Change the password of the user who is logged in through user authentication.
Change the E-mail address of the user who is logged in through user authentication.
This option is available when a user's change is permitted by the administrator.
Register or delete the biometric authentication information or IC card authentication information of the user who is logged in through user authentication.
Tap [Edit], then register authentication information. To delete authentication information, tap [Delete].
You can specify this option when you install the Authentication Unit and you are allowed to change the setting by the administrator.
When user authentication and account track are both employed, specify whether to synchronize user authentication and account track setting for the login user.
Settings | Description |
---|---|
[Synchronize]/[Do Not Synchronize] | Select whether to synchronize user authentication and account track setting. If you select [Synchronize] and login by using the user name and password that are used for user authentication, you are also allowed to login to the account to which you belong. |
[Account Name] | When you have selected [Synchronize], select the account to which you belong. |
You can specify this option when you are allowed by the administrator to select whether to synchronize user authentication and account track setting.
Limit the access to destinations for each user.
Settings | Description |
---|---|
[Apply Levels/Groups to Destinations] | To limit access to a destination by users, assign a permissible access level or reference allowed group to the destination. After selecting a destination from [Address Book], [Group] or [Program], tap [Apply Level] or [Apply Group], then assign an access allowed level or reference allowed group to the destination. |
You can specify [Apply Levels/Groups to Destinations] within the access allowed level for the respective users. For details, contact your administrator.
To specify a reference allowed group, the administrator must register the group in advance. For details, contact your administrator.
How to configure the setting for limiting the access to destinations for each user is explained using Web Connection. For details, refer to Here.
Configure the general settings for user authentication.
Settings | Description | |
---|---|---|
[Authenticate]/[OFF] | Specify whether to implement user authentication. [OFF] is specified by default. | |
[Authentication Method] | Select a user authentication method. | |
[ON (MFP)] | The authentication function of this machine is used for user authentication. This authentication method only allows users registered on this machine to use it. [ON (MFP)] is specified by default. | |
[External Server Authentication] | Interacts with the authentication server used for user authentication in the operating environment. This authentication method only allows users registered on the authentication server to use this machine. Register the authentication server beforehand from [Administrator Settings] - [User Authentication/Account Track] - [External Server Settings]. | |
[Main + External Server] | Select this option to enable login using the authentication function of the MFP in case a trouble occurs on the external authentication server. | |
[Overwrite User Info] | Configure this option if [External Server Authentication] or [Main + External Server] is selected with [General Settings]. When the external server authentication is used, authenticated user information is also managed on this machine. If the number of users who have executed the external server authentication reaches the maximum number of users this machine can manage, authentication of any new users will not be permitted. Select whether to allow the user to overwrite registered user information for that case. If you select [Allow], the oldest authenticated user information is erased and the new user is registered. [Restrict] is specified by default. | |
[Default Authentication Method] | Select your preferred authentication method if [Main + External Server] is selected in [General Settings]. [External Server Authentication] is specified by default. |
Specify whether to permit users other than the registered in an environment where user authentication is employed. Any user who is going to use this machine without performing authentication operation is called a "public user".
When permitting public users to use this machine, select the login method.
Settings | Description |
---|---|
[Restrict] | Usage of this machine by public users is prohibited. [Restrict] is specified by default. |
[ON (With Login)] | Permits that public users use this machine. When a public user uses this machine, tap [Public User] on the Login screen to log in to this machine. |
[ON (Without Login)] | Permits that public users use this machine. A public user can use this machine without logging in to this machine. Using this option eliminates the login operations, providing advantages in an environment with a large number of public users. |
Specify whether to request switching of the user by displaying the login screen when a public user attempts to use any restricted function.
For example, if color scan is restricted for public users, the Login screen appears when a public user attempts a color scan operation. In this case, the user can log in to this machine as another user for whom color scan is allowed, and use the color scan function.
[Do not request] (not request) is specified by default.
Specify whether account tracking should be implemented to manage users by account.
[OFF] is specified by default.
When you have selected [ON] for [Account Track], select the account tracking method.
Settings | Description |
---|---|
[Account Name & Password] | Enter the account name and password to log in. When cusing user authentication and account track in combination, the setting cannot be changed from [Account Name & Password]. [Account Name & Password] is specified by default. |
[Password Only] | Enter only the password to log in. |
When using user authentication and account track in conjunction, specify whether to synchronize user authentication and account track.
Settings | Description |
---|---|
[Synchronize] | Select this option when users and accounts are in a one-on-one relation. When registering a user, just specify the department of a user, and login as the user also results in login as the associated account. [Synchronize] is specified by default. |
[Do Not Synchronize] | Select this option for users who join more than one account. To log in to this machine, users need to specify an account after entering the user name. |
[Synchronize by User] | Have users select whether or not to synchronize user authentication and account track. |
You can set a maximum for the number copies each user can print out. Here, select an operation to take place when the maximum allowance is exceeded.
Settings | Description |
---|---|
[Skip Job] | Stops the running job, and then starts the next job. [Skip Job] is specified by default. |
[Stop Job] | Stops all jobs. |
To restart a suspended job, reset the counter.
If user authentication and account track are employed, up to 1,000 users and accounts can be registered. Specify the number of counters to be assigned for users.
[500] is specified by default.
Change the retention time for a Kerberos authentication ticket if Active Directory is used as an authentication server.
[600] minutes is specified by default.
Configure settings for authentication by the LDAP server using the card ID registered on authentication cards in an environment with IC card-based user authentication implemented by connecting an Authentication Unit (IC card type).
You can set this option by selecting [External Server Authentication] or [Main + External Server] in [Administrator Settings] - [User Authentication/Account Track] - [General Settings] - [User Authentication] - [Authentication Method].
Settings | Description | |
---|---|---|
[ON]/[OFF] | Specify whether to enable authentication by the LDAP server using the card ID registered on authentication cards. [OFF] is specified by default. | |
[Setting Up LDAP] | Register the LDAP server to be used for authenticating the user ID of the IC card. Tap [Check Connection] to try connecting to the LDAP server using the entered information and check if the iformation registered is correct. Tap [Reset All Settings] to reset all the information entered. | |
[User Name Acquisition] | Select the method for obtaining the user name for logging in to this machine.
[Use Card ID] is specified by default. | |
[Timeout] | Change the timeout time of communication with the LDAP server if necessary. [60 sec.] is specified by default. | |
[Search Attributes] | Enter the attribute for the location where the IC card information is registered (using up to 63 characters). The attribute must start with an alphabet character. [uid] is specified by default. | |
[Server Address] | Enter the LDAP server address. Use one of the following formats.
| |
[Search Base] | Specify the starting point to search for a user to be authenticated (using up to 255 characters). The range from the entered origin point, including the following tree structure, is searched. Example of entry: "cn=users,dc=example,dc=com" | |
[SSL Setting] | Specify whether or not to use SSL for communication with the LDAP server. [OFF] is specified by default. | |
[Port Number] | If necessary, change the LDAP server port number. Normally, you can use the original port number. [389] is specified by default. | |
[Port Number (SSL)] | If necessary, change the SSL communication port number. Normally, you can use the original port number. [636] is specified by default. | |
[Certificate Verification Level Settings] | To validate the certificate during SSL communication, select items to be verified.
| |
[Authentication Type] | Select the authentication method to log in to the LDAP server. Select one appropriate for the authentication method used for your LDAP server.
[Simple] is specified by default. | |
[Referral Setting] | Select whether to use the referral function, if necessary. Make an appropriate choice to fit the LDAP server environment. [ON] is specified by default. | |
[Login Name] | Log in to the LDAP server, and enter the login name to search for a user (using up to 64 characters). | |
[Password] | Enter the password of the user name you entered into [Login Name] (using up to 64 characters). | |
[Domain Name] | Enter the domain name to log in to the LDAP server (using up to 64 characters). If [GSS-SPNEGO] is selected for [Authentication Type], enter the domain name of Active Directory. | |
[LDAP-IC Card Authentication Setting] | Select the name of the external server to be used as authentication information saved in this machine The authentication information is saved on this machine when the LDAP-IC card authentication is successfully completed. This authentication information includes the user name and the external server name. As authentication information to be saved on this machine, the name of external server registered on this machine can be registered. |
Select whether to display the [User Name List] icon in the login screen.
Selecting [ON] enables you to select the login user from the list of user names registered on this machine.
[OFF] is specified by default.
Specify the default function permission applied to users when an external authentication server is used.
Functions available to users who log in to this machine for the first time are limited according to the settings configured here.
The default function permission can also be specified with Web Connection. For details, refer to Here.
Specify the operations of the ID & Print function.
Settings | Description |
---|---|
[ID & Print] | Select whether to handle jobs normally printed from the printer driver as ID & Print jobs.
[OFF] is specified by default. |
[Public User] | Select the process performed when a public user job or a job without user authentication information is received.
[Print Immediately] is specified by default. |
When using the ID & Print function on an Authentication Unit, select whether to request user authentication for printing each job or to allow the user to print all jobs once the user is authenticated.
Settings | Description |
---|---|
[Print All Jobs] | One successful authentication session allows the user to print all jobs. [Print All Jobs] is specified by default. |
[Print Each Job] | One successful authentication session allows the user to print a single job. |
Select the default value for the operation that is performed after the authentication process is carried out in the login screen.
Settings | Description |
---|---|
[Print & Access Basic Screen] | The ID & Print job is executed and the user logs in this machine. [Print & Access Basic Screen] is specified by default. |
[Access] | The user logs in to this machine. The ID & Print job is not executed. |
Register the user information. In addition, configure function permission and the upper limit of the number of printable sheets for each user.
Select a number and tap [Edit], and the user registration or editing screen is displayed.
To limit the public user functions, tap [] on the number selection screen. Then, select [Public] and tap [Edit].
Settings | Description |
---|---|
[User Name] | Enter the user name to log in to the MFP (using up to 64 characters). You cannot configure the same user name as an the one which has already been assigned to a registered user. Once a user name is registered, it cannot be changed. |
[Password] | Enter the password to log in to this machine (using up to 64 characters). |
[E-Mail Address] | Enter the user's E-mail address (using up to 320 characters) if necessary. If the E-mail address is registered, the Scan to Me function is available to the user. |
[Max. Allowance Set] | Set the maximum number of pages that the user can print.
Tap [All Users] to apply the maximum setting to all users. [No Limit] is specified by default. |
[Register Auth. Info.] | If an Authentication Unit is used to adopt the user authentication, tap [Edit] to register authentication information. To delete authentication information, tap [Delete]. |
[Function Permission] | Restrict functions available to users. Specify whether to restrict the following functions, respectively:
Tap [All Users] to apply the Function Permission to all users. |
[Pause] | Disable registered users temporarily if necessary. If [Stop Job] is set, the users cannot log in to the MFP any longer. Tap [All Users] to temporarily suspend the use of this machine by any user. [Continue Job] is specified by default. |
[Custom Pattern Function] | Specify the display pattern of function keys in the Copy, Scan/Fax and User Box modes for each user.
You can set this option by selecting [Allow] in [Administrator Settings] - [System Settings] - [Custom Display Settings] - [User/Admin Function Permissions]. [Disable] is specified by default. |
[Synchronize Account Track] | Specify whether to synchronize user authentication and account track when both user authentication and account track are implemented. Tap [All Users] to apply the setting for synchronizing user authentication and account track to all users. You can set this option by selecting [Synchronize by User] in [Administrator Settings] - [User Authentication/Account Track] - [General Settings] - [Synchronize User Authentication & Account Track]. |
[Account Name] | If user authentication and account track are implemented and if they are synchronized with each other, select the account to which the user belongs. Account names must be registered in advance. |
To change the registered user information, select the registration number and tap [Edit].
To delete a registered user, select the registration number and tap [Delete].
When using user authentication and account track in combination, register account information beforehand in [Administrator Settings] - [User Authentication/Account Track] - [Account Track Settings] - [Account Track Registration].
Information on users authenticated by the external authentication server is also registered. You can change the settings of [Max. Allowance Set], [Function Permission], [Custom Pattern Function], [Synchronize Account Track], and [Account Name] for users authenticated by the external authentication server if necessary.
Register the user information. In addition, configure function permission and the upper limit of the number of printable sheets for each user.
Select a number and tap [Edit], and the user registration or editing screen is displayed.
To limit the public user functions, tap [] on the number selection screen. Then, select [Public] and tap [Edit].
Settings | Description |
---|---|
[User Name] | Enter the user name to log in to the MFP (using up to 64 characters). You cannot configure the same user name as an the one which has already been assigned to a registered user. Once a user name is registered, it cannot be changed. |
[Password] | Enter the password to log in to this machine (using up to 64 characters). |
[E-Mail Address] | Enter the user's E-mail address (using up to 320 characters) if necessary. If the E-mail address is registered, the Scan to Me function is available to the user. |
[Max. Allowance Set] | Set the maximum number of pages that the user can print.
Tap [All Users] to apply the maximum setting to all users. [No Limit] is specified by default. |
[Register Auth. Info.] | If an Authentication Unit is used to adopt the user authentication, tap [Edit] to register authentication information. To delete authentication information, tap [Delete]. |
[Function Permission] | Restrict functions available to users. Specify whether to restrict the following functions, respectively:
Tap [All Users] to apply the Function Permission to all users. |
[Pause] | Disable registered users temporarily if necessary. If [Stop Job] is set, the users cannot log in to the MFP any longer. Tap [All Users] to temporarily suspend the use of this machine by any user. [Continue Job] is specified by default. |
[Custom Pattern Function] | Specify the display pattern of function keys in the Copy, Scan/Fax and User Box modes for each user.
You can set this option by selecting [Allow] in [Administrator Settings] - [System Settings] - [Custom Display Settings] - [User/Admin Function Permissions]. [Disable] is specified by default. |
[Synchronize Account Track] | Specify whether to synchronize user authentication and account track when both user authentication and account track are implemented. Tap [All Users] to apply the setting for synchronizing user authentication and account track to all users. You can set this option by selecting [Synchronize by User] in [Administrator Settings] - [User Authentication/Account Track] - [General Settings] - [Synchronize User Authentication & Account Track]. |
[Account Name] | If user authentication and account track are implemented and if they are synchronized with each other, select the account to which the user belongs. Account names must be registered in advance. |
To change the registered user information, select the registration number and tap [Edit].
To delete a registered user, select the registration number and tap [Delete].
When using user authentication and account track in combination, register account information beforehand in [Administrator Settings] - [User Authentication/Account Track] - [Account Track Settings] - [Account Track Registration].
Information on users authenticated by the external authentication server is also registered. You can change the settings of [Max. Allowance Set], [Function Permission], [Custom Pattern Function], [Synchronize Account Track], and [Account Name] for users authenticated by the external authentication server if necessary.
Use this option to check the number of pages for each user and to reset the counter.
Select the registration number of a user subject to counter checking and tap [Counter Details].
Settings | Description |
---|---|
[Counter Details] | Shows the counter for the selected user. You can check the number of pages used for each function or color. Tap [Eco Info] to display 2-sided printing and page combination by the user and check how effectively toner and paper saving is accomplished. Tap [Clear Counter] to clear the user's counter. |
[Reset All Counters] | Resets counters for all users. |
Register account information. In addition, configure function permission and the maximum allowance on the number of pages printed for each account.
Settings | Description |
---|---|
[Account Name] | Enter the account name used for logging in to this machine (using up to eight characters). |
[Password] | Enter the password to log in to this machine (using up to 64 characters). |
[Max. Allowance Set] | Restricts the number of pages each account can print.
Tap [All Accounts] to apply the maximum setting to all accounts. [No Limit] is specified by default. |
[Function Permission] | Restrict functions available to users. Specify whether to restrict the following functions, respectively:
Tap [All Accounts] to apply function permission setting to all accounts. |
[Pause] | Disable registered accounts temporarily if necessary. If [Stop Job] is set, the users cannot log in to the MFP any longer. Tap [All Accounts] to temporarily suspend the use of this machine by any account. [Continue Job] is specified by default. |
[Custom Pattern Function] | Specify the display pattern of function keys in the Copy, Scan/Fax and User Box modes for each account.
You can set this option by selecting [Allow] in [Administrator Settings] - [System Settings] - [Custom Display Settings] - [User/Admin Function Permissions]. [Disable] is specified by default. |
To change the registered account information, select the registration number and tap [Edit].
To delete a registered account, select the registration number and tap [Delete].
Register account information. In addition, configure function permission and the maximum allowance on the number of pages printed for each account.
Settings | Description |
---|---|
[Account Name] | Enter the account name used for logging in to this machine (using up to eight characters). |
[Password] | Enter the password to log in to this machine (using up to 64 characters). |
[Max. Allowance Set] | Restricts the number of pages each account can print.
Tap [All Accounts] to apply the maximum setting to all accounts. [No Limit] is specified by default. |
[Function Permission] | Restrict functions available to users. Specify whether to restrict the following functions, respectively:
Tap [All Accounts] to apply function permission setting to all accounts. |
[Pause] | Disable registered accounts temporarily if necessary. If [Stop Job] is set, the users cannot log in to the MFP any longer. Tap [All Accounts] to temporarily suspend the use of this machine by any account. [Continue Job] is specified by default. |
[Custom Pattern Function] | Specify the display pattern of function keys in the Copy, Scan/Fax and User Box modes for each account.
You can set this option by selecting [Allow] in [Administrator Settings] - [System Settings] - [Custom Display Settings] - [User/Admin Function Permissions]. [Disable] is specified by default. |
To change the registered account information, select the registration number and tap [Edit].
To delete a registered account, select the registration number and tap [Delete].
You can check the number of pages used for each account and reset the counter.
Select the registration number of an account subject to counter checking and tap [Counter Details].
Settings | Description |
---|---|
[Counter Details] | Shows the counter for the selected account. You can check the number of pages used for each function or color. Tap [Eco Info] to display 2-sided printing and page combination by the user and check how effectively toner and paper saving is accomplished. Tap [Clear Counter] to clear the account's counter. |
[Reset All Counters] | Resets counters for all accounts. |
Select whether to allow users to start print jobs without authentication information (jobs for which the print command is executed even though user authentication or account track is not correctly configured in the printer driver).
Settings | Description |
---|---|
[Allow] | Only black and white printing is allowed. Print jobs are counted as public user jobs. |
[Restrict] | Printing is restricted. Canceling [Restrict] allows everybody to perform printing. Select [Restrict] to control user access and ensure security. [Restrict] is specified by default. |
A print counter list is printed. You can print a list if user authentication or account track has been adopted.
In [Print Item], specify whether to print all information or only to print typed information. Change print settings as required, then tap [Start] to start printing.
When employing external server authentication, register the authentication server. When registering multiple authentication servers, register the one you want to normally use as the default value.
Select a number for registering the server and tap [New].
Settings | Description | |
---|---|---|
[Server Name] | Enter the name of your authentication server (using up to 32 characters). Assign an intuitive name to the authentication server to be registered. | |
[Server Type] | Select the type of the authentication server and set required information. The items you are able to configure will vary depending on the selected server type. | |
[Active Directory] | Register server information when Active Directory is used as the authentication server.
| |
[NTLM v1] | Register server information when NTLM v1 is used as the authentication server.
| |
[NTLM v2] | Register server information when NTLM v2 is used as the authentication server.
| |
[NDS over IPX] | Register server information when NDS over IPX is used as the authentication server.
You can set this option by selecting [ON] in [Administrator Settings] - [Network Settings] - [NetWare Settings] - [IPX Settings]. | |
[NDS over TCP/IP] | Register server information when NDS over TCP/IP is used as the authentication server.
| |
[LDAP] | Register server information when LDAP is used as the authentication server.
|
To change the registered authentication server information, select the registration number and tap [Edit].
To delete the registered authentication server, select the registration number and tap [Delete].
When registering multiple authentication servers, select the authentication server that is normally used and then tap [Set as Default] to register it as the default.
Select [Enable] for [Temporarily Save Authentication Info.] to save the authentication information in the machine temporarily in case the authentication server gets down (Default: [Invalid]). If necessary, use [Reconnection Settings] to change the time to reconnect to the authentication server.
[Reconnect for every login]: Connects to the authentication server at the time authentication is carried out on this machine. If the authentication server is in the shutdown state at the time authentication is carried out on this machine, first confirm that the authentication server is down, and use the temporarily saved authentication information to log in to this machine.
[Set Reconnect Interval]: Connects to the authentication server at the time specified in [Reconnection Time], and check the status of the authentication server. If the authentication server is in the shutdown state, use the authentication information temporarily saved in the main unit to log in.
Limit the access to destinations for each user.
Restrict destinations that can be browsed by users by combining [Apply Levels/Groups to Destinations] and [Apply Levels/ Groups to Users].
For details on the restriction of browsing destinations, refer to Here.
Settings | Description | |
---|---|---|
[Create Group] | Register a reference allowed group. In a reference allowed group, destinations and users can be registered, and such users can reference destinations registered in the same group.
| |
[Group Name] | Enter the name of the group (using up to 24 characters). | |
[Access Allowed Level] | To manage the address book by combining the access allowed level and reference allowed group, select an access allowed level of the reference allowed group. [Level 0] is specified by default. | |
[Apply Levels/Groups to Destinations] | Select a registered destination from [Address Book], [Group], or [Program], and then configure either the reference allowed group or access allowed level. | |
[Apply Group] | Assign a reference allowed group to the registered destination you have selected. Before you can assign a reference allowed group, you need to register the reference allowed group in [Create Group]. | |
[Apply Level] | Assign an access allowed level to the registered destination you have selected. [Level 0] is specified by default. | |
[Apply Levels/Groups to Users] | Select a registered user or public user and specify a reference allowed group or access allowed level. You can combine reference allowed group and access allowed level settings. | |
[Apply Group] | Assign a reference allowed group to the registered user you have selected. Before you can assign a reference allowed group, you need to register the reference allowed group in [Create Group]. | |
[Apply Level] | Assign an access allowed level to the registered user you have selected. [Level 0] is specified by default. |
Configure the login method for IC card authentication or biometric authentication as well as operations to take place upon authentication.
Settings | Description | |
---|---|---|
[Card Authentication] | This item is available when the optional Authentication Unit (IC card type) is installed. | |
[Card Detail Settings] | Tap this button to change setting information of the loadable driver for the registered IC cards on the Web browser of this machine. For details on the setting procedure, refer to Here. | |
[Operation Settings] | Select how to log in to this machine.
[Card Authentication] is specified by default. | |
[Authentication Card ID Number] | Specify whether to notify the counter, which collects the use status of this machine, of the authentication card ID. [No Notification] is specified by default. | |
[Bio Authentication] | This item is available when the optional Authentication Unit (biometric type) is installed. | |
[Beep Sound] | Select whether to give a "blip" sound when the finger vein pattern is scanned successfully. [ON] is specified by default. | |
[Operation Settings] | Select how to log in to this machine.
[1-to-many authentication] is specified by default. |
Configure the login method for IC card authentication or biometric authentication as well as operations to take place upon authentication.
Settings | Description | |
---|---|---|
[Card Authentication] | This item is available when the optional Authentication Unit (IC card type) is installed. | |
[Card Detail Settings] | Tap this button to change setting information of the loadable driver for the registered IC cards on the Web browser of this machine. For details on the setting procedure, refer to Here. | |
[Operation Settings] | Select how to log in to this machine.
[Card Authentication] is specified by default. | |
[Authentication Card ID Number] | Specify whether to notify the counter, which collects the use status of this machine, of the authentication card ID. [No Notification] is specified by default. | |
[Bio Authentication] | This item is available when the optional Authentication Unit (biometric type) is installed. | |
[Beep Sound] | Select whether to give a "blip" sound when the finger vein pattern is scanned successfully. [ON] is specified by default. | |
[Operation Settings] | Select how to log in to this machine.
[1-to-many authentication] is specified by default. |
Specify whether to log out automatically when scanning of the original finishes.
[Do not log off] is specified by default.
Specify whether to display the logout confirmation screen on the Touch Panel when you log out of the login mode (Recipient User or Public User) entered by tapping [Access].
[ON] is specified by default.
Specify whether to allow acquisition of counter information managed on this machine when a remote diagnosis system is used.
[Restrict] is specified by default.
Select whether to enable the Scan to Home function.
This item can be configured when Active Directory is used as an authentication server.
[Disable] is specified by default.
Specify whether to limit the transmission destinations. The authentication information of the users who have logged in to this machine is used for accessing a shared folder on the network.
If [Scan to Authorized Folder Settings] is set to [Limit], the following restrictions will be applied:
Addresses cannot be specified by direct input for scan transmission.
Users cannot save files to User Boxes.
Users cannot send files from User Boxes.
Users cannot use annotation User Boxes.
Users cannot select addresses from transmission log.
Users cannot use the URL notification function.
[Do Not Limit] is specified by default.
Specify whether to allow authentication based only on the user name (quick authentication for printing) when the printer driver is used for printing in an environment where user authentication is employed. When external server authentication is implemented, register the authentication server for quick authentication for printing.
Settings | Description | |
---|---|---|
[Authentication Setting] | Specify whether to allow authentication based only on the user name (quick authentication for printing) when the printer driver is used for printing in an environment where user authentication is employed. [Restrict] is specified by default. | |
[Register Authentication Server] | When external server authentication is implemented, register the LDAP server to check user names. Tap [Check Connection] to try connecting to the LDAP server using the entered information and check if the information registered is correct. Tap [Reset All Settings] to reset all the information entered, | |
[External Server Authentication] | Select the external server name to be used as a part of user information when authentication using the LDAP server is successfully completed from the external servers registered on this machine. The external server selected here is used for the following purposes.
| |
[Timeout] | Change the timeout time of communication with the LDAP server if necessary. [60 sec.] is specified by default. | |
[Search Attributes] | Enter the search attribute to be used for search of a user using the LDAP server (using up to 63 characters). The attribute must start with an alphabet character. [uid] is specified by default. | |
[Server Address] | Enter the LDAP server address. Use one of the following formats.
| |
[Search Base] | Specify the starting point to search for a user to be authenticated (using up to 255 characters). The range from the entered origin point, including the following tree structure, is searched. Example of entry: "cn=users,dc=example,dc=com" | |
[SSL Setting] | Specify whether or not to use SSL for communication with the LDAP server. [OFF] is specified by default. | |
[Port Number] | If necessary, change the LDAP server port number. Normally, you can use the original port number. [389] is specified by default. | |
[Port Number (SSL)] | If necessary, change the SSL communication port number. Normally, you can use the original port number. [636] is specified by default. | |
[Certificate Verification Level Settings] | To validate the certificate during SSL communication, select items to be verified.
| |
[Authentication Type] | Select the authentication method to log in to the LDAP server. Select one appropriate for the authentication method used for your LDAP server.
[Simple] is specified by default. | |
[Referral Setting] | Select whether to use the referral function, if necessary. Make an appropriate choice to fit the LDAP server environment. [ON] is specified by default. | |
[Login Name] | Log in to the LDAP server, and enter the login name to search for a user (using up to 64 characters). | |
[Password] | Enter the password of the user name you entered into [Login Name] (using up to 64 characters). | |
[Domain Name] | Enter the domain name to log in to the LDAP server (using up to 64 characters). If [GSS-SPNEGO] is selected for [Authentication Type], enter the domain name of Active Directory. |
Join the machine to the Active Directory domain and establish the single sign-on environment.
You can set this option by selecting [External Server Authentication] or [Main + External Server] in [Administrator Settings] - [User Authentication/Account Track] - [General Settings] - [User Authentication] - [Authentication Method].
Settings | Description | |
---|---|---|
[Domain Login Setting] | Configure settings to join services of this machine in a domain. Joining services of this machine in the domain allows the user to use them if authenticated once by Active Directory. | |
[ON]/[OFF] | Select whether to use singe-sign on. Enter the host name, domain name, account name, and password, then tap [OK] to execute domain joining processing. [OFF] is specified by default. | |
[Host Name] | Enter the host name of this machine (using up to 253 characters). Enter the host name you specified in [Administrator Settings] - [Network Settings] - [TCP/IP Settings] - [DNS Host]. | |
[Domain Name] | Enter the domain name of Active Directory (using up to 64 characters). | |
[Account Name] | Enter the administrator's account name of the Active Directory domain (using up to 64 characters). | |
[Password] | Enter the administrator's password of the Active Directory domain (using up to 64 characters). | |
[TX Timeout] | Change the time-out time of domain joining processing if necessary. [30] is specified by default. | |
[Applications and Settings] | Displays a list of services of this machine that join the Active Directory domain. When this machine joins the Active Directory domain, [PRINTER] appears. | |
[Auto Log Out Time] | When the user uses services of this machine in the Active Directory domain, change the time to hold the user's authentication information on this machine. Since the user can reuse authentication information while it is held on this machine, they can use the services of this machine without performing authentication again. [1 Hour] is specified by default. |