User Authentication Management (Windows Authentication)
Configuration > Device Settings >
User Authentication Management > User Authentication Management (Windows Authentication)
Use this page to make settings for Windows Authentication.
Note
- To use Windows Authentication, the device and domain controller must be connected to the same network.
Printer Job Authentication
Make settings for processing printer jobs under each authentication method.
Note
- The setting made here is for Basic Authentication, Windows Authentication, LDAP Authentication, and Integration Server Authentication.
Printer Job Authentication
Select whether to print a job if the printer driver sending the job contains no authentication information (i.e. no user name or password).
Entire
The job is not printed if it has no authentication information.
Simple (All)
The job is printed even if it has no authentication information.
Simple (Limitation)
Authentication-based print is determined by settings made under the following: [Limitation Range (IPv4)], [Limitation Range (IPv6)], [Parallel Interface (Simple)], and [USB (Simple)].
Limitation Range (IPv4)
Enter a range for limiting unauthenticated print jobs from IPv4 addresses.
You can set up to five ranges.
Any job sent from an IPv4 address within the range entered here is printed, regardless of whether or not it is authenticated.
Any unauthenticated job sent from an IPv4 address outside the entered range is not printed.
Note
- This setting is only possible if [Printer Job Authentication] is set to "Simple (Limitation)".
Limitation Range (IPv6)
Enter a range for limiting unauthenticated print jobs from IPv6 addresses.
Enter the range using a combination of start and end addresses, or a combination of base address and mask.
You can set up to five ranges.
Any job sent from an IPv6 address within the range entered here is printed, regardless of whether or not it is authenticated.
Any unauthenticated job sent from an IPv6 address outside the entered range is not printed.
Note
- Use one of the following procedures to specify the range:
- Select [Range], and then enter the start and end addresses.
- Select [Mask], enter the base address, and then enter the mask between 1 and 128 in the [Mask Length].
- This setting is only possible if [Printer Job Authentication] is set to "Simple (Limitation)".
Parallel Interface (Simple)
Select whether or not to apply authentication-based print to jobs sent using the parallel interface.
"Apply": unauthenticated jobs are not printed.
"Do not Apply": unauthenticated jobs are printed.
Note
- This setting is only possible if [Printer Job Authentication] is set to "Simple (Limitation)".
USB (Simple)
Select whether or not to apply authentication-based print to jobs sent using the USB interface.
"Apply": unauthenticated jobs are not printed.
"Do not Apply": unauthenticated jobs are printed.
Note
- This setting is only possible if [Printer Job Authentication] is set to "Simple (Limitation)".
Windows Authentication Settings
SSL
Select whether to apply SSL encryption to information entered for user authentication.
Note
- To apply SSL encryption, a device certificate must be installed in the device.
Kerberos Authentication
Select whether or not to apply Kerberos authentication.
If you select "On": in [Realm Name], specify the Kerberos Realm for user authentication.
If you select "Off": in [Domain Name], specify the domain name for user authentication.
Domain Name
Specify the target domain of User Authentication using either an FQDN (Fully Qualified Domain Name) or NetBIOS name.
Use up to 63 alphanumeric characters for an FQDN.
Use up to 15 characters for a NetBIOS name.
For example, to specify the domain name "aaa.bbb.com", enter "aaa.bbb.com" as the FQDN (no omission), or enter "aaa" as the NetBIOS name (up to the first dot).
Note
- The following characters cannot be used in NetBIOS names:
" * + , / : ; < > = ? [ \ ] | space - This item is available only if [Kerberos Authentication] is set to "Off".
Realm Name
Specify the Kerberos realm for user authentication.
Note
- The realm name must be preset on the [Configuration] - [Device Settings] - [Program/Change Realm] page.
- This setting is available only if [Kerberos Authentication] is set to "On".
Group Settings for Windows Authentication
Select whether to perform user authentication for a group belonging to the defined domain, before it can use device functions. Settings made for the group are applied to all users belonging to it. Up to ten groups can be registered.
Note
- Users not belonging to the registered groups cannot use the device. However, these users are permitted to print jobs if [Simple (All)] is selected for [Printer Job Authentication].
Default Group (Group 1) Name
Displays the default group belonging to the domain specified in [Domain Name].
Select the function(s) for which User Authentication is required in the [Available Function] area below.
Group 2 Name to Group 10 Name
Enter the name of the group defined with global scope in the domain specified in [Domain Name], using up to 64 characters.
Group names are case sensitive.
For each group, select the function(s) for which User Authentication is required in the [Available Function] area below.
Available Function
Select the function(s) for which User Authentication is required:
Copier: Black & White
Select whether User Authentication is required for black and white copying.
Printer: Black & White
Select whether User Authentication is required for black and white printing.
Other Function(s): Document Server
Select whether User Authentication is required for Document Server operations.
Other Function(s): Fax
Select whether User Authentication is required for fax functions.
Other Function(s): Scanner
Select whether User Authentication is required for scanner functions.
Buttons
[Refresh]
Click to update the currently displayed information.
Note
- Before making the settings, click [Refresh] to obtain the machine's current status.
[OK]
Click to apply the settings.
[Cancel]
Click to cancel the settings.