Changing the User Authentication System
This setting is required when changing the user authentication system.
NOTE
|
The default setting is 'Local Device Authentication'. To increase security, set the user authentication system to 'Server Authentication + Local Device Authentication' or change the user name and password of Local Device Authentication for the Administrator immediately after you start using the machine.
If you changed the authentication system to [Server Authentication + Local Device Authentication], also set [Role Association]. (See "Using the Remote UI.")
|
Active Directory Authentication
Date and Time Settings
When using Active Directory Authentication, it is necessary to synchronize the date and time settings of the authentication server and machine. Set the date and time of the machine in [Date/Time Settings] in [Preferences] (Settings/Registration) to the same date and time set on the authentication server. For more information, see
"Current Date and Time." You can also specify daylight saving settings to automatically advance the standard time of the machine forward by one hour for a certain period each year.
NOTE
|
The allowed difference in times can be changed using the settings of Active Directory. However, if more than '5' minutes is specified, the allowed difference will not be changed.
|
DNS Settings (Active Directory Authentication)
For Active Directory Authentication, the machine uses a DNS server. If using Active Directory Authentication, specify settings in [Preferences] in [Preferences] (Settings/Registration). For more information, see
"Protocol Settings."
The DNS server that manages the domain name registered in the machine requires the following:
The domain name of the Active Directory server used for authentication (the IP address of the domain controller) must be able to be retrieved.
The DNS server must support SRV records.
The following settings are required if the port number used for LDAP on the Active Directory side is changed.
Information for the LDAP service of Active Directory must be registered as an SRV record as follows:
Service:
|
'_ldap'
|
Protocol:
|
'_tcp'
|
Port number:
|
The port number used by the LDAP service of the Active Directory domain (zone)
|
Host offering this service:
|
Host name of the domain controller that is actually providing the LDAP service of the Active Directory domain (zone)
|
Language Settings
Check the language settings of Active Directory and the machine. If the display language of Active Directory and the machine differ, the sender's full name will not be displayed in the destination for e-mail.
LDAP Server Authentication
LDAP Server Information Settings (LDAP Server Authentication)
LDAP Server Authentication uses an LDAP server for authentication. Register the LDAP server information (server name, server address, port number, etc.) to use LDAP Server Authentication.
(See "Registering/Editing LDAP Server Information.")