Registering LDAP Servers
If you are using an LDAP server to search for destinations, register the LDAP server information to the machine. You can register up to five LDAP servers.
Required Preparations
When specifying an LDAP server with a host name, make sure that a DNS server is available in the network.
When specifying an LDAP server with an IP address, check whether the DNS server supports forward or reverse lookup.
1
Log in to the machine as an administrator.
Logging In to the Machine2
On the control panel, press [
Settings/Registration] in the [Home] screen or other screen.
[Home] ScreenThe [Settings/Registration] screen is displayed.
3
Press [Set Destination]
[Register LDAP Server].
The [Register LDAP Server] screen is displayed.
4
Press [Register].
The screen for specifying the LDAP server information is displayed.
Set the server name and server address.
In [Server Name], enter a name to identify the LDAP server.
In [Server Address], enter the IP address or host name of the LDAP Server using single-byte alphanumeric characters.
Input example: Host name
ldap.example.com
6
Specify the detailed information of the LDAP server, as needed.
[Position to Start Search]
Specify the start search position in the directory information tree (DIT).
When using Windows Server, add "DC=" to each dot-delimited character string in the Active Directory domain name, and separate the entries with commas.
Input example: When the Active Directory domain name is "john.example.com"
DC=john, DC=example, DC=com
For Lotus Notes Domino, enter the node dn (identifier) on the directory tree.
Input example:
ou=team1, ou=salesdept, o=canon
If the server is LDAPv3, you can skip specifying the position to start search. If this setting is left blank, the machine automatically starts search from an arbitrary position.
If the server is LDAPv2, you must specify the position to start search. (It cannot be skipped.)
[Use TLS]
To encrypt communication with the LDAP server using TLS, set this to [On].
* This is enabled only when [Use] or [Use (Security Auth.)] is selected in [Authentication Information] in Step
8 below.
[Port Number]
Enter the port number used to communicate with the LDAP server.
Press [Port Number] to select it, and enter the port number.
[Max Addresses to Search]
Enter the maximum number of addresses to search.
Press [Max Addresses to Search] to select it, and enter a value to search.
[Search Timeout]
Enter the time from search start to timeout in seconds.
Press [Search Timeout] to select it, and enter a value.
7
Press [Next].
The screen for specifying the information for authenticating the LDAP server is displayed.
Configure the information for authenticating the LDAP server.
When Using Login Information to Perform Authentication
Enter the user name and password to use for authentication. You can also enter the user name and password on the authentication screen when searching for a destination.
1
In [Authentication Information], press [Use] or [Use (Security Auth.)].
When Using an Entered Authentication Password
Press [Use].
When Using Data Obtained with the Kerberos Protocol for the Authentication Password (LDAPv3 Only)
Press [Use (Security Auth.)].
The clock of the machine must be synchronized with that of the LDAP server.
If you specified an IP address for [Server Address] in Step
5, your DNS server must support reverse lookup.
2
Enter the user name, password, and domain name to use for authentication.
[User Name]
Enter the user name of the machine that is registered to the LDAP server.
When [Use] Is Selected in Step 1
When using Windows Server, enter the user name in the form "(Windows domain name)\(Windows user name)."
Input example:
example\user1
For Lotus Notes Domino, enter the user dn (identifier) to perform authentication.
Input example:
cn=user1, ou= team1, o=salesdept
When [Use (Security Auth.)] Is Selected in Step 1
Enter the Windows user name.
Input example:
user1
[Password]
Enter the password that is registered on the LDAP server.
When the password is entered, the [Confirm] screen is displayed. Enter the password again.
[Domain Name] (Only when [Use (Security Auth.)] is selected in Step 1)
Enter the directory tree name in Active Directory.
Input example:
example.com
3
In [Display Authentication Screen When Searching], specify whether to display the authentication screen when searching.
To enable entry of the user name and password on the authentication screen when searching for a destination, set this to [On].
To use the user name and password entered in Step 2 for authentication, set this to [Off].
4
In [LDAP Server Version and Character Code], select the combination of the LDAP server version and character code.
If you select [Use (Security Auth.)] in Step 1, this is set automatically to [ver.3 (UTF-8)].
When Authenticating Users Anonymously without Using Login Information
In [Authentication Information], press [Do Not Use] and select the combination of the LDAP server version and character code.
9
Press [Check Connection] in [Authentication Information], as needed.
You can check whether the machine can connect to the LDAP server.
10
Press [OK].
The LDAP server is registered.