User Authentication Management (Windows Authentication)
Device Management > Configuration > Device Settings > User Authentication Management > User Authentication Management (Windows Authentication)

Use this page to configure settings for Windows Authentication.

Note

• To use Windows Authentication, the device and domain controller must be connected to the same network.
• Some items may not appear depending on machine type or configuration.

Printer Job Authentication Settings

Configure settings for processing printer jobs under each authentication method.

Note

• The setting configured here is for User Code Authentication, Basic Authentication, Windows Authentication, and LDAP Authentication.

Printer Job Authentication

Specify whether to print a job if the printer driver sending the job contains no authentication information (i.e. no user name or password).

Limitation Range (IPv4)

Enter a range for limiting unauthenticated print jobs from IPv4 addresses. You can set up to five ranges.
Any job sent from an IPv4 address within the range entered here is printed, regardless of whether or not it is authenticated. Any unauthenticated job sent from an IPv4 address outside the entered range is not printed.

Note

• This setting is only possible if Printer Job Authentication is set to Simple (Limitation).

Limitation Range (IPv6)

Enter a range for limiting unauthenticated print jobs from IPv6 addresses. Enter the range using a combination of start and end addresses, or a combination of base address and mask. You can set up to five ranges.
Any job sent from an IPv6 address within the range entered here is printed, regardless of whether or not it is authenticated. Any unauthenticated job sent from an IPv6 address outside the entered range is not printed.

Note

• Use one of the following procedures to specify the range:
  • Select Range, and then enter the start and end addresses.
  • Select Mask, enter the base address, and then enter the mask between 1 and 128 in the Mask Length.
• This setting is only possible if Printer Job Authentication is set to Simple (Limitation).

Parallel Interface (Simple)

Specify whether or not to apply authentication-based print to jobs sent using the parallel interface.
Apply: unauthenticated jobs are not printed.
Do not Apply: unauthenticated jobs are printed.

Note

• This setting is only possible if Printer Job Authentication is set to Simple (Limitation).

USB (Simple)

Specify whether or not to apply authentication-based print to jobs sent using the USB interface.
Apply: unauthenticated jobs are not printed.
Do not Apply: unauthenticated jobs are printed.

Note

• This setting is only possible if Printer Job Authentication is set to Simple (Limitation).

Windows Authentication Settings

SSL

Specify whether to apply SSL encryption to information entered for user authentication.

Note

• To apply SSL encryption, a device certificate must be installed in the device.

Kerberos Authentication

Specify whether or not to apply Kerberos authentication.
If you select On: in Realm Name, specify the Kerberos Realm for user authentication.
If you select Off: in Domain Name, specify the domain name for user authentication.

Domain Name

Specify the target domain of User Authentication using either an FQDN (Fully Qualified Domain Name) or NetBIOS name.
Use up to 64 alphanumeric characters for an FQDN.
Use up to 15 characters for a NetBIOS name.
For example, to specify the domain name "aaa.bbb.com", enter "aaa.bbb.com" as the FQDN (no omission), or enter "aaa" as the NetBIOS name (up to the first dot).

Note

• The following characters cannot be used in NetBIOS names:
  " * + , / : ; < > = ? [ \ ] | space
• This item is available only if Kerberos Authentication is set to Off.

Realm Name

Specify the Kerberos realm for user authentication.

Note

• The realm name must be preset on the Device Management - Configuration - Device Settings - Kerberos Authentication page.
• This setting is available only if Kerberos Authentication is set to On.

Group Settings for Windows Authentication

For each group defined in the domain, specify the group name, and then select the functions that you want to allow to the group. Settings configured for the group are applied to all users belonging to it. Up to ten groups can be registered.

Note

• Users not belonging to the registered groups cannot use the device. However, these users are permitted to print jobs if Simple (All) is selected for Printer Job Authentication.

Default Group (Group 1) Name

Displays the default group belonging to the domain specified in Domain Name.
In Available Functions, select the check boxes of the functions that you want to allow to users in the group.

Group 2 Name to Group 10 Name

Enter the name of the group defined with global scope in the domain specified in Domain Name, using up to 64 characters. Group names are case sensitive.
In Available Functions for each group, select the functions that you want to allow to users in the group.

Available Functions

Select the check boxes of the functions that you want to allow to the user.

Note

• When a user is first registered to a group, the following settings are displayed by default in Available Functions:
• Some items may not appear depending on machine type or configuration.

Buttons

Refresh

Click to update the currently displayed information.

Note

• Before making the settings, click Refresh to obtain the machine's current status.

OK

Click to apply the settings.

Cancel

Click to cancel the settings.