Configuring the WS scan environment

Overview

The WS scan transmission function sends original data scanned on the machine to a Windows computer connected to the network.

The computer uses the Web service function of Windows to automatically detect this machine connected to the network and smoothly install this function as a Web service scanner.

HTTP is used for communication between this machine and the computer. Use SSL to encrypt a communication between the this machine and the computer; you can send a file more securely.

When using the WS scan transmission, follow the below procedure to configure the settings.

  1. Configure settings for connecting to the network such as setting of the IP address of this machine

    supplementary explanationFor details on configuring the setting, refer to [Configuring network environment settings] .

  2. Configure the basic settings for the WS scan transmission

    supplementary explanationFor details on configuring the setting, refer to [Configure the basic settings for the WS scan transmission] .

  3. Set the following options according to your environment

    Purpose

    Reference

    WS scan using the discovery proxy

    [Using the proxy server]

    Communicate with the computer using SSL

    [Using SSL communication]

Reference

Configure the basic settings for the WS scan transmission

Enable scanning using the Web service. In addition, configure settings used to detect this machine using the Web service, information for this machine as a scanner, and the method to connect to this machine.

  1. In the administrator mode, select [Network] - [DPWS Settings] - [DPWS Common Settings], then configure the following settings.

    Settings

    Description

    [Friendly Name]

    Enter the name of this machine to be displayed when being searched using the Web service from the computer (using up to 62 characters).

    Use a name that helps you easily identify this machine.

    [Publication Service]

    When using this machine in one of the following environments, select [Enable].

    • Environment where NetBIOS is disabled on Windows computer

    • Environment constructed so that only communications using IPv6 are allowed

    Up to 512 destinations can be detected in Publication Service (including detection counts by NetBIOS).

    [Enable] is specified by default.

  2. In the administrator mode, select [Network] - [DPWS Settings] - [Scanner Settings], then configure the following settings.

    Settings

    Description

    [Scan Function]

    Select [ON] to use the WS scan transmission function.

    [OFF] is specified by default.

    [Scanner Name]

    Enter the name of this machine when using it as the WS scanner (using up to 63 characters).

    [Scanner Location]

    Enter a scanner location if necessary (using up to 63 characters).

    [Scanner Information]

    Enter scanner information if necessary (using up to 63 characters).

    [Connection Timeout]

    Change the time-out time to limit a communication with the computer if necessary.

    [120] sec. is specified by default.

Using the proxy server

Configure settings for scanning through this machine in the environment where the multicast communication is restricted using the discovery proxy defined by WS-Discovery. Configure the setting if your environment requires the discovery proxy server.

In normal circumstances, to perform scan transmission through this machine using the Web service, the computer must be connected at a location where multicast communication is available for this machine. However, installing the discovery proxy server at a location where unicast communication is available for this machine enables it to perform scan transmission.

In the administrator mode, select [Network] - [DPWS Settings] - [DPWS Extension Settings], then configure the following settings.

Settings

Description

[Enable Proxy]

Select [ON] to use the discovery proxy.

[OFF] is specified by default.

[Proxy1] to [Proxy3]

Register the discovery proxy server used on this machine.

[Proxy Server Address]

Enter the discovery proxy server address.

Use one of the following formats.

  • Example of host name entry: "host.example.com"

  • Example of IP address (IPv4) entry: "192.168.1.1"

  • Example of IP address (IPv6) entry: "fe80::220:6bff:fe10:2f16"

[File Path]

Enter the service name at the path of the URL where the WS-Discovery service is published in the discovery proxy server (using up to 255 characters).

[Enable SSL]

When using SSL to encrypt a communication with the discovery proxy server, select [ON].

[OFF] is specified by default.

[Proxy Server Port Number]

If necessary, change the port number of the discovery proxy server.

In normal circumstances, you can use the original port number.

When [Enable SSL] is set to [OFF], [80] is specified by default.

When [Enable SSL] is set to [ON], [443] is specified by default.

Using SSL communication

Communication between this machine and the computer is encrypted with SSL.

To encrypt SSL communication between this machine and the computer, you must set the bidirectional SSL communication between them. Before starting this procedure, confirm the following.

  • Name resolution must have been performed in the DNS server.

  • If the certificate of this machine is not the one issued by the Certificate Authority (CA), you must register the certificate of this machine in [Trusted Root Certification Authorities] of the computer.

  • Create a certificate in the computer side in advance, and associate it with the TCP/IP communication port (default port number: 5358).

Tips
  • In Windows 8.1/10, a communication using the Web service cannot be encrypted using SSL.

To make SSL communications, enable SSL. In addition, specify how to verify the certificate.

In the administrator mode, select [Network] - [DPWS Settings] - [DPWS Common Settings], then configure the following settings.

Settings

Description

[SSL Setting]

Select [ON] to make SSL communications.

This item is displayed when the device certificate is installed on this machine and SSL communication is enabled by selecting [Security] - [PKI Settings] - [SSL Setting] - [Mode using SSL/TLS] in Administrator mode.

[OFF] is specified by default.

[Certificate Verification Level Settings]

To verify the certificate, select items to be verified.

If you select [Confirm] at each item, the certificate is verified for each item.

[Validity Period]

Confirm whether the certificate is still valid.

[Confirm] is specified by default.

[Key Usage]

Confirm whether the certificate is used according to the intended purpose approved by the certificate issuer.

[Do Not Confirm] is specified by default.

[Chain]

Confirm whether there is a problem in the certificate chain (certificate path).

The chain is validated by referencing the external certificates managed on this machine.

[Do Not Confirm] is specified by default.

[Expiration Date Confirmation]

Confirm whether the certificate has expired.

Confirm for expiration of the certificate in the following order.

  • OCSP (Online Certificate Status Protocol) service

  • CRL (Certificate Revocation List)

[Do Not Confirm] is specified by default.

Reference
  • In the administrator mode, select [Security] - [Certificate Verification Settings], then configure whether to verify the certificate. The certificate is verified by default. For details, refer to [Verifying a certificate for peer] .