This setting enables or disables user authentication
and specifies the authentication method.
When the user authentication is enabled, each user of the
machine is registered. When a user logs in, the separate authentication
settings apply to the user. This function allows greater control
of security and cost management than that on previous machines.
Even if user information is not stored on the machine, you
can directly enter the user information stored in an LDAP server
to log in the machine if necessary. For more information see "
Users stored as factory default".
User Authentication
When [User Authentication] is enabled, the authentication screen appears
before an operation is carried out in any mode.
Log in as an already registered user.
After logging in, you can move freely through the modes.
Set the location where user authentication is to be
enabled.
Login Locally: User authentication is performed on this machine.
LDAP: User authentication by LDAP server.
Use this to set the default network authentication server.
When you log into Setting mode (Web version) or send a print
job to the machine using user information that is not registered
in the machine, the authentication server is not known.
This setting is used to select one of the LDAP servers registered
in the machine as the authentication server.
Register the access control information for page count
limits and authorities can be registered on an network server in advance.
By using this network server for network authentication, perform
the user authentication based on the registered access control information.
Use this function when user authentication is performed by
network authentication using an LDAP server.
Before using this function, configure settings for authentication
by network server, obtain control numbers for the "Pages Limit Group"
and "Authority Group" (including base settings for each group),
and associate these with the control numbers registered in the machine.
To use this function, add the properties associated with "Pages
Limit Group" and "Authority Group" to the directory information
of the network server used for user authentication.
The property information is indicated below. Settings previously
stored in the machine cannot be changed.
| Property | Name of property in factory default state | Settings |
|---|---|---|
|
Pages Limit Group |
pagelimit |
Registration number of Pages Limit Group registered in the machine, or a group name previously registered in the machine. Unlimited: unlimited |
|
Authority Group |
authority |
Registration number of Authority Group registered in the machine, or a group name previously registered in the machine. Admin: admin User: user Guest: guest |
Rename the properties that the machine obtains from
the LDAP server as follows. In the Web page, select [Network Settings]
→ [LDAP Settings]. From the Global Address Book setting screen that
is displayed, select [Linkage with User Control Function] and then select [Pages Limit
Group] and
[Authority Group].
The [Pages Limit Group] and [Authority Group] information that is registered
in each machine determines the authority and settings that the user
is actually granted. To use this function to ensure that users are
granted the same authority and settings on any machine, register
the [Pages Limit Group] and [Authority Group], information with the same authority
so that they will be registered in each machine using the same registration
numbers.
The directory information of the network server that is used
cannot be changed from the machine. Consult the administrator of
the network server.
If 100 users have already been manually registered, login
will not be possible. Consult the administrator of the machine.
This selects the authentication method. When using user
authentication, be sure to configure this setting first. The items to
be configured for users stored after setting the user authentication
method vary depending on the selected authentication method.
Authenticate a User by Login Name and Password
Standard authentication method using a login name and password.
Authenticate a User by User Number Only
Use this option for simple authentication if you skip the
network authentication.
, login names with identical spelling
but different cases (upper and lower) will be identified as different
login names. Therefore, login names with identical spelling but
different cases will be authenticated as user names of different
users. If the checkbox is set to
, case sensitivity for login names is
disabled. Therefore, identically spelled user names with upper and
lower case character differences will be authenticated as the user
name of the same user., and identical user names with only upper
and lower case character differences exist, the user names that
have already been registered are identified as user names of different
users.Use IC Card for Authentication
Allows the IC card to be used when authenticating the user.
Print jobs by users who have not registered user information
in this machine, such as jobs for which appropriate user information
has not been entered in the printer driver, are prohibited.
When user authentication is enabled, this setting specifies
whether or not to enable automatic logout.
The time until logout can be specified up to 240 seconds in
increments of 10 seconds.
When entering passwords, including administrator passwords,
during user authentication, the number of incorrect password attempts
is counted, and if the number of attempts reaches the specified
number (three), the user account is locked, and the user is blocked
from making any more attempts at authenticating their account until
a period of five minutes has elapsed. The number of incorrect entries
made is counted separately for each user, and the count is reset when
the correct password is entered.
This prevents an unauthorised person from attempting to guess
a password. (The number of failed login attempts is retained even
if the power is turned off.)
This setting specifies whether scanning can be performed
by remote operation before a user has logged in.
Enable IPP authentication on a non-printer driver.
When retention is enabled in the printer driver and
print data has been spooled to the machine, you can have the spooled
print data automatically print out when the user who enabled retention
logs in.
After E-mail Status has been sent, the counter is reset.
Displayed only when E-mail Alert and Status is enabled.
When user authentication is enabled, select whether
the login name is shown or asterisks are shown.
| Item | Description |
|---|---|
|
Display login name |
Show the login name. |
|
Display login name with "*" |
Hide the login name with asterisks. |
When user authentication is enabled, this setting specifies
whether or not to display the page counts of a user when the user
logs in.
Card
Type/Card Reader
Specify the card type and card reader to be used.
Version 01a / bp22c25_usr_01a_en
