Restricting available functions by user or account
Employing User Authentication or Account Track enables you to restrict available functions by user or account.
For example, you can set it up so that specific users or accounts can print, but other users or accounts can not print. Configuring settings according to the business requirements of users or accounts provides you with security measures and cost reductions simultaneously.
To use the MFP authentication, set restrictions of functions accessible by users or accounts when registering them.
To use the external authentication server, user information is registered once you execute authentication. To restrict functions accessible by users, edit user information registered on this machine.
To configure settings for each user, select [User Auth/Account Track] - [User Authentication Setting] - [User Registration] - [Edit] - [Function Permission] in the administrator mode.
To configure settings for each account track, select [User Auth/Account Track] - [Account Track Settings] - [Account Track Registration] - [Edit] - [Function Permission] in the administrator mode.
The setting items are as follows.
Functions | Description |
---|---|
[Copy] | Select whether to allow use of the copy function. [Allow] allows black and white copy. [Allow] is specified by default. |
[Scan] | Select whether to allow use of the scan function. [Black Only] allows scan in black and white only. [Full Color/Black] is specified by default. |
[Save to External Memory] | Select whether to allow users to save files on a USB memory. This option is available when saving files in a USB memory device is enabled on this machine. This option is disabled for an account. [Restrict] is specified by default. |
[External Memory Document Scan] | Select whether to allow to scan files from a USB memory device. This option is available when scanning files from a USB memory device is enabled on this machine. This option is disabled for an account. [Restrict] is specified by default. |
[Fax] | Select whether to allow use of the fax and network fax functions. [Black Only] allows black and white transmission only. [Full Color/Black] is specified by default. |
[Print] | Select whether to allow printing of the print function. [Allow] allows black and white printing. [Allow] is specified by default. |
[User Box] | Select whether to allow to use files saved in the User Box. This option is disabled for an account. [Allow] is specified by default. |
[Print Scan/Fax TX] | Select whether to allow to print scan data and fax TX data. [Allow] allows black and white printing. If you select [Restrict], you cannot print transmission data during scan and fax transmissions. In addition, you cannot print transmission data saved in the following User Boxes. However, you can print data saved in a User Box from an external memory.
[Allow] is specified by default. |
[Manual Destination Input] | Select whether to allow direct input of a destination. [Allow Fax Only] allows direct input of a fax number only. This option is disabled for an account. [Allow] is specified by default. |
[Web Browser] | Select whether to allow use of the Web browser function. This function is available when the Web browser function is enabled. When the Web browser function is enabled, [Allow] is specified by default. To allow use of the Web browser function, specify whether to allow the following functions.
Set Web browser function restrictions to each user. They cannot be set to each account track. |
[Biometric/IC Card Information Registration] | Select whether to allow registration of bio authentication information and IC card authentication information. This option is disabled for a public user or account. [Restrict] is specified by default. |
To use [Fax], the optional Fax Kit is required.
You can specify the default function permission setting applied to users who use an external authentication server. For details, refer to [Specifying the default function permission setting when the external server authentication is used] .
When public users' accesses are allowed, you can restrict functions available for public users. For details, refer to [Restricting functions available to public users] .
Specifying the default function permission setting when the external server authentication is used
Specify the default function permission applied to users when an external authentication server is used.
Functions available to users who log in to this machine for the first time are limited according to the settings configured here.
In the administrator mode, select [User Auth/Account Track] - [User Authentication Setting] - [Default Function Permission], then configure the default function permission setting when using an external authentication server.
To use the external authentication server, user information is registered once you execute authentication. To restrict functions accessible by users, edit user information registered on this machine. For details, refer to [Restricting available functions by user or account] .
Restricting functions available to public users
When public users' (unregistered users') accesses are allowed, you can restrict functions available for public users. Also, you can restrict destinations public users can access.
In the administrator mode, select [User Auth/Account Track] - [User Authentication Setting] - [Public User], then configure the following settings.
Settings | Description |
---|---|
[Function Permission] | Restricts functions available to public users if necessary. For details, refer to [Restricting available functions by user or account] . |
[Limiting Access to Destinations] | Restricts destinations public users can access if necessary. For details, refer to [Methods to limit access to destinations] . |
When a public user attempts to use a restricted function, the loin screen appears to switch the user. For example, if color scan is restricted for public users, the Login screen appears when a public user attempts a color scan operation. In this case, the user can log in to this machine as another user for whom color scan is allowed, and use the color scan function. In the administrator mode, select [User Auth/Account Track] - [Prohibited Function Login Setting], then set [Prohibited Function Login Setting] to [Request].