Konica Minolta bizhub C452 AU-211P Authentication Unit User Guide for bizhub C
Konica Minolta bizhub C452 Manual
View all Konica Minolta bizhub C452 manuals
Add to My Manuals
Save this manual to your list of manuals |
Konica Minolta bizhub C452 manual content summary:
- Konica Minolta bizhub C452 | AU-211P Authentication Unit User Guide for bizhub C - Page 1
Authentication Unit AU-211P User's Guide - Konica Minolta bizhub C452 | AU-211P Authentication Unit User Guide for bizhub C - Page 2
Use the Authentication Unit 21 3.1 Login and Logout 21 3.1.1 Login 21 3.1.2 Logout 23 3.2 Functions Using the PKI Card Authentication System 24 3.3 Address Search (LDAP) Using PKI Card 25 3.3.1 Overview 25 3.3.2 Related Settings 26 3.3.3 Handling Address Search (LDAP 28 3.4 SMB TX Using PKI - Konica Minolta bizhub C452 | AU-211P Authentication Unit User Guide for bizhub C - Page 3
58 4.2 Administrator Settings 59 4.2.1 System Settings 59 4.2.2 User Authentication/ Account Track 59 4.2.3 Network Settings 60 4.2.4 Security Settings 61 4.2.5 License Settings 61 5 Appendix 62 5.1 Product Specifications 62 5.2 Cleaning the Authentication Unit 62 5.3 Troubleshooting 63 - Konica Minolta bizhub C452 | AU-211P Authentication Unit User Guide for bizhub C - Page 4
that appear may be slightly different from the screen images used in this User's Guide. Trademark/copyright acknowledgements - Microsoft® and Windows® are either registered trademarks or trademarks of Microsoft Corporation in the United States and/or other countries. - All other company names - Konica Minolta bizhub C452 | AU-211P Authentication Unit User Guide for bizhub C - Page 5
to content; however, if inaccuracies or errors are noticed, please contact your sales representative. - The marketing and authorization to as a result of operations not described in this information. For disclaimers and warranty and liability details, refer to the User's Guide Authentication Unit (IC - Konica Minolta bizhub C452 | AU-211P Authentication Unit User Guide for bizhub C - Page 6
Introduction 1 Regulation notices USER INSTRUCTIONS FCC PART 15 - RADIO FREQUENCY DEVICES (For U.S.A. Users) FCC: Declaration of Conformity Product Type Authentication Unit (IC Card Type) Product Name AU-211P (This device complies with Part 15 of the FCC Rules.) Operation is subject to the - Konica Minolta bizhub C452 | AU-211P Authentication Unit User Guide for bizhub C - Page 7
Introduction 1 INTERFERENCE-CAUSING EQUIPMENT STANDARD (ICES-003 ISSUE 4) (For Canada Users) (This device complies with RSS-Gen of IC Rules.) Operation is subject to the following two conditions: (1) this device may not cause interference, and (2) this - Konica Minolta bizhub C452 | AU-211P Authentication Unit User Guide for bizhub C - Page 8
+ PKINIT) Note This system can not be used with applications other than the printer driver and PageScope Authentication Manager compatible with this system. 2 Reminder Do not disconnect the USB cable while using this unit. Doing so may cause this system to become unstable. AU-211P 7 - Konica Minolta bizhub C452 | AU-211P Authentication Unit User Guide for bizhub C - Page 9
Getting Started 2 2.2 Part names and their functions 3 2 1 No. Part name 1 Card inlet 2 LED lamp 3 USB cable Description Used to insert the PKI card. Turns green when you log in using the PKI card. Blinks green while authentication. Used for connecting this device to the multifunctional - Konica Minolta bizhub C452 | AU-211P Authentication Unit User Guide for bizhub C - Page 10
settings required to use the MFP in a network environment. TCP/IP Settings On the MFP control panel, press the [Utility/Counter] key, and then [Administrator Settings] - [Network Settings] - [TCP/IP Settings]. Item ON/OFF IPv4 Settings Item IP Application Method Auto Input IP Address Description - Konica Minolta bizhub C452 | AU-211P Authentication Unit User Guide for bizhub C - Page 11
the link-local address generated from the MAC address. Item DNS Host Name Dynamic DNS Settings DNS Domain Description Specify the host name of the MFP (up to 63 characters). Select [Enable] when automatically registering the specified DNS host name in the DNS server that supports the Dynamic DNS - Konica Minolta bizhub C452 | AU-211P Authentication Unit User Guide for bizhub C - Page 12
. You can register up to 20 Active Directory services. External Server Settings On the MFP control panel, press the [Utility/Counter] key, and then [Administrator Settings] - [User Authentication/Account Track] - [External Server Settings] - [New]. Item Server Name Server Type Description Specify - Konica Minolta bizhub C452 | AU-211P Authentication Unit User Guide for bizhub C - Page 13
panel, press the [Utility/Counter] key, and then [Administrator Settings] - [Network Settings] - [Forward] - [Detail Settings] [Time Adjustment Setting]. Page 1/2 Item ON/OFF Auto IPv6 Retrieval Host Address Port Number Set Date Page 2/2 Item Auto Time Adjustment Polling Interval Description - Konica Minolta bizhub C452 | AU-211P Authentication Unit User Guide for bizhub C - Page 14
2 associated with Active Directory. DNS Server Settings (IPv6) On the MFP control panel, press the [Utility/Counter] key, and then [Administrator Settings] - [Network Settings] - [TCP/IP Settings] - [DNS Server Settings (IPv6)]. 2 Note These settings are required when using the MFP in the IPv6 - Konica Minolta bizhub C452 | AU-211P Authentication Unit User Guide for bizhub C - Page 15
mode. This is required when using the PIV-cum-CAC card. Authentication Device Settings On the MFP control panel, press the [Utility/Counter] key, and then [Administrator Settings] - [User Authentication/Account Track] [Authentication Device Settings] - [General Settings] - [PKI Card Authentication - Konica Minolta bizhub C452 | AU-211P Authentication Unit User Guide for bizhub C - Page 16
] key, and then [Administrator Settings] - [User Authentication/Account Track] - [Certificate Verification Setting]. Item Verify Validity Period expired in the OCSP service. For details on how to configure the OCSP service setting, refer to "Certificate Verification Settings" (page 16). AU-211P - Konica Minolta bizhub C452 | AU-211P Authentication Unit User Guide for bizhub C - Page 17
For details on how to use PageScope Web Connection, refer to the User's Guide [Network Administrator] supplied together with the MFP. Item Certificate Verification Settings Timeout OCSP Service URL Proxy Server Address Description Select [ON] to enable certificate verification. Enter the timeout - Konica Minolta bizhub C452 | AU-211P Authentication Unit User Guide for bizhub C - Page 18
Getting Started 2 Item Proxy Server Port Number User Name Password Address not using Proxy Server Description Enter the port number for the proxy server. Enter the user name to log in to the proxy server (up to 63 characters). Enter the password to log in to the proxy server (up to 63 characters - Konica Minolta bizhub C452 | AU-211P Authentication Unit User Guide for bizhub C - Page 19
Certificate Setting]. ! Detail • To check the root signature in Certificate Verification, register the external certificate you want to view when checking the root signature as necessary. • For details on how to use PageScope Web Connection, refer to the User's Guide [Network Administrator] supplied - Konica Minolta bizhub C452 | AU-211P Authentication Unit User Guide for bizhub C - Page 20
Getting Started 2 Item File Description Click [Browse] in the Import Certificates (PEM/DER) screen, and specify a new external certificate to be registered. • If [Trusted CA Root Certificate] is selected, register the root certificate from the CA (Certificate Authority). • If - Konica Minolta bizhub C452 | AU-211P Authentication Unit User Guide for bizhub C - Page 21
of the MFP in the disable state. However, the initial setting results in the MFP administrator password being made public on the network. To ensure security, change the administrator password as required after the initial setting. ! Detail • To disable the OpenAPI function, press the [Utility - Konica Minolta bizhub C452 | AU-211P Authentication Unit User Guide for bizhub C - Page 22
the unit. - To change the server for authentication, click [Server Name] to select the desired server, and click [OK]. - You can log in as a public user if Public User Access is enabled. - If logging into the MFP as an administrator or User Box administrator, press [ID & PW], and enter the password - Konica Minolta bizhub C452 | AU-211P Authentication Unit User Guide for bizhub C - Page 23
desired job. • If you log into the MFP as a User Box administrator, you can view the contents of all the created User Boxes regardless of whether a password has been specified. 2 Enter the PIN code. - You can use the keypad to enter the PIN code directly. - When [PIN] is pressed, the keyboard screen - Konica Minolta bizhub C452 | AU-211P Authentication Unit User Guide for bizhub C - Page 24
is enabled on the MFP that supports this system, user authentication is forcibly associated with account authentication.(No entry is required for account track authentication after the first time.) 3.1.2 Logout To log out the MFP, pull the PKI card out of this unit. ! Detail • If a PKI card is used - Konica Minolta bizhub C452 | AU-211P Authentication Unit User Guide for bizhub C - Page 25
is sent from the printer driver and can only be printed when authentication at the MFP using the PKI card is successful; therefore, you can ensure the confidentiality of documents. p. 40 Sends scanned data to the user's e-mail address. The user can obtain the user's e-mail address using the LDAP - Konica Minolta bizhub C452 | AU-211P Authentication Unit User Guide for bizhub C - Page 26
making the password public on the network. The user can also perform the Active Directory authentication only once to obtain access privileges, and configure the single sign-on environment to be convenient. Active Directory PKI Card (1) (2) LDAP Server (3) Address Search (1) Insert the PKI - Konica Minolta bizhub C452 | AU-211P Authentication Unit User Guide for bizhub C - Page 27
Unit 3 3.3.2 Related Settings This section explains how to configure the address search (LDAP) settings on the MFP that supports this system. Enabling LDAP Configure settings to use the LDAP server. On the MFP control panel, press the [Utility/Counter] key, and then [Administrator Settings - Konica Minolta bizhub C452 | AU-211P Authentication Unit User Guide for bizhub C - Page 28
Unit 3 Item Description LDAP Server Name Specify the LDAP server name (up to 32 characters). Max. Search Results Enter the maximum number of items that can be received as address search (LDAP) results. Timeout Specify the timeout period for address search (LDAP). Initial Setting - Konica Minolta bizhub C452 | AU-211P Authentication Unit User Guide for bizhub C - Page 29
Search (LDAP) Use the Fax/Scan screen on the MFP control panel, and press [Address Search]. The procedures can vary depending on whether a single or multiple LDAP servers are registered. 2 Note If address search (LDAP) setting incorrectly configured properly, [Address Search] will not appear - Konica Minolta bizhub C452 | AU-211P Authentication Unit User Guide for bizhub C - Page 30
How to Use the Authentication Unit 3 When multiple LDAP servers are registered 1 Select the LDAP server to . 3 Select the desired method to search for the destination. - You can check the authentication result of each server by pressing the number key of a desired LDAP server. - Press [Select - Konica Minolta bizhub C452 | AU-211P Authentication Unit User Guide for bizhub C - Page 31
How to Use the Authentication Unit 3 2 Note For details on the address search (LDAP) function, refer to the User's Guide [Network Scan/Fax/Network Fax Operations] supplied together with the MFP. AU-211P 30 - Konica Minolta bizhub C452 | AU-211P Authentication Unit User Guide for bizhub C - Page 32
authentication with the PKI card when sending scanned data via SMB. If the Kerberos authentication ticket is used for authentication in the destination computer, the user can carry out SMB TX securely without making the password public on the network. The user can also perform the Active Directory - Konica Minolta bizhub C452 | AU-211P Authentication Unit User Guide for bizhub C - Page 33
settings on the MFP that supports this system. Client Settings Configure the setting to perform SMB TX. On the MFP control panel, press the [Utility/Counter] key, and then [Administrator Settings] - [Network Settings] - [SMB Settings] - [Client Settings]. Item ON/OFF SMB Authentication Setting User - Konica Minolta bizhub C452 | AU-211P Authentication Unit User Guide for bizhub C - Page 34
to the NTLM authentication. In this case, the window appears to prompt you to enter the user ID and password. 2 Note Specify the WINS server or direct hosting service to fit your environment. For details, refer to the User's Guide [Network Administrator] supplied together with the MFP. AU-211P - Konica Minolta bizhub C452 | AU-211P Authentication Unit User Guide for bizhub C - Page 35
• For details on how to register the SMB address or use SMB TX, refer to the User's Guide [Network Scan/Fax/Network Fax Operations] supplied together with the MFP. • In [Client Settings], you can specify the operation required when authentication has failed using the Kerberos authentication ticket - Konica Minolta bizhub C452 | AU-211P Authentication Unit User Guide for bizhub C - Page 36
is selected in "Client Settings" (page 32), [Reference] will not appear on the SMB address registration screen (Administrator Settings) and SMB address specification screen. • [SMB Authentication Setting] is set to [Kerberos]. • [Password Authentication Restriction] is set to [Limit]. AU-211P - Konica Minolta bizhub C452 | AU-211P Authentication Unit User Guide for bizhub C - Page 37
user's address using the Scan to Me function. For details on the Scan to Me function, refer to "Scan to Me" (page 50). Tapping, fabrication or spoofing PKI Card Encryption + Digital Signature 2 Note This function is not available when you log into the MFP as a public user or User Box administrator - Konica Minolta bizhub C452 | AU-211P Authentication Unit User Guide for bizhub C - Page 38
that supports this system. S/MIME Communication Settings Configure settings to encrypt an e-mail and add a digital signature. On the MFP control panel, press the [Utility/Counter] key, and then [Administrator Settings] - [Network Settings] - [E-Mail Settings] - [S/MIME Communication Settings]. Item - Konica Minolta bizhub C452 | AU-211P Authentication Unit User Guide for bizhub C - Page 39
OCSP service and CRL (Certificate Revocation List) are checked in this order when the expiration date of the certificate is checked. Select the digital signature type. 2 Note For details on how to configure the settings required to send an e-mail, refer to the User's Guide [Network Administrator - Konica Minolta bizhub C452 | AU-211P Authentication Unit User Guide for bizhub C - Page 40
encryption is set after specifying the E-mail addresses (up to 10 E-mail addresses), specified E-mail addresses that do not have a registered certificate will be canceled. • For details on how to send an e-mail, refer to the User's Guide [Network Scan/Fax/Network Fax Operations] supplied together - Konica Minolta bizhub C452 | AU-211P Authentication Unit User Guide for bizhub C - Page 41
Use the Authentication Unit 3 3.6 PKI Card Print 3.6.1 Overview This function encrypts print data using the PKI card before sending the data from the printer driver to the MFP. The print data is saved in the PKI Encrypted Document User Box of the MFP, and the same user can perform authentication - Konica Minolta bizhub C452 | AU-211P Authentication Unit User Guide for bizhub C - Page 42
the Printer Driver To use PKI Card Print, install a printer driver compatible with this system in the computer. Required System Environment The printer drivers are available in the following environment. Type PCL driver Page description language PCL6 Supported Operating System Windows 2000 - Konica Minolta bizhub C452 | AU-211P Authentication Unit User Guide for bizhub C - Page 43
Unit 3 Type PS driver Page description language PostScript 3 Emulation Supported Operating System Windows 2000 Professional (SP4 or later) Windows XP Home Edition (SP1 or later) Windows XP Professional (SP1 or later) Windows XP Professional x64 Edition Windows Vista Home Basic * Windows - Konica Minolta bizhub C452 | AU-211P Authentication Unit User Guide for bizhub C - Page 44
How to Use the Authentication Unit 3 Installing the printer driver The installer enables you to easily install the printer driver by following the instructions displayed on the pages. 2 Note Administrator authority is required to install the printer driver on your computer. 1 Start the installer. - Konica Minolta bizhub C452 | AU-211P Authentication Unit User Guide for bizhub C - Page 45
MFP after saved in the User Box and printed on the MFP. However, if unprinted print data in the PKI Encrypted Document User Box exceed the User Box upper limit, new data cannot be saved in the User Box. To avoid this problem, you can configure the setting to automatically delete data that remains - Konica Minolta bizhub C452 | AU-211P Authentication Unit User Guide for bizhub C - Page 46
How to Use the Authentication Unit 3 3.6.4 Handling PKI Card Print The following explains how to handle PKI Card Print. Sending print data (Printer driver setting) Use the following steps to configure the printer driver setting when encrypting print data using the PKI card and sending it to the - Konica Minolta bizhub C452 | AU-211P Authentication Unit User Guide for bizhub C - Page 47
Use the Authentication Unit 3 - When using Account Track, you do not need to enter department information using the printer driver. If device information is automatically obtained using the printer driver, Account Track is disabled. 7 Under [Output Method], select [PKI Card Print], and click [OK - Konica Minolta bizhub C452 | AU-211P Authentication Unit User Guide for bizhub C - Page 48
[Other] tab, and then clear the [IC card is used] check box. In this case, perform authentication according to the [User Authentication] setting in step 6. The [IC card is used] check box is selected by default. If the check box is cleared, [PKI Card Print] cannot be selected in step 7. AU-211P 47 - Konica Minolta bizhub C452 | AU-211P Authentication Unit User Guide for bizhub C - Page 49
> When the PKI Encrypted Document User Box contains print data, [Print & Access] appears on the login screen. % Press [Print & Access], and insert the PKI card into the authentication unit attached to the MFP. - If the PKI card is inserted, the PIN code entry screen appears. When authentication - Konica Minolta bizhub C452 | AU-211P Authentication Unit User Guide for bizhub C - Page 50
details on ID & Print, refer to the User's Guide [Print Operations] supplied together with the MFP. 1 Press [Access], and insert the PKI card into the authentication unit attached to the MFP. 2 Enter the PIN code and to log into - Konica Minolta bizhub C452 | AU-211P Authentication Unit User Guide for bizhub C - Page 51
Authentication Unit 3 3.7 Scan To Me 3.7.1 Overview Scan To Me is a function that sends scanned data to the user's e-mail address. This function is useful when frequently sending scanned data to the user's address. Using this function, the user can obtain the authenticated user's e-mail address - Konica Minolta bizhub C452 | AU-211P Authentication Unit User Guide for bizhub C - Page 52
(6) (3) Send to the user's address (4) (1) Insert the PKI card into the MFP to perform Active Directory authentication. (2) Obtain the user's e-mail address. (3) Send the e-mail to the user's e-mail address. If necessary, the user can use the PKI card to encrypt an e-mail or add a digital signature - Konica Minolta bizhub C452 | AU-211P Authentication Unit User Guide for bizhub C - Page 53
to the User's Guide [Network Administrator] supplied together with the MFP. 3.7.3 Related Settings The following explains the settings required to use the Scan To Me function. Obtaining the E-mail address In your environment, configure the settings required to obtain the user's email address using - Konica Minolta bizhub C452 | AU-211P Authentication Unit User Guide for bizhub C - Page 54
and [Communication Settings]. 3 Press [Me]. 4 Load the original and press the [Start] key on the control panel. This scans the original and sends data to the user's e-mail address. 2 Note For details on scan conditions, refer to the User's Guide [Network Scan/ Fax/Network Fax Operations] supplied - Konica Minolta bizhub C452 | AU-211P Authentication Unit User Guide for bizhub C - Page 55
How to Use the Authentication Unit 3 3.8 Scan To Home 3.8.1 Overview Scan To Home is a function that sends scanned data to the user's computer. This function is effective when frequently sending scanned data to the user's address. The user can obtain the position of the user's Home folder from - Konica Minolta bizhub C452 | AU-211P Authentication Unit User Guide for bizhub C - Page 56
the following settings. - 2 Disable Address Search (LDAP) (with no LDAP server registered). Disable saving a document in an external memory. When Public User Access is enabled, disable scanning in the public user mode. Note For details on settings, refer to the User's Guide [Network Administrator - Konica Minolta bizhub C452 | AU-211P Authentication Unit User Guide for bizhub C - Page 57
configure its settings, refer to "SMB TX Using the PKI Card" (page 31). 2 Note Specify the WINS server or direct hosting service to fit your environment. For details, refer to the User's Guide [Network Administrator] supplied together with the MFP. Scan to Home Settings Enable the Scan to Home - Konica Minolta bizhub C452 | AU-211P Authentication Unit User Guide for bizhub C - Page 58
in [Scan Settings], [Original Settings], and [Communication Settings]. 4 Load the original and press the [Start] key on the control panel. This scans the original and sends data to the user's Home folder. 2 Note For details on scan conditions, refer to the User's Guide [Network Scan/ Fax/Network Fax - Konica Minolta bizhub C452 | AU-211P Authentication Unit User Guide for bizhub C - Page 59
Information The MFP that supports this system provides some settings added or changed from an ordinary MFP model. This chapter shows a list of the added or changed setting items for each category. 2 Note For the settings of an ordinary MFP model, refer to the User's Guide supplied together with the - Konica Minolta bizhub C452 | AU-211P Authentication Unit User Guide for bizhub C - Page 60
or Changed Setting Information 4 4.2 Administrator Settings 4.2.1 System Settings User Box Settings Item Description PKI Encrypted Document Delete Time Setting Allows the user to specify the time required to delete a PKI encrypted document. For details, refer to "Specifying the Print Data - Konica Minolta bizhub C452 | AU-211P Authentication Unit User Guide for bizhub C - Page 61
LDAP" (page 26). E-Mail Settings Item E-Mail TX (SMTP) S/MIME Communication Settings Description [Detail Settings] - [SMTP Authentication] [Authentication Setting] is fixed to [Use Set Value]. When performing SMTP authentication, specify the user ID and password for SMTP authentication. [Digital - Konica Minolta bizhub C452 | AU-211P Authentication Unit User Guide for bizhub C - Page 62
Server Settings This function is not supported. 4.2.4 Security Settings Security Details Item Password Rules Prohibited Functions when Authentication Error Confidential Document Access Method Job Log Settings Description This function is not supported. The default is [Mode 2]. The default is - Konica Minolta bizhub C452 | AU-211P Authentication Unit User Guide for bizhub C - Page 63
such as benzene or alcohol. Doing so will result in a malfunction. • Before disconnecting or connecting this unit, turn the MFP Main Power off. After 10 seconds or more have lapsed, turn the MFP Main Power on. Failing to do so may result in a malfunction. • When connecting or disconnecting the USB - Konica Minolta bizhub C452 | AU-211P Authentication Unit User Guide for bizhub C - Page 64
PKI card, contact the PKI card administrator. Scanning does not start. Did you restart the MFP after connecting this unit to the MFP? Turn the MFP Main Power off, disconnect the USB cable from either the MFP or this unit once, and connect it again. Wait at least 10 seconds, and turn the MFP Main - Konica Minolta bizhub C452 | AU-211P Authentication Unit User Guide for bizhub C - Page 65
http://konicaminolta.com A0P0-AU11-00 2010 Copyright 2010. 6
User’s Guide
Authentication Unit AU-211P