Kerberos Authentication Encryption Setting

You can specify encrypted transmission between the machine and the key distribution center (KDC) server when Kerberos authentication is enabled.

Using Kerberos authentication with Windows or LDAP authentication, LDAP search, etc., ensures safe communication.

The supported encryption algorithm differs depending on the type of KDC server. Select the algorithm that suits your environment.

KDC server	Supported encryption algorithms
Windows Server 2008	AES256-CTS-HMAC-SHA1-96 AES128-CTS-HMAC-SHA1-96 RC4-HMAC (ARCFOUR-HMAC-MD5) DES-CBC-MD5
Windows Server 2008 R2/2012/2012 R2/2016/2019	AES256-CTS-HMAC-SHA1-96 AES128-CTS-HMAC-SHA1-96 RC4-HMAC (ARCFOUR-HMAC-MD5) DES-CBC-MD5^*
Heimdal	AES256-CTS-HMAC-SHA1-96 AES128-CTS-HMAC-SHA1-96 DES3-CBC-SHA1 RC4-HMAC (ARCFOUR-HMAC-MD5) DES-CBC-MD5

* To use Kerberos authentication, enable it in the operating system settings.

You can specify the Kerberos authentication settings using a web browser from networked computers. (We use Web Image Monitor installed on this machine.)

Open a web browser from a networked computer, and then log in to Web Image Monitor as the machine administrator.

For details on how to log in, see Administrator Login Method.

Point to [Device Management], and then click [Configuration].

Click [Kerberos Authentication] under "Device Settings".

Select the encryption algorithm you want to enable.

Be sure to select one or more encryption algorithm.

Click [OK].

Log out.

For details about logging out, see Administrator Logout Method.