SSO-H (Single Sign-On H)
This is a login service which can be used in an Active Directory environment network or in the machine. You can register/edit user data and specify administrator/general user settings in the following location:
Domain authentication is performed in Active Directory.
Local device authentication is performed in the memory of the machine from a Web browser.
SSO-H contains the following functions:
Enables the functions of the machine and MEAP applications, etc., to be used after being authenticated once.
Contains a user authentication system that connects with the domain controller, and has two compatible user authentication systems, which can be used even when there is network trouble and only the machine can be authenticated. These two user authentication systems can be used together or alone.
SSO-H includes the following three user authentication systems:
Domain Authentication
Domain Authentication is a user authentication method that logs in to the machine and authenticates the domain on the network by connecting with the domain controller of the Active Directory. In addition to the user that belongs to the domain with the machine, you can authenticate up to 200 users that belong to the domain that is directly related to the domain with the machine. The user selects the domain name when logging in.
Local Device Authentication
A user authentication system which only uses the machine. Users to be authenticated are registered/managed using a database inside the machine. [This device] is the login destination.
'Domain Authentication + Local Device Authentication'
A user authentication system which includes the functions of both Domain Authentication and Local Device Authentication. This is useful for using Domain Authentication to authenticate users registered/managed in Active Directory, and using Local Device Authentication to authenticate temporary users which cannot be added to Active Directory.
In the example below, users belonging to Domain A (which includes the machine), and users belonging to Domain B (which is bi-directionally trusted by Domain A), can be authenticated, and users registered in the machine itself can be authenticated. The user selects the location to log in to (domain name or [This device]) when logging in.
|
IMPORTANT
|
|
If you are logging in as the administrator for Local Device Authentication and the user name and password is still the default setting, the screen to change the password appears when you click [Log In]. Change the password to increase security.
If you want to use Local Device Authentication and Department ID Management at the same time to keep track of the number of printed or scanned sheets for each Department ID, set [Department ID Management] to 'On'. To use Local Device Authentication and Department ID Management at the same time, the information registered for Local Device Authentication and the user information for Department ID Management (Department ID and PINs) must match.
You cannot use Domain Authentication and Department ID Management at the same time.
You cannot use the control card reader with 'Domain Authentication' or with 'Domain Authentication + Local Device Authentication'.
|
|
NOTE
|
|
The three user authentication systems can be switched using a Web browser. (See "Setting the User Authentication System.")
The default setting is 'Domain Authentication + Local Device Authentication.' To increase security, set the user authentication system to 'Domain Authentication' or change the user name and password of the Local Device Authentication administrator immediately after you start using SSO-H.
|