Transaction type as Define by transaction:
-
Select the Maintain hyperlink within the Transactions column.
This loads the Electronic Signature Transaction Setup program from where you can define the transactions associated with the configuration, as well as the trigger and audit log details.
-
Locate the transaction you want to configure the eSignature against and select one of the following depending on your requirements:
-
To maintain the existing condition for the transaction:
Select the Edit hyperlink within the Edit column of the Transactions list view.
-
To add an additional condition to the transaction:
Select the Add condition hyperlink within the Add condition column of the Transactions list view.
-
-
Within Configure pane, define the condition as you require it, along with the effective period, logging and trigger requirements.
-
Select the Save function to return to the Electronic Signature Configuration Setup program.
-
-
Exit the Electronic Signature Configuration Setup program and restart SYSPRO for your changes to take effect.
You must first define the roles associated with particular operators (within the Role Management program) before you can add an eSignature configuration at role level (using the Electronic Signature Configuration Setup program).
Therefore, you would typically follow this procedure to configure additional settings for your roles system to work with the Electronic Signatures system:
-
Open the Role Management program (SYSPRO Ribbon bar > Setup) to configure your roles for integration with eSignatures.
-
Select the Global Configuration option from the Options menu:
-
Within the Settings by company within role section, enable the eSignatures option.
This lets you assign a company to the operators within a particular role in the Transactions list view of the Electronic Signature Configuration Setup program.
The eSignatures always by role option doesn't apply in this context as it only applies to the Process Electronic Signatures program which handles the transactional logic of the eSignature system.
-
Select the Save and Close function to return to the Role Management program.
-
-
From the Role toolbar field, indicate which role you want to configure for use with eSignatures.
-
Within the Role Information pane, select the Configured by role option against the eSignatures drop-down.
-
Select the Configure eSignature settings hyperlink to launch the Electronic Signature Configuration Setup program, where a new configuration level is automatically added for the selected role.
-
Indicate the access control you require for this configuration level within the Transaction type column:
-
eSignature
-
Allowed
-
Denied
-
Log only
-
Excluded
-
Define by transaction
-
-
Select the Save function.
-
(Optional) If you defined the Transaction type as Define by transaction:
-
Select the Maintain hyperlink within the Transactions column.
This loads the Electronic Signature Transaction Setup program from where you can define the transactions associated with the configuration, as well as the trigger and audit log details.
-
Locate the transaction you want to configure the eSignature against and select one of the following depending on your requirements:
-
To maintain the existing condition for the transaction:
Select the Edit hyperlink within the Edit column of the Transactions list view.
-
To add an additional condition to the transaction:
Select the Add condition hyperlink within the Add condition column of the Transactions list view.
-
-
Within Configure pane, define the condition as you require it, along with the effective period, logging and trigger requirements.
-
Select the Save function to return to the Electronic Signature Configuration Setup program.
-
-
Exit the Electronic Signature Configuration Setup program.
-
-
Exit the Role Management program and restart SYSPRO for your changes to take effect.
You'd typically follow this procedure to define the details associated with a default email message to be sent when an operator initiates or performs a particular event or activity in your system:
-
Load the Electronic Signature Transaction Setup program:
-
Open the Electronic Signature Configuration Setup program (Program List > Administration > Electronic Signatures).
-
Select the Maintain hyperlink (in the Transactions column) against the configuration level for which you want to define conditions. This loads the Electronic Signature Transaction Setup program.
This only applies if the Transaction Type for the configuration is defined as Define by Transaction.
-
-
Select the Edit hyperlink against the relevant transaction within the Transactions list view. Alternatively, select the Add condition hyperlink to add an additional condition. This enables the Configure pane.
-
Define the Access level as eSignature or Log only.
-
Within the Logging and trigger options section, enable the Transaction successful option.
-
Select the Setup trigger hyperlink to load the Trigger Setup program:
-
Select the New function from the toolbar to create a new trigger.
-
Define the trigger's details as you require:
-
Select Email against the Type drop-down.
-
Indicate a relevant Description.
-
Select the Edit hyperlink of the Contents field to indicate the default email details for a particular trigger (i.e. recipient, subject, contents and any relevant attachments) using the Send Email program.
-
Select the Save function once you've indicated all the relevant details.
-
-
Exit the Trigger Setup program.
-
-
Select the Save function of the Electronic Signature Transaction Setup program to save your condition's configuration.
-
Close the Electronic Signature Transaction Setup program.
-
Exit the Electronic Signature Configuration Setup program and restart SYSPRO for your changes to take effect.
You should now receive a email notification when a SYSPRO operator initiates or performs the particular transaction against which you've defined the conditions.
SMTP emailing is used rather than Microsoft Outlook if the eSignature's email trigger is associated with a business object (i.e. the eSignature has e.net in the transaction description). Therefore, ensure that your Email/SMTP settings are configured correctly (Setup Options > System Setup > Connectivity).
You'd typically follow this procedure to load a program once a particular event or transaction has been initiated or performed by a SYSPRO operator.
-
Load the Electronic Signature Transaction Setup program:
-
Open the Electronic Signature Configuration Setup program (Program List > Administration > Electronic Signatures).
-
Select the Maintain hyperlink (in the Transactions column) against the configuration level for which you want to define conditions. This loads the Electronic Signature Transaction Setup program.
This only applies if the Transaction Type for the configuration is defined as Define by Transaction.
-
-
Select the Edit hyperlink against the relevant transaction within the Transactions list view. Alternatively, select the Add condition hyperlink to add an additional condition. This enables the Configure pane.
-
Define the Access level as eSignature or Log only.
-
Within the Logging and trigger options section, enable the Transaction successful option.
-
Select the Setup trigger hyperlink to load the Trigger Setup program:
-
Select the New function from the toolbar to create a new trigger.
-
Define the trigger's details as you require:
-
Select Run any program against the Type drop-down.
-
Indicate the Program that you want to run when this trigger is initiated.
-
Select the Save function once you've indicated all the relevant details.
-
-
Exit the Trigger Setup program.
-
-
Select the Save function of the Electronic Signature Transaction Setup program to save your condition's configuration.
-
Close the Electronic Signature Transaction Setup program.
-
Exit the Electronic Signature Configuration Setup program and restart SYSPRO for your changes to take effect.
The program(s) defined are then automatically launched when a SYSPRO operator initiates or performs the particular transaction against which you've defined the conditions.
You'd typically follow this procedure to send a message to a single SYSPRO operator, all operators, an entire company, operators within a group or operators within a role once a particular event or transaction has been initiated or performed.
-
Load the Electronic Signature Transaction Setup program:
-
Open the Electronic Signature Configuration Setup program (Program List > Administration > Electronic Signatures).
-
Select the Maintain hyperlink (in the Transactions column) against the configuration level for which you want to define conditions. This loads the Electronic Signature Transaction Setup program.
This only applies if the Transaction Type for the configuration is defined as Define by Transaction.
-
-
Select the Edit hyperlink against the relevant transaction within the Transactions list view. Alternatively, select the Add condition hyperlink to add an additional condition. This enables the Configure pane.
-
Define the Access level as eSignature or Log only.
-
Within the Logging and trigger options section, enable the Transaction successful option.
-
Select the Setup trigger hyperlink to load the Trigger Setup program:
-
Select the New function from the toolbar to create a new trigger.
-
Define the trigger's details as you require:
-
Select Write to message inbox against the Type drop-down.
-
Select the Edit hyperlink of the Contents field to indicate the details for the default message you want to send to a particular Security level group (i.e. a single operator, all operators across a company, etc.) as defined in the Electronic Signature Configuration Setup program.
This loads the Message Inbox Details window.
-
Indicate the relevant details within the Message Inbox Details window.
-
Select the Save function once you've indicated all the relevant details.
-
-
Exit the Trigger Setup program.
-
-
Select the Save function of the Electronic Signature Transaction Setup program to save your condition's configuration.
-
Close the Electronic Signature Transaction Setup program.
-
Exit the Electronic Signature Configuration Setup program and restart SYSPRO for your changes to take effect.
The applicable operators will then receive a message within their SYSPRO Inbox when a SYSPRO operator initiates or performs the particular transaction against which you've defined the conditions.
-
Load the Electronic Signature Transaction Setup program:
-
Open the Electronic Signature Configuration Setup program (Program List > Administration > Electronic Signatures).
-
Select the Maintain hyperlink (in the Transactions column) against the configuration level for which you want to define conditions. This loads the Electronic Signature Transaction Setup program.
This only applies if the Transaction Type for the configuration is defined as Define by Transaction.
-
-
Select the Edit hyperlink against the relevant transaction within the Transactions list view. Alternatively, select the Add condition hyperlink to add an additional condition. This enables the Configure pane.
-
Define the Access level as eSignature or Log only.
-
Within the Logging and trigger options section, enable the Transaction successful option.
-
Select the Setup trigger hyperlink to load the Trigger Setup program:
-
Select the New function from the toolbar to create a new trigger.
-
Define the trigger's details as you require:
-
Select Run any application against the Type drop-down.
-
Indicate the applicable entries within the Command line and Start in fields.
-
Select the Save function once you've indicated all the relevant details.
-
-
Exit the Trigger Setup program.
-
-
Select the Save function of the Electronic Signature Transaction Setup program to save your condition's configuration.
-
Close the Electronic Signature Transaction Setup program.
-
Exit the Electronic Signature Configuration Setup program and restart SYSPRO for your changes to take effect.
The application(s) defined are then automatically launched when a SYSPRO operator initiates or performs the particular transaction against which you've defined the conditions.
You'd typically follow this procedure to load a SYSPRO Reporting Services report once a particular event or transaction has been initiated or performed by a SYSPRO operator.
-
Load the Electronic Signature Transaction Setup program:
-
Open the Electronic Signature Configuration Setup program (Program List > Administration > Electronic Signatures).
-
Select the Maintain hyperlink (in the Transactions column) against the configuration level for which you want to define conditions. This loads the Electronic Signature Transaction Setup program.
This only applies if the Transaction Type for the configuration is defined as Define by Transaction.
-
-
Select the Edit hyperlink against the relevant transaction within the Transactions list view. Alternatively, select the Add condition hyperlink to add an additional condition. This enables the Configure pane.
-
Define the Access level as eSignature or Log only.
-
Within the Logging and trigger options section, enable the Transaction successful option.
-
Select the Setup trigger hyperlink to load the Trigger Setup program:
-
Select the New function from the toolbar to create a new trigger.
-
Define the trigger's details as you require:
-
Select Run an SRS Report against the Type drop-down.
-
Select the Edit hyperlink of the Contents field to indicate the applicable report to be used in the condition.
-
Select the Save function once you've indicated all the relevant details.
-
-
Exit the Trigger Setup program.
-
-
Select the Save function of the Electronic Signature Transaction Setup program to save your condition's configuration.
-
Close the Electronic Signature Transaction Setup program.
-
Exit the Electronic Signature Configuration Setup program and restart SYSPRO for your changes to take effect.
The report(s) defined are then automatically launched when a SYSPRO operator initiates or performs the particular transaction against which you've defined the conditions.
You'd typically follow this procedure to configure additional user defined conditions for a specific transaction in the Electronic Signatures system.
For example:
You can define a condition against the WIP Job Creation transaction to deny an operator from creating jobs for customers who have exceeded their credit limit.
-
Load the Electronic Signature Transaction Setup program:
-
Open the Electronic Signature Configuration Setup program (Program List > Administration > Electronic Signatures).
-
Select the Maintain hyperlink (in the Transactions column) against the configuration level for which you want to define conditions. This loads the Electronic Signature Transaction Setup program.
This only applies if the Transaction Type for the configuration is defined as Define by Transaction.
-
-
Select the Edit hyperlink against the relevant transaction within the Transactions list view. Alternatively, select the Add condition hyperlink to add an additional condition. This enables the Configure pane.
-
Select the User defined option at the Condition field and enter a meaningful description in the Description field.
-
Optionally enter a specific condition code within the Name field.
-
Select the Define hyperlink of the User condition field.
Within the Condition Configuration pane:
-
Add the conditions you require against the transaction.
-
Select the Accept and Close function.
-
-
At the Access level field, indicate the access control level you require for this new condition.
Optionally define an effective period for the condition.
-
Select the Save function of the Electronic Signature Transaction Setup program to save your condition's configuration.
-
Close the Electronic Signature Transaction Setup program.
-
Exit the Electronic Signature Configuration Setup program and restart SYSPRO for your changes to take effect.
The copy function is useful for various reasons, some of which include:
-
If more than one operator requires the same eSignature configuration, you need only define the configuration for one operator and then use the Copy From function to copy that configuration to the other operators.
-
If you previously configured eSignatures at operator level but now want to configure at role level, the copy function simplifies the process.
Assuming the eSignature configuration for an operator (or operator group) typifies the configuration you require for the role, you can copy the operator (or operator group) configuration to the new role. Once copied, you can then change the role configuration if required.
This saves you having to entirely re-configure eSignatures for the new role.
Once you have assigned the operator(s) to the roles, you can then delete the individual operator configurations from the Electronic Signatures system.
You would typically follow this procedure to copy the configuration of Electronic Signatures from one operator, company, group or role to another.
This is useful if more than one operator requires the same eSignature configuration as you need only define the configuration for one operator and then use this option to copy that configuration to the other operators.
-
Open the Electronic Signature Configuration Setup program (Program List > Administration > Electronic Signatures).
-
Highlight the configuration level that you want to copy.
-
Select the Copy from function to copy the selected configuration to any configuration displayed in the Configurations list view.
This loads the Copy Selected Configuration to window.
This is only enabled if your Security Level is defined as Company, Operator, Group or Role.
Or...
Select the Copy to function to copy the currently highlighted configuration associated with a particular SYSPRO operator to another operator.
This loads the Copy configuration: [Operator name] to window.
This is only enabled if your Security Level is defined as Operator and the Specify company for operator/group/role option within the Global Configuration is disabled.
-
Select the Copy Configuration function.
The system prompts you to confirm if you want to proceed.
-
Select Copy Configuration to confirm the process and copy the configuration.
-
Exit the Electronic Signature Configuration Setup program and restart SYSPRO for your changes to take effect.
You'd typically follow this procedure to export the eSignature configurations currently displayed in the list view:
-
Open the Electronic Signature Configuration Setup program (Program List > Administration > Electronic Signatures).
-
Indicate the configurations that you want to export by using the Select checkbox (in the Export column) against each applicable configuration.
Use the Select All toolbar function to export all configurations displayed in the list view.
-
Select the Export function.
The Export Electronic Signatures window is launched.
-
Indicate the required File name.
-
Enable the Include global configuration option.
An error is displayed if you don't enable this option, because without this enabled, you won't be able to import the configuration to another system.
-
Select the Export function.
An informational message is displayed once this export is successful.
-
Close the Export Electronic Signatures window.
-
Exit the Electronic Signature Configuration Setup program.
You've successfully exported eSignature configurations and their associated transactions, including the defined triggers and audit log information.
You'd typically follow this procedure to import eSignatures from a different environment (e.g. a test environment) to your current environment:
-
Open the Electronic Signature Configuration Setup program (Program List > Administration > Electronic Signatures).
-
Select the Import toolbar function.
The Import Electronic Signatures window is launched.
-
Indicate the applicable File name.
-
(Optional) Enable the Include global configuration option so that you don't have to reconfigure the primary settings for the Electronic Signatures system after importing the configuration levels.
-
Select the Import function.
A warning message is displayed prompting you to proceed with removing all existing configurations. Select Yes to continue. Alternatively, select No to return to the current window without performing the import.
An informational message is displayed once the import of eSignatures to your current environment is successful.
-
Close the Import Electronic Signatures window.
-
Exit the Electronic Signature Configuration Setup program and restart SYSPRO for your changes to take effect.
You've successfully imported eSignature configurations and their associated transactions, including their defined triggers and audit log information.
You would typically follow this procedure to generate a more detailed log per transaction, apart from the audit log which is generated by default when you set a transaction's access control to eSignatures or Log only.
In addition, you can add variables to provide insight into transactions performed or initiated by your SYSPRO operators:
-
Load the Electronic Signature Transaction Setup program:
-
Open the Electronic Signature Configuration Setup program (Program List > Administration > Electronic Signatures).
-
Select the Maintain hyperlink (in the Transactions column) against the configuration level for which you want to define conditions. This loads the Electronic Signature Transaction Setup program.
This only applies if the Transaction Type for the configuration is defined as Define by Transaction.
-
-
Select the Edit hyperlink against the relevant transaction within the Transactions list view. Alternatively, select the Add condition hyperlink to add an additional condition. This enables the Configure pane.
-
Define the Access level as eSignature or Log only.
-
Enable the Detail log required option under the Logging and trigger options section.
-
Optionally select the Configure details hyperlink to load the Configure Detail Log window:
-
Indicate the variables that you want to include in the detailed log for the transaction by using the checkbox within the Select column.
For example:
You may want to know the name of the supplier and banking details associated with the supplier that was added by an operator for the AP Supplier added transaction.
You'd therefore add the %Key, %Bank, %BankAccount and %BankBranch variables.
Adding a large number of variables to the detail log can increase the size of the audit log table. Therefore, you should consider only including the required variables.
-
Select Ok to save your selections.
-
-
Select the Save function of the Electronic Signature Transaction Setup program to save your condition's configuration.
-
Close the Electronic Signature Transaction Setup program.
-
Exit the Electronic Signature Configuration Setup program and restart SYSPRO for your changes to take effect.
You can now view the audit logs for eSignature transactions using the eSignature Query program (Program List > Administration > Electronic Signatures).
The eSignature Report program lets you generate a report of audit log information relating to transactions requiring eSignatures:
-
Open the eSignature Report program (Program List > Administration > Electronic Signatures).
-
Indicate if you want to generate a Detail or Summary report at the Report type field.
-
(Optional) Indicate your criteria preferences for which you want to generate the report.
-
Transaction selection
-
Transaction date selection
-
Transaction time selection
-
Operator selection
-
Program selection
-
Key selection
-
Variable selection
-
-
(Optional) Use the Include options to define which transaction statuses you want to include in the report.
-
(Optional) Define any additional report options you require within the Output Options pane.
-
Select the Process function.
-
Exit the eSignature Report program.
Using this lets you produce a report of the audit entries displayed in the eSignature Query program according specific report criteria and report options.
To view the audit log of eSignature transactions processed, proceed as follows:
-
Open the eSignature Query program (Program List > Administration > Electronic Signatures).
-
Indicate the relevant Time filter.
-
Enable the Show detail option from the toolbar.
-
Optionally define any criteria you require within the Filter Options pane and select the Apply Custom Filter function.
-
Select the Refresh View function.
After defining your preferences for purging log records, you can use the eSignature Purge program to remove audit log entries held on file, based on the age of the entries:
-
Open the Electronic Signature Configuration Setup program (Program List > Administration > Electronic Signatures).
-
Select the Global Configuration function to load the Global Configuration window.
-
From the Purge options section, select the Allow purge option to enable purging audit logs for eSignatures.
-
Optionally enable the Allow run time selection option so that you can indicate the relevant number of months or years against the Purge log records older than drop-down.
-
Select the Save function.
You are returned to the Electronic Signature Configuration Setup program.
-
Exit the Electronic Signature Configuration Setup program and restart SYSPRO for your changes to take effect.
-
-
Open the eSignature Purge program (Program List > Administration > Electronic Signatures).
-
At the Purge field, indicate if you want to remove all audit log information or only the details log.
-
Use the slider to indicate the Months to retain records.
-
Select the Start purge function and accept the confirmation message that is displayed.
The program automatically closes and an informational message is displayed indicating how many records were removed.
-
This helps reduce the number of entries in the AdmSignatureLog and AdmSignatureLogDet tables as the number of entries can grow substantially after you have used the Electronic Signatures system for some time.
Using
The following process outlines how to implement the Electronic Signatures system for a single company. However, this is only a basic guide and you can configure the system differently according to your requirements:
-
Enable the Electronic Signatures system:
-
Open the Electronic Signature Configuration Setup program (Program List > Administration > Electronic Signatures).
-
Select the Global Configuration function to launch the Global Configuration window.
-
Enable the Electronic signatures required option.
-
(Optional) Disable the Secure by default option to ensure that any new eSignature transactions added to the system are automatically defined as Allowed by default.
If you leave this option as enabled, then the access control of all new eSignature transactions added to the system are automatically set to Denied by default.
-
At the Authentication by field, indicate which password must be used for the authentication process when you configure eSignatures that require a password to be entered before certain transactions can be processed.
-
At the Configuration level field, indicate the level at which you want to configure eSignatures:
-
System-wide (if you want to apply access control and any advanced settings to all operators and groups across the system (i.e. in all companies)
-
Company, group, operator or role (if you want to configure eSignatures for a specific company, group, operator or role)
-
-
(Optional) Enable the Specify company for operator/group/role option if you want to configure Electronic Signatures separately for different companies. Otherwise the configurations defined for each group will apply to those groups in all companies.
-
(Optional) Indicate your preferences for purging log records against the Purge options.
-
Select the Save function to return to the Electronic Signature Configuration Setup program.
-
Exit the Electronic Signature Configuration Setup program and restart SYSPRO for your changes to take effect.
-
-
Define your configuration level(s) at Operator, Group, Company or Role level:
- Open the Electronic Signature Configuration Setup program (Program List > Administration > Electronic Signatures).
-
Select the Add a new configuration toolbar function.
A new blank record is added to the list view.
-
Indicate the Security level you require as Company, Operator, Group or Role.
-
Depending on your selection against the Security level, indicate the associated code within the following columns:
-
Company
-
Operator
-
Operator Group
-
Role
-
-
Indicate the access control you require for this configuration level within the Transaction type column:
-
eSignature
-
Allowed
-
Denied
-
Log only
-
Excluded
-
Define by transaction
-
-
Select the Save function.
-
(Optional) If you defined the Transaction type as Define by transaction:
-
Select the Maintain hyperlink within the Transactions column.
This loads the Electronic Signature Transaction Setup program from where you can define the transactions associated with the configuration, as well as the trigger and audit log details.
-
Locate the transaction you want to configure the eSignature against and select one of the following depending on your requirements:
-
To maintain the existing condition for the transaction:
Select the Edit hyperlink within the Edit column of the Transactions list view.
-
To add an additional condition to the transaction:
Select the Add condition hyperlink within the Add condition column of the Transactions list view.
-
-
Within Configure pane, define the condition as you require it, along with the effective period, logging and trigger requirements.
-
Select the Save function to return to the Electronic Signature Configuration Setup program.
-
-
Exit the Electronic Signature Configuration Setup program and restart SYSPRO for your changes to take effect.
-
Once the Electronic Signatures system is in place and operators have begun processing transactions that form part of your configuration level(s), you can view the audit log:
-
Open the eSignature Query program (Program List > Administration > Electronic Signatures).
-
Indicate the relevant Time filter.
-
Enable the Show detail option from the toolbar.
-
Optionally define any criteria you require within the Filter Options pane and select the Apply Custom Filter function.
-
Select the Refresh View function.
-
-
Generate a report of audit log information relating to transactions that form part of the Electronic Signatures system:
-
Open the eSignature Report program (Program List > Administration > Electronic Signatures).
-
Indicate if you want to generate a Detail or Summary report at the Report type field.
-
(Optional) Indicate your criteria preferences for which you want to generate the report.
-
Transaction selection
-
Transaction date selection
-
Transaction time selection
-
Operator selection
-
Program selection
-
Key selection
-
Variable selection
-
-
(Optional) Use the Include options to define which transaction statuses you want to include in the report.
-
(Optional) Define any additional report options you require within the Output Options pane.
-
Select the Process function.
-
Exit the eSignature Report program.
-
-
If required, you can purge the audit log entries held on file to reduce the size of the log files:
-
Open the Electronic Signature Configuration Setup program (Program List > Administration > Electronic Signatures).
-
Select the Global Configuration function to load the Global Configuration window.
-
From the Purge options section, select the Allow purge option to enable purging audit logs for eSignatures.
-
Optionally enable the Allow run time selection option so that you can indicate the relevant number of months or years against the Purge log records older than drop-down.
-
Select the Save function.
You are returned to the Electronic Signature Configuration Setup program.
-
Exit the Electronic Signature Configuration Setup program and restart SYSPRO for your changes to take effect.
-
-
Open the eSignature Purge program (Program List > Administration > Electronic Signatures).
-
At the Purge field, indicate if you want to remove all audit log information or only the details log.
-
Use the slider to indicate the Months to retain records.
-
Select the Start purge function and accept the confirmation message that is displayed.
The program automatically closes and an informational message is displayed indicating how many records were removed.
-
-
The following indicates the fields and variables available to use when you perform one of the following actions:
-
Configure a conditional statement for a user-defined condition
-
Configure an email trigger
Variable names and keywords are case sensitive. However, when you tab off the field, the system looks up the field or variable name in a case insensitive way and then replaces it with the item of the correct case.
For example:
If you type %key and tab from the field, the value is automatically replaced with %Key.
Available fields for all transactions include:
-
Primary table columns
For example:
InvMaster.Description
-
Custom form table columns
For example:
InvMaster+.Status
Depending on the primary table associated with the transaction (and only when the transaction is maintaining or deleting an item) you can provide fields or custom form fields related to the primary table.
In addition to being able to select fields from a primary table, some transactions also provide the ability to select fields from additional linked tables and their custom forms, however this is only available where a custom form type has been defined for the variable column.
Available variables include:
This variable is the key of the main table used by the transaction.
The key can comprise of only one item of information (e.g. the customer code or stock code) or more than one item of information (i.e. a composite key).
Transaction variables start with % and can be used to reference transaction values passed to the Electronic Signatures system.
System variables start with $ and allow you to access system-wide information not related to the specific transaction being processed.
This system variable is the description defined against the condition.
This system variable is the primary group defined against the operator.
The contents of this system variable is determined by the eSignature being processed.
This entry can and will contain the following:
eSignature Definition | Contents of $OperatorCurGroup |
---|---|
System | Spaces |
Company | Spaces |
Group | Group code |
Operator | Operator |
Role | Role |
Unless you are defining eSignatures at group level, this variable is populated by the key for the individual electronic signature and not a group code.
This system variable indicates the system date.
This system variable indicates the operator's computer date.
Instead of displaying a generic message in an operator's Message Inbox, you can configure the trigger point to display more specific information. This is achieved by using any of a number of reserved words or variables in the Subject text field.
Field | Description |
---|---|
%key |
This indicates the key passed to the trigger program. |
%oper |
This indicates the operator who performed the transaction that caused the trigger to be invoked. |
%coid |
This indicates the company ID in which the transaction occurred. |
Within the Electronic Signatures system, you can define access control either at configuration or transaction level. Therefore, the following table summarizes the access control levels available.
-
The access levels you define against an individual operator take precedence over the access levels defined at company level.
-
Each transaction condition can have a different access control level.
Similarly, each operator group can be assigned a different access level.
-
If you select the eSignature or All Secured by eSignature access level, then a password must be defined against each operator who has access to the transaction.
This is either an operator password or an alternate password, depending on your selection at the Authentication by option within the Global Configurations.
-
Where transactions are configured against a specific operator, the access level defined against the operator applies (except if this access level is set to Excluded from definition), regardless of the configuration against any groups to which the operator belongs.
If the access method for a transaction configured against an operator is defined as Excluded from definition, then the access level defined against the operator's group(s) applies.
If the access level against the group(s) is also set to Excluded from definition, then the access level defined against the company applies.
Access Control | Impact |
---|---|
eSignature (Configuration level) or eSignature (Transaction level) |
This sets the current transaction or configuration level to be subject to the Electronic Signatures system. Configuration level
Transactions are subject to Electronic Signatures and therefore operators must enter a password before a transaction can be processed. Transaction level
The transaction is subject to Electronic Signatures and you therefore need to indicate one of the following against the transaction:
Auditing capabilities
An audit log is generated for each transaction when this access control is defined at either level. |
Allowed (Configuration level) or Allowed (Transaction level) |
When selected at either Configuration or Transaction level: Operators can process transactions without having to enter a password (i.e. transactions are ignored by the Electronic Signatures system). Auditing capabilities
No audit log is generated for the transaction. |
Denied (Configuration level) or Denied (Transaction level) |
When selected at either Configuration or Transaction level: Operators are prevented from processing any SYSPRO transaction that forms part of the Electronic Signatures system. Auditing capabilities
No audit log is generated for the transaction. |
Log Only (Configuration level) or Log only (Transaction level) |
When selected at either Configuration or Transaction level: Operators can process transactions, but an audit log is generated for every transaction. In other words, this is the same access control as Allowed, except an audit log is generated. Auditing capabilities
An audit log is generated for each transaction when this access control is defined at either level. |
Excluded (Configuration level) or Excluded from definition (Transaction level) |
When selected at either Configuration or Transaction level: Transactions are ignored by the Electronic Signatures system. You would typically select this option at Configuration level if you wanted to configure only a few transactions for Electronic Signatures. Configuration level considerations
The access control to all transactions are set to Excluded. You can then select the Define by Transaction option to configure the transactions you want to secure individually. If you select this option but do not configure any transactions individually, then this is equivalent to selecting the Allowed option for the selected configuration level. Therefore, the purpose of this option at Configuration level is to cascade the access level up to the next level defined, except when using role-based eSignature definitions, as there are no higher-up levels. For example: If the transaction is excluded for an operator, then the access level defined against the group applies. If this is defined as Excluded from definition, then the access level defined against the company applies. This access control is an advanced option and should therefore only be used with sophisticated conditional logic. Auditing capabilities
No audit log is generated for the transaction. |
Define by Transaction (Configuration level) |
When selected at Configuration level: This lets you configure each SYSPRO transaction that forms part of the Electronic Signatures system individually. You can then select the Edit or Add condition option from the Transactions list view of the Electronic Signature Transaction Setup program to define additional configuration options for each transaction. In addition, you can deselect individual transactions in the Transactions list view, thereby setting that transaction to Denied for the selected configuration level. |
Transactions can be configured with different security levels for all operators, by operator or by group. In addition, each transaction can be configured with multiple conditions.
You can configure up to 50 user-defined conditions for a single transaction.
Therefore, it is crucial to understand the security level hierarchy in both single and multiple Operator/Group/Company configurations:
If a transaction is configured for a single operator/group/company, with multiple conditions, and all of these conditions are true, then the following hierarchy is used to determine which condition applies:
Denied takes precedence, followed by:
- eSignature
- Log only
- Allowed
- Excluded from definition
Therefore, if the condition is true and the security level is set to Denied, then this will override any other conditions for the transaction.
The following illustrates the hierarchy used for processing multiple conditions in a single Operator/Group/Company configuration:
-
If "condition 1" is defined as Denied:
Then the security level for the transaction is set to Denied, regardless of what access control is set for "condition 2".
-
If "condition 1" is defined as eSignature:
Then the security level for the transaction is set to eSignature.
Exception: If the access control for "condition 2" is defined as Denied, then "condition 2" takes precedence.
-
If "condition 1" is defined as Log only:
Then the security level for the transaction is set to Log only.
Exception: If the access control for "condition 2" is defined as Denied or eSignature, then those access levels take precedence.
-
If "condition 1" is defined as Allowed:
Then the security level for the transaction is set to that of "condition 2".
Exception: If the access control for "condition 2" is defined as Excluded from definition, then "condition 1" takes precedence.
-
If "condition 1" is defined as Excluded from definition:
Then the security level for the transaction is set to that of "condition 2".
For example:
The following indicates an example of the hierarchy used for access control in a single Operator/Group/Company configuration:
You use the Add condition option to define the following against a transaction:
Name | Access control level | Condition |
---|---|---|
Condition 1 |
Log only |
Whenever stock on hand changed. |
Condition 2 |
Allowed |
Stock on hand < Safety level. |
Condition 3 |
Denied |
Stock on < 0. |
If all the above conditions are true, then the security level Denied applies.
If the first and second conditions were true, then Log only applies.
For each group, for the current transaction, it must be determined which security level applies. If there are multiple conditions, then this security level is determined as described above.
Where an operator belongs to multiple groups, the following security hierarchy is used to determine which group's configuration applies:
eSignature takes precedence followed by:
- Log only
- Allowed
- Access denied
- Excluded from definition
Therefore, if the operator belongs to any group where eSignature is configured for the current transaction, then this overrides any other conditions configured for another group for the same transaction.
The following illustrates the hierarchy used for processing multiple groups:
-
If "group 1" is defined as Denied:
Then the security level for the transaction is set to that of "group 2".
Exception: If "group 2" has the access level defined as Excluded from definition, then "group 1" takes precedence.
-
If "group 1" is defined as eSignature:
Then the security level for the transaction is set to eSignature, regardless of what access control is defined against "group 2".
-
If "group 1" is defined as Log only:
Then the security level for the transaction is set to Log only.
Exception: If "group 2" has the access level defined as eSignature, then "group 2" takes precedence.
-
If "group 1" is defined as Allowed:
Then the security level for the transaction is set to Allowed.
Exception: If "group 2" has the access level defined as eSignature or Log only, then "group 2" takes precedence.
-
If "group 1" is defined as Excluded from definition:
Then the security level for the transaction is set to that of "group 2".
-
Columns in a list view are sometimes hidden by default. You can reinstate them using the Field Chooser option from the context-sensitive menu (displayed by right-clicking a header column header in the list view). Select and drag the required column to a position in the list view header.
-
Fields on a pane are sometimes removed by default. You can reinstate them using the Field Selector option from the context-sensitive menu (displayed by right-clicking any field in the pane). Select and drag the required fields onto the pane.
The captions for fields are also sometimes hidden. You can select the Show Captions option from the context-sensitive menu to see a list of them. Click on the relevant caption to reinstate it to the form.
If the Show Captions option is grayed out, it means no captions are hidden for that form.
-
Press Ctrl+F1 within a list view or form to view a complete list of functions available.
Referencing
This list view displays the triggers currently defined against the transaction's condition.
Column | Description |
---|---|
Type |
This indicates the type of trigger defined against the condition. |
Description |
This indicates the description defined against the trigger. |
This pane is only enabled when you select the Maintain or New function.
Field | Description |
---|---|
Type |
Indicate the type of trigger that you want to invoke for the condition you are maintaining: Email
This lets you generate an email when the trigger is activated. Considerations:
Run a VBScript
This lets you invoke a VBScript when the trigger is activated. Considerations:
Run any program
This lets you run a specific program when the trigger is activated in SYSPRO. Run any application
This lets you run an application when the trigger is activated in SYSPRO. Considerations:
Write to message inbox
This lets you notify operators with a message via their SYSPRO Message Inbox when the trigger is activated in SYSPRO. It can also include tasks that must be actioned when specific triggers are activated in SYSPRO. For example: Whenever a new customer is added to the system, a message can be sent to the message inbox of the Accounts Controller. Considerations:
Run an SRS report
This lets you run either a standard or user-defined SYSPRO Reporting Services report. Considerations:
|
Description |
Enter a description for the trigger. This defaults to the trigger type but can be changed if required. |
Contents |
This field's use differs depending on your selection at the Type field:
|
Program |
Indicate the name of the program that you want to run when this trigger is activated. This field only applies for the Run any program trigger type. |
Command line |
Indicate the command that you want to invoke. This field only applies for the Run any application trigger type. |
Start in |
Indicate the full path name to where the command resides. This field only applies for the Run any application trigger type. |
This window is displayed if you define the trigger type as Write to message inbox and select the Edit hyperlink of the Contents field.
Field | Description |
---|---|
Subject text |
Enter the text that you want to display in the Message column of the designated operator's Message Inbox when the trigger is activated. Although this field is limited to 40 characters, you can use reserved words to effectively expand the number of characters sent to the Message Inbox. |
Send to operator |
This lets you indicate the code of the operator who must receive the message. |
Operator name |
This indicates the name of the operator code defined. |
Program to run |
Optionally indicate a valid standard SYSPRO program that can be launched when the operator loads the message. |
Name |
This indicates the description of the program defined. |
Post message with today's date |
This lets the trigger write to the operator's Message Inbox regardless of how many times the trigger point is activated on the same day. If this option is left as disabled, only a single message is posted for multiple activations of the trigger point on the same day. |
Prevent duplicate messages |
This lets you filter out duplicate messages (i.e. messages where the subject text and program to run are identical) from appearing in the target operator's Message Inbox. |
This window is displayed if you define the trigger type as Run an SRS Report and select the Edit hyperlink of the Contents field.
This lets you define the report types that you want to view:
-
Standard reports (i.e. standard SYSPRO SRS reports)
-
User-defined reports (i.e. customized reports)
The list view displays the SRS reports available for selection.
Copyright © 2022 SYSPRO PTY Ltd.