LDAP Server Authentication (imageRUNNER 2206N / 2006N)
If your system has an LDAP server installed, you can ensure that LDAP server authentication is carried out when the send function is used. This enables you to prevent unauthorized use by third parties and information disclosure. Once the authorization settings are enabled, the Authorized Send screen appears when the scan function is used and operation can only continue if it is correctly authorized by the LDAP server. Use the settings described here to configure LDAP server authentication. For more information on registering the server to be used for authentication, see Registering LDAP Servers.
1
Start the Remote UI and log on in System Manager Mode. Starting Remote UI
2
Click [Settings/Registration].
3
Click [Security Settings] 
[Authentication Settings for Send Function].
[Authentication Settings for Send Function].
4
Click [Edit].
5
Select the [Use User Authentication] check box and select whether a confirmation screen is displayed at logout.
[Use User Authentication]
Select the check box to display the Authorized Send logon screen when the scan function is used (LDAP server authentication).
Select the check box to display the Authorized Send logon screen when the scan function is used (LDAP server authentication).
[Display Confirmation Screen When Logging Out]
Select the check box to display a screen that allows you to selectively log out when you are logged on for both Authorized Send and Department ID Management. If you clear this check box, no selection screen is displayed when you log out and you are logged out from both Authorized Send and Department ID Management.
Select the check box to display a screen that allows you to selectively log out when you are logged on for both Authorized Send and Department ID Management. If you clear this check box, no selection screen is displayed when you log out and you are logged out from both Authorized Send and Department ID Management.
6
Configure the settings for sending e-mail.
[E-Mail Sending]
Select whether to allow sending e-mail.
Select whether to allow sending e-mail.
|
[Do Not Allow]
|
Blocks sending e-mail. <E-Mail> in the scan function can no longer be used.
|
|
[Allow]
|
Sending e-mail is not blocked.
|
|
[Only Allow Sending to Myself]
|
Blocks all sending e-mail other than those to users with authorized e-mail addresses. The e-mail addresses of authorized users must be registered on the LDAP server.
|
[Authentication Method]
When [Allow] or [Only Allow Sending to Myself] is selected in [E-Mail Sending], this allows you to specify whether an authentication screen is shown on the SMTP server when e-mail is sent.
When [Allow] or [Only Allow Sending to Myself] is selected in [E-Mail Sending], this allows you to specify whether an authentication screen is shown on the SMTP server when e-mail is sent.
|
[Display the authentication screen using the same user name as when the sending operation started]
|
Displays the authentication screen showing the same user name and password entered in the Authorized Send logon screen.
|
|
[Display the authentication screen without any authentication information]
|
Displays the authentication screen with the user name and password fields blank.
|
|
[Use device-specific authentication information and do not display the authentication screen]
|
No authentication screen is displayed when e-mail is sent. Authorization on the SMTP server is carried out using the user name and password set in [E-Mail Settings] Configuring E-Mail Communication Settings.
|
[Specify Authentication User Destination as Sender]
Select the check box when the e-mail address of an authorized user will be set as the sender. The e-mail addresses of authorized users must be registered on the LDAP server. If you clear this check box, the e-mail address set in the [E-Mail Settings] is set as the sender.
Select the check box when the e-mail address of an authorized user will be set as the sender. The e-mail addresses of authorized users must be registered on the LDAP server. If you clear this check box, the e-mail address set in the [E-Mail Settings] is set as the sender.
7
Configure the file transfer settings (for saving to shared folders).
[File Sending]
Select whether to allow saving to shared folders.
Select whether to allow saving to shared folders.
|
[Do Not Allow]
|
Blocks saving to shared folders. <File> in the scan function can no longer be used.
|
|
[Allow]
|
Saving to shared folders is not blocked.
|
|
[Only Allow Sending to Myself or Specified Folder]
|
Blocks all saving to shared folders other than specified folders. The data is saved to folders registered on the LDAP server or to the folder specified in [Specify Destination Folder].
|
When [Allow] is specified in [File Sending]
[Authentication Method]
Allows you to specify whether an authentication screen is shown on the server when sending.
Allows you to specify whether an authentication screen is shown on the server when sending.
|
[Display the authentication screen using the same authentication information as when the sending operation started]
|
Displays the authentication screen showing the same user name and password entered in the Authorized Send logon screen.
|
|
[Display the authentication screen without any authentication information]
|
Displays the authentication screen with the user name and password fields blank.
|
|
[Use the authentication information from the address book and do not display the authentication screen]
|
No authentication screen is displayed when sending. Authentication is carried out on the server using the user name and password set in the Address Book.
|
When [Only Allow Sending to Myself or Specified Folder] is specified in [File Sending]
[Authentication Method]
Allows you to specify whether an authentication screen is shown on the server when sending.
Allows you to specify whether an authentication screen is shown on the server when sending.
|
[Use the same authentication information as when the sending operation started]
|
Carries out authorization on the server using the user name and password entered in the Authorized Send logon screen. Selecting the [Display Authentication Screen] check box displays the authentication screen with this user name and password already entered when you send the data.
|
|
[Display the authentication screen without any authentication information]
|
Displays the authentication screen with the user name and password fields blank.
|
[Specify Destination Folder]
Selecting this check box allows you to specify the folder where the data is saved. If the check box is not selected, the save destination is set based on authorized user information registered on the LDAP server.
Selecting this check box allows you to specify the folder where the data is saved. If the check box is not selected, the save destination is set based on authorized user information registered on the LDAP server.
|
[Host Name]
|
Enter a host name for the shared folder up to 120 characters in length.
|
|
[Folder Path]
|
Enter a path name for the save destination folder up to 120 characters in length (excluding the host name). When the [Add User Name] check box is selected, the user name and path used for LDAP authentication are added.
|
8
Click [OK].