* Enter the name of the utility key. You can search descriptions of utility keys.

LDAP Settings

To display: [Utility][Administrator Settings][Network Settings][LDAP Settings]

Configure the settings to search for destinations from the LDAP server or Active Directory.

Settings

Description

[Enabling LDAP]

Select whether to use the LDAP server to search for a destination.

Using this function allows you to search for an E-mail address or fax number via the LDAP server when sending the scanned original data.

[OFF] is specified by default.

[Setting Up LDAP]

Register the LDAP server used to search for a destination.

Select an unregistered key, and enter the required information.

For details on settings, refer to the settings of [Setting Up LDAP] shown below.

[Default LDAP Server Setting]

Select the default LDAP server to search for a destination.

When registering multiple LDAP servers, set the frequently used LDAP server as the default.

[Default Search Result Display Setting]

Select whether an E-mail address, fax number, or Internet fax number is given priority to be displayed as the destination search result when searching for destinations from the LDAP server.

To use this function, install the optional Fax Kit in this machine or enable the Internet Fax function.

[E-mail] is specified by default.

Settings of [Setting Up LDAP]

Settings

Description

[LDAP Server Name]

Enter the name of the LDAP server (using up to 32 characters).

Use a name that helps you easily identify the server.

[LDAP Setting]

Configure settings for LDAP search operations.

  • [Max.Search Results]: Change the maximum number of destinations to be displayed as search results, if necessary. [100] is specified by default.

  • [Timeout]: Change the timeout interval for communication with the LDAP server, if required. [60 Second] is specified by default.

  • [Initial Setting for Search Details]: Specify the default LDAP search conditions for each item. [OR] is specified by default.

  • [Change Search Attribute]: Select attributes to be specified when performing the LDAP search. The setting can be switched between [Name] (cn) and [Nickname] (displayName). [Name] is specified by default.

  • [Search]: Select whether to display candidate destinations when entering part of a name. [OFF] is specified by default.

[Server Address]

Enter the LDAP server address.

Use one of the following formats.

  • Example of host name entry: "host.example.com"

  • Example of IP address (IPv4) entry: "192.168.1.1"

  • Example of IP address (IPv6) entry: "fe80::220:6bff:fe10:2f16"

[Search Base]

Specify the starting point to search for a user to be authenticated (using up to 255 characters).

The range from the entered origin point, including the following tree structure, is searched.

Example of entry: "cn=users,dc=example,dc=com"

[SSL Setting]

Specify whether or not to use SSL for communication with the LDAP server.

[OFF] is specified by default.

[Port Number]

If necessary, change the LDAP server port number.

In normal circumstances, you can use the original port number.

[389] is specified by default.

[Port Number (SSL)]

If necessary, change the SSL communication port number.

In normal circumstances, you can use the original port number.

[636] is specified by default.

[Certificate Verification Level Settings]

To validate the certificate during SSL communication, select items to be verified.

  • [Expiration Date]: Confirm whether the certificate is within the validity period. [Confirm] is specified by default.

  • [Key Usage]: Confirm whether the certificate is used according to the intended purpose approved by the certificate issuer. [Do Not Confirm] is specified by default.

  • [Chain]: Confirm whether there is a problem in the certificate chain (certificate path). The chain is validated by referencing the external certificates managed on this machine. [Do Not Confirm] is specified by default.

  • [Expiration Date Confirmation]: Confirm whether the certificate has expired. [Do Not Confirm] is specified by default.

  • [CN]: Confirm whether CN (Common Name) of the certificate matches the server address. [Do Not Confirm] is specified by default.

[Authentication Type]

Select the authentication method to log in to the LDAP server.

Select one appropriate for the authentication method used for your LDAP server.

  • [Anonymous]

  • [Simple]

  • [Digest-MD5]

  • [GSS-SPNEGO]

  • [NTLM v1]

  • [NTLM v2]

[Anonymous] is specified by default.

[Select Server Authentication Method]

Select the LDAP server authentication method.

  • [Use Settings]: Use the settings of [Login Name], [Password], and [Domain Name].

  • [Use User Authentication]: Synchronizes with the user authentication of this machine. Uses the user name and password of the registered user of this machine as [Login Name] and [Password].

  • [Dynamic Authentication]: The system prompts you to enter the user name and password at LDAP searching.

[Use Settings] is specified by default.

[Referral Setting]

Select whether to use the referral function, if necessary.

Make an appropriate choice to fit the LDAP server environment.

[ON] is specified by default.

[Login Name]

Log in to the LDAP server, and enter the login name to search for a user (using up to 64 characters).

[Password]

Enter the password of the user name you entered into [Login Name] (using up to 64 characters).

[Domain Name]

Enter the domain name to log in to the LDAP server (using up to 64 characters).

If [GSS-SPNEGO] is selected for [Authentication Type], enter the domain name of Active Directory.

[Search Attributes Authentication]

Select whether to enable the attribute-based authentication when [Authentication Type] is set to [Simple] and [Select Server Authentication Method] to [Dynamic Authentication].

If enabled, the user does not need to enter all of the DN (Distinguished Name) when performing authentication via the LDAP server.

[No Limit] is specified by default.

[Search Attribute]

Enter the search attribute to be automatically added before the user name (using up to 64 characters).

The attribute must start with an alphabet character.

[uid] is specified by default.

[Check Connection]

Select this option to try connecting to the LDAP server using the entered information and check if the information registered is correct.

This option is displayed when [ON] is selected in [Enabling LDAP].

[Reset All Settings]

Tap this button to reset all the contents you entered.