Home » Konica Minolta Manuals » Multifunction Devices » Konica Minolta bizhub 223 » Manual Viewer

Konica Minolta bizhub 223 bizhub 423/363/283/223 Network Administrator User Gu - Page 202

LDAP over SSL, Setting Up LDAP]

View all Konica Minolta bizhub 223 manuals

Add to My Manuals
Save this manual to your list of manuals

Page 202 highlights

10.2 Searching for the E-mail address in the LDAP server 10 Item [Authentication Method] [Login Name] [Password is changed.] [Password] [Domain Name] [Select Sever Authentication Method] [Use Referral] [Search Condition Attributes] [Initial Setting for Search Details] Description Select the authentication method to log in to the LDAP server. The authentication method must match that used in the LDAP server. If [anonymous] is selected, [Login Name], [Password], and [Domain Name] can be omitted. If [GSS-SPNEGO] is selected, log in to the server in the Kerberos authentication method. The Kerberos authentication method is supported by Active Directory. Enter the login name to log in to the LDAP server (up to 255 bytes). Select this check box to change the password. Prior check Server authentication method Enter the password to log in to the LDAP server (up to 128 bytes, excluding space and "). Enter the domain name to log in to the LDAP server (up to 64 characters). If [GSS-SPNEGO] is selected, enter the domain name of Active Directory. Select the server authentication method. Select [Set Value] to use the settings of [Login Name], [Password], and [Domain Name]. Select [User Authentication] to use the user name and password specified for user authentication. If [Dynamic Authentication] is selected, the system prompts you to enter the user name and password at LDAP searching. Select whether to use the referral function. Make an appropriate choice to fit the LDAP server environment. Select the attribute of the name used for LDAP searching. You can toggle this attribute between [Name] (cn) and [Nickname] (displayName). Specify LDAP search conditions. • Authentication Method • Domain name Name attribute 10.2.4 LDAP over SSL [Setting Up LDAP] In the administrator mode of PageScope Web Connection, select [Network] ö [LDAP Settings] ö [Setting Up LDAP] ö [Edit]. Item [Enable SSL] [Port Number (SSL)] [Certificate Verification Level Settings] [Validity Period] [CN] [Key Usage] Description Select this check box to encrypt an SSL communication between this machine and the LDAP server. Enter the port number to be used for SSL communication. Default setting: 636 To verify the server certificate, configure settings to verify the certificate. Prior check Does the server support SSL? Server port number Select whether to check that the server certificate is within the validity period. Select whether to check that the CN of the server certificate matches the server address. Select whether to check that the server certificate is used according to the purpose approved by the issuer. bizhub 423/363/283/223 10-8

Section	Page
Table of contents	2
1 Introduction	13
1.1 Welcome	13
1.1.1 User's guides	13
1.1.2 User's Guide	14
1.2 Conventions used in this manual	15
1.2.1 Symbols used in this manual	15
To use this machine safely	15
Procedural instruction	15
Key symbols	16
1.2.2 Document and paper indications	16
Original and paper sizes	16
Original and paper indications	16
1.3 Display modes of PageScope Web Connection	17
1.3.1 [Tab Function Display]	17
1.3.2 [List Function Display]	17
Main Menu	18
2 Connecting to network	20
2.1 Basic settings for TCP/IP communication	20
[TCP/IP Settings]	20
[Device Setting]	22
2.2 Communicating using IPv6	23
[TCP/IP Setting]	24
3 Using PageScope Web Connection	27
3.1 Using PageScope Web Connection	27
3.1.1 [TCP/IP Settings]	27
3.1.2 [PSWC Settings]	28
3.1.3 [TCP Socket Settings]	28
3.1.4 [Device Certificate Setting]	29
3.2 Logging in to the administrator mode	30
3.3 Specifying the display mode of the administrator mode.	32
[Display Setting]	32
[Tab Function display]	32
[List Function display]	32
3.4 Using Popup Help	33
[Help Display Setting]	33
Popup Help Display Example	33
3.5 Configuring Settings for each Purpose via Wizard	34
3.5.1 Screen Components	34
3.5.2 [Wizard]	35
3.6 Disabling Flash View	36
[Flash Display Setting]	36
3.7 Specifying the Automatic Logout Time	37
[Auto Logout]	37
4 Scanning	39
4.1 Sending scanned data to a computer on network	39
4.1.1 [TCP/IP Settings]	40
4.1.2 [Client Setting]	40
4.1.3 [WINS Setting]	41
4.1.4 [Direct Hosting Setting]	42
4.1.5 [LLMNR Setting]	42
4.2 Sending scanned data to your computer (Scan to Home)	43
4.2.1 [TCP/IP Settings]	44
4.2.2 User authentication (Active Directory)	44
4.2.3 [Scan to Home Settings]	44
4.2.4 [Client Setting]	44
4.2.5 [WINS Setting]	44
4.2.6 [Direct Hosting Setting]	44
4.2.7 [LLMNR Setting]	44
4.3 Sending scanned data by E-mail	45
4.3.1 [TCP/IP Settings]	45
4.3.2 E-mail Transmission	46
[E-mail TX (SMTP)]	46
[Administrator E-Mail Address]	47
4.3.3 SMTP over SSL/Start TLS	47
[E-mail TX (SMTP)]	47
[Certificate Verification Setting]	48
4.3.4 SMTP Authentication	49
4.3.5 POP before SMTP	50
[POP before SMTP]	50
[E-mail RX (POP)]	50
4.3.6 POP over SSL	51
[E-mail RX (POP)]	51
[Certificate Verification Setting]	52
4.3.7 APOP Authentication	53
4.4 Sending scanned data to the user's E-mail address (Scan to Me)	54
4.4.1 [TCP/IP Settings]	54
4.4.2 User Authentication	55
When the MFP authentication is selected	55
When the Active Directory authentication is selected	55
When the NTLM or NDS authentication is selected	55
4.4.3 Scan to E-Mail	55
4.4.4 SMTP over SSL/Start TLS	55
4.4.5 SMTP Authentication	55
4.4.6 POP before SMTP	55
4.4.7 POP over SSL	55
4.4.8 APOP Authentication	56
4.5 Sending scanned data by E-mail (with digital signature)	57
4.5.1 [TCP/IP Settings]	57
4.5.2 Scan to E-Mail	57
4.5.3 Registering a certificate	58
4.5.4 [S/MIME]	58
4.5.5 SMTP over SSL/Start TLS	58
4.5.6 SMTP Authentication	58
4.5.7 POP before SMTP	58
4.5.8 POP over SSL	59
4.5.9 APOP Authentication	59
4.6 Sending scanned data by E-mail (Encryption by public key)	60
4.6.1 [TCP/IP Settings]	60
4.6.2 Scan to E-Mail	61
4.6.3 [S/MIME]	61
4.6.4 SMTP over SSL/Start TLS	61
4.6.5 SMTP Authentication	61
4.6.6 POP before SMTP	61
4.6.7 POP over SSL	62
4.6.8 APOP Authentication	62
4.7 Sending scanned data to the FTP server	63
4.7.1 [TCP/IP Settings]	63
4.7.2 [FTP TX Setting]	63
4.8 Sending scanned data to the WebDAV server	65
4.8.1 [TCP/IP Settings]	65
4.8.2 [WebDAV Client Settings]	66
4.8.3 WebDAV over SSL	67
[Certificate Verification Level Settings]	67
[Certificate Verification Setting]	67
4.9 Importing images by TWAIN scan	69
4.9.1 [TCP/IP Settings]	69
4.9.2 [SLP Setting]	69
4.9.3 [TCP Socket Setting]	70
4.9.4 [Network TWAIN]	70
4.10 Using the WS scan function	71
4.10.1 [TCP/IP Settings]	71
4.10.2 [Web Service Common Settings]	71
4.10.3 [Scanner Settings]	72
5 Printing	74
5.1 Printing (LPR/Port9100)	74
5.1.1 [TCP/IP Settings]	74
5.1.2 [LPD Setting]	74
5.1.3 [RAW Port Number]	75
5.2 Print (SMB)	76
5.2.1 [TCP/IP Settings]	76
5.2.2 [Print Setting]	77
5.2.3 [WINS Setting]	77
5.2.4 [Direct Hosting Setting]	77
5.2.5 [LLMNR Setting]	77
5.3 Print (IPP)	78
5.3.1 [TCP/IP Settings]	78
5.3.2 [IPP Setting]	79
5.3.3 [IPP Authentication Settings]	80
5.4 Print (IPPS)	81
5.4.1 [TCP/IP Settings]	81
5.4.2 [IPP Setting]	81
5.4.3 [Device Certificate Setting]	81
5.4.4 [IPP Authentication Setting]	82
5.5 Printing (Bonjour)	83
[Bonjour Setting]	83
5.6 Printing (AppleTalk)	84
[AppleTalk Settings]	84
5.7 Printing (Netware)	85
5.7.1 [NetWare Settings]	85
In Remote Printer mode using the NetWare 4.x Bindery Emulation	85
In Print Server mode using the NetWare 4.x Bindery Emulation	86
In NetWare 4.x Remote Printer mode (NDS)	86
In the NetWare 4.x/5.x/6 Print Server mode (NDS)	87
For NetWare 5.x/6 Novell Distributed Print Service (NDPS)	88
5.7.2 [NetWare Status]	89
5.8 Using the WS print function	90
5.8.1 [TCP/IP Settings]	90
5.8.2 [Web Service Common Settings]	90
5.8.3 [Printer Settings]	91
5.9 Using Data Saved in a Cellular Phone or PDA	92
5.9.1 [Bluetooth Setting]	92
5.9.2 [System Connection Setting]	93
6 Sending and receiving network faxes	95
6.1 Sending Internet faxes	95
6.1.1 [TCP/IP Settings]	96
6.1.2 [Network Fax Function Settings]	97
6.1.3 [Machine Setting]	98
6.1.4 [Header Information]	98
6.1.5 Scan to E-Mail	98
6.1.6 [Network Fax Setting]	99
[I-Fax Advanced Setting]	99
[Black Compression Level]	100
[Color/Grayscale Multi-Value Compression Method]	100
6.1.7 SMTP over SSL/Start TLS	101
6.1.8 SMTP Authentication	101
6.1.9 POP before SMTP	101
6.1.10 POP over SSL	101
6.1.11 APOP Authentication	101
6.2 Receiving Internet faxes	102
6.2.1 [TCP/IP Settings]	102
6.2.2 [Network Fax Function Settings]	102
6.2.3 [E-mail RX (POP)]	103
6.2.4 [Network Fax Setting]	104
[I-Fax Advanced Setting]	104
[Internet Fax RX Ability]	105
6.2.5 POP over SSL	105
6.2.6 APOP Authentication	105
6.3 Sending and receiving IP address faxes	106
6.3.1 [TCP/IP Settings]	106
6.3.2 [Network Fax Function Settings]	107
6.3.3 [SMTP TX Setting]	108
6.3.4 [SMTP RX Setting]	109
6.3.5 [Network Fax Setting]	110
[Black Compression Level]	110
[Color/Grayscale Multi-Value Compression Method]	110
[IP Address Fax Operation Settings]	111
6.3.6 [Header Information]	111
7 Using User Authentication	113
7.1 Restricting users of this machine (MFP authentication)	113
7.1.1 [General Settings]	114
7.1.2 [Administrative Setting]	115
7.1.3 User Registration	117
7.1.4 Account Track Registration	119
7.2 Restricting users of this machine (Active Directory)	121
7.2.1 [TCP/IP Settings]	121
7.2.2 [External Server Settings]	122
7.2.3 [General Settings]	123
7.2.4 [Administrative Setting]	123
7.2.5 [Default Function Permission]	124
7.2.6 [Date/Time Setting]	125
7.3 Restricting users of this machine (Windows domain or workgroup)	126
7.3.1 [TCP/IP Settings]	126
7.3.2 [External Server Settings]	127
7.3.3 [General Settings]	128
7.3.4 [Administrative Setting]	128
7.3.5 [Default Function Permission]	128
7.3.6 [Client Setting]	129
7.3.7 [WINS Setting]	129
7.3.8 [Direct Hosting Setting]	129
7.4 Restricting users of this machine (NDS over IPX/SPX)	130
7.4.1 [External Server Settings]	130
7.4.2 [General Settings]	131
7.4.3 [Administrative Setting]	131
7.4.4 [Default Function Permission]	132
7.4.5 [NetWare Settings]	132
7.5 Restricting users of this machine (NDS over TCP/IP)	133
7.5.1 [TCP/IP Settings]	133
7.5.2 [External Server Settings]	134
7.5.3 [General Settings]	135
7.5.4 [Administrative Setting]	135
7.5.5 [Default Function Permission]	135
7.6 Restricting users of this machine (LDAP)	136
7.6.1 [TCP/IP Settings]	136
7.6.2 [External Server Settings]	137
7.6.3 [General Settings]	138
7.6.4 [Administrative Setting]	138
7.6.5 [Default Function Permission]	138
7.6.6 LDAP over SSL	139
[External Server Settings]	139
[Setting Up LDAP]	139
[Certificate Verification Setting]	140
8 Reinforcing security	142
8.1 Registering the certificate of this machine for SSL communications	142
8.1.1 [Device Certificate Setting]	143
8.1.2 [Create and install a self-signed Certificate]	144
8.1.3 [Request a Certificate]	145
8.1.4 [Install a Certificate]	146
8.1.5 [Import a Certificates]	147
8.1.6 [SSL Setting]	147
8.1.7 [Remove a Certificate]	148
8.2 Using device certificates depending on protocol	149
8.2.1 [Device Certificate Setting]	150
8.2.2 [Protocol Setting]	150
8.3 Managing a device certificate	151
8.3.1 [Device Certificate Setting]	151
8.3.2 [Export Certificate]	151
8.4 Registering a user certificate in this machine	153
8.4.1 [E-mail]	154
8.4.2 [Automatically Obtain Certificates]	155
8.4.3 Certificate validation	156
[Certificate Verification Level Settings]	156
[Certificate Verification Setting]	156
8.5 Restricting the use of the SMB address registered in the address book	158
8.5.1 [TCP/IP Settings]	159
8.5.2 User Authentication	159
8.5.3 [Scan to Authorized Folder Settings]	159
8.5.4 [Client Setting]	159
8.5.5 [WINS Setting]	159
8.5.6 [Direct Hosting Setting]	159
8.5.7 [LLMNR Setting]	159
8.6 Using Web services to secure communication from Vista/Server 2008/7 to this machine via SSL	160
8.6.1 [TCP/IP Settings]	160
8.6.2 [Device Certificate Setting]	160
8.6.3 [Web Service Common Settings]	160
8.7 Using Web services to establish an SSL communication from this machine to Vista/Server 2008/7	161
8.7.1 [TCP/IP Settings]	161
8.7.2 [Web Service Common Settings]	161
[Certificate Verification Setting]	162
8.8 Filtering IP addresses	163
8.8.1 [TCP/IP Settings]	163
8.8.2 [IP Filtering]	163
8.9 Communicating using IPsec	165
8.9.1 [TCP/IP Settings]	165
8.9.2 [IPsec]	166
8.9.3 [IKE]	166
[IKE Settings]	167
8.9.4 [SA]	167
[SA Setting]	167
8.9.5 [Peer]	168
8.10 Using IEEE802.1X authentication	169
8.10.1 [TCP/IP Settings]	169
8.10.2 [Device Certificate Setting]	169
8.10.3 [IEEE802.1x Authentication Setting]	170
8.10.4 Certificate validation	171
[IEEE802.1x Authentication Setting]	171
[Certificate Verification Setting]	172
8.10.5 [IEEE802.1X Authentication Trial]	173
8.11 Managing external certificates	174
[External Certificate Setting]	174
8.12 Limiting accessible destinations for each user	176
[Address Reference Setting]	176
8.13 Restricting Registration and Change by a User	177
[Restrict User Access]	177
8.14 Setting copy security	178
[Copy Security]	178
8.15 Configuring the administrator password	179
[Administrator Password Setting]	179
8.16 Configuring the function permission of the public user	180
[Public User]	180
8.17 Restricting Users' Direct Entry of Destinations	182
[Scan to Authorized Folder Settings]	182
9 Cooperating with applications	184
9.1 Using applications that communicate with this machine with TCP Socket	184
9.1.1 [TCP/IP Settings]	184
9.1.2 [Device Certificate Setting]	184
9.1.3 [TCP Socket Setting]	185
9.2 Linking an OpenAPI system with this machine	186
9.2.1 [TCP/IP Settings]	186
9.2.2 [SSDP Settings]	187
9.2.3 [Device Certificate Setting]	187
9.2.4 [OpenAPI Setting]	188
9.2.5 Certificate validation	189
[Certificate Verification Level Settings]	189
[Certificate Verification Setting]	190
9.3 Using the FTP server and WebDAV server functions	191
9.3.1 [TCP/IP Settings]	191
9.3.2 [Device Certificate Setting]	191
9.3.3 [FTP Server Setting]	192
9.3.4 [WebDAV Server Settings]	193
9.4 Canceling the connection with applications	194
[System Connection Setting]	194
10 Managing	196
10.1 Specifying the date and time of this machine	196
10.1.1 [Manual Setting]	197
10.1.2 [TCP/IP Settings]	197
10.1.3 [Time Zone]	197
10.1.4 [Time Adjustment Setting]	198
10.2 Searching for the E-mail address in the LDAP server	199
10.2.1 [TCP/IP Settings]	199
10.2.2 [LDAP Setting]	200
10.2.3 [Setting Up LDAP]	201
10.2.4 LDAP over SSL	202
[Setting Up LDAP]	202
[Certificate Verification Setting]	203
10.2.5 DNS server setting	204
10.2.6 [Date/Time Setting]	204
10.3 Displaying this machine on the network map	205
10.3.1 [TCP/IP Settings]	205
10.3.2 [LLTD Setting]	205
10.4 Monitoring this machine by SNMP Manager	206
10.4.1 [TCP/IP Settings]	206
10.4.2 [NetWare Settings]	206
10.4.3 [SNMP Setting]	207
10.5 Reporting the status of this machine (by E-mail)	209
10.5.1 [TCP/IP Settings]	209
10.5.2 [E-mail TX (SMTP)]	209
10.5.3 [Status Notification Setting]	210
10.5.4 SMTP over SSL/Start TLS	211
10.5.5 SMTP Authentication	211
10.5.6 POP before SMTP	211
10.5.7 POP over SSL	211
10.5.8 APOP Authentication	211
10.6 Reporting the status of this machine (TRAP)	212
10.6.1 [TCP/IP Settings]	212
10.6.2 [NetWare Settings]	213
10.6.3 [TRAP Setting]	213
10.6.4 [Status Notification Setting]	214
10.7 Reporting the counter information of this machine (by E-mail)	215
10.7.1 [TCP/IP Settings]	215
10.7.2 [E-mail TX (SMTP)]	216
10.7.3 [Total Counter Notification Settings]	217
10.7.4 SMTP over SSL/Start TLS	218
10.7.5 SMTP Authentication	218
10.7.6 POP before SMTP	218
10.7.7 POP over SSL	218
10.7.8 APOP Authentication	218
10.8 Checking the counter of this machine	219
[Meter Counter]	219
10.9 Checking the machine ROM version	220
[ROM Version]	220
10.10 Importing and exporting the machine configuration information	221
[Import/Export]	221
10.11 Using the timer functions	222
[Power Save Setting]	222
[Weekly Timer Setting]	223
10.12 Displaying a network error code	224
[Network Error Code Display Setting]	224
10.13 Initializing the configuration information	225
[Network Setting Clear]	225
[Reset]	225
[Format All Destination]	226
10.14 Enhancing the functions of this machine	227
[Get Request Code]	227
[Install License]	228
10.15 Outputting job logs	229
[Create Job Log]	229
[Download Job Log]	230
10.16 Configuring settings for printing blank pages	231
[Blank Page Print Settings]	231
10.17 Configuring settings for skipping jobs	232
[Skip Job Operation Settings]	232
10.18 Configuring Outline PDF Settings	233
[Outline PDF Setting]	233
11 Registering	235
11.1 Registering Font or Macro	235
[Edit Font/Macro]	235
11.2 Registering machine information	236
[Machine Setting]	236
11.3 Registering support information	237
[Register Support Information]	237
11.4 Register Header/Footer Program	238
[Header/Footer Registration]	238
11.5 Registering Address Book	240
[Store Address]	240
[Icon]	244
11.6 Registering a group	245
[Group]	245
11.7 Registering a program destination	246
[Program]	246
11.8 Registering Temporary One-Touch Destination	261
[Temporary One-Touch]	261
11.9 Registering the E-mail subject and body	262
[Subject]	262
[Text]	262
11.10 Simplifying entering E-mail addresses	263
[Prefix/Suffix]	263
11.11 Using Data Management Utility	264
11.11.1 Starting up Data Management Utility	264
11.11.2 Managing copy protect data	265
[Copy Protect List]	265
[System]	266
[Edit]	266
11.11.3 Managing stamp Data	267
[Stamp List]	267
[System]	268
[Edit]	268
11.11.4 Managing font or macro	269
[Font/Macro List]	269
[System]	270
[Add]	270
12 Configuring Settings for User Box Functions	272
12.1 Configuring the environmental settings for using User Boxes	272
[Delete Unused User Box]	272
[Delete Secure Print File]	273
[Delete Time Setting]	274
[Document Delete Time Setting]	275
[Document Hold Setting]	276
[External Memory Function Settings]	277
[User Box Operation]	278
[ID & Print Delete Time]	279
12.2 Specifying the maximum number of Public User Boxes	280
[Public User Box Setting]	280
12.3 Changing User Box settings	281
[Open User Box]	281
12.4 Creating new User Boxes	283
[Create User Box]	283
12.5 Changing System User Box settings	285
[Open System User Box]	285
12.6 Creating a new System User Box	287
[Create System User Box]	287
13 Configuring Settings for Printer Function	291
13.1 Configuring initial settings for the printer function	291
[Basic Setting]	291
13.2 Configuring the initial settings for the PCL print function	293
[PCL Setting]	293
13.3 Configuring the initial settings for the PS print function	294
[PS Setting]	294
13.4 Configuring the initial settings for the TIFF print function	295
[TIFF Setting]	295
13.5 Configuring the initial settings for the XPS print function	296
[XPS Settings]	296
13.6 Specifying the timeout of the interface	297
[Interface Setting]	297
13.7 Disabling the direct print function	298
Direct Print Settings	298
13.8 Restricting users from obtaining device information using password	299
[Assign Account to Acquire Device Info]	299
14 Configuring Settings for Fax Functions	301
14.1 Configuring Settings to Print a Stamp when Sending a Fax	301
[Fax TX Settings]	301
14.2 Configuring Settings to Print the Header/Footer Position	302
[Header/Footer Position]	302
14.3 Configuring settings for telephone and fax lines	303
[Line Parameter Setting]	303
14.4 Configuring settings to send or receive faxes	305
[TX/RX Settings]	305
14.5 Configuring settings for the fax functions	307
[Function ON/OFF Setting]	307
[Memory RX Setting]	308
[Closed Network RX]	309
[Forward TX Setting]	310
[Incomplete TX Hold]	311
[PC-Fax RX Setting]	312
[TSI User Box Settings]	313
[TSI User Box Registration]	314
14.6 Configuring Settings for PBX Connection	315
[PBX Connection Setting]	315
14.7 Configuring Settings to Output Fax Reports	316
[Report Settings]	316

Match case Limit results 1 per page

bizhub 423/363/283/223

10-8

10.2

Searching for the E-mail address in the LDAP server

10.2.4

LDAP over SSL

[Setting Up LDAP]

In the administrator mode of

PageScope Web Connection

, select [Network]

[LDAP Settings]

[Setting

Up LDAP]

[Edit].

[Authentication

Method]

Select the authentication method to log in to the LDAP

server.

The authentication method must match that used in the

LDAP server.

If [anonymous] is selected, [Login Name], [Password], and

[Domain Name] can be omitted.

If [GSS-SPNEGO] is selected, log in to the server in the

Kerberos authentication method. The Kerberos authenti-

cation method is supported by Active Directory.

Server authentica-

tion method

[Login Name]

Enter the login name to log in to the LDAP server (up to

255 bytes).

[Password is

changed.]

Select this check box to change the password.

[Password]

Enter the password to log in to the LDAP server (up to 128

bytes, excluding space and ").

[Domain Name]

Enter the domain name to log in to the LDAP server (up to

64 characters).

If [GSS-SPNEGO] is selected, enter the domain name of

Active Directory.

•

Authentication

Method

•

Domain name

[Select Sever Au-

thentication Meth-

od]

Select the server authentication method.

Select [Set Value] to use the settings of [Login Name],

[Password], and [Domain Name].

Select [User Authentication] to use the user name and

password specified for user authentication.

If [Dynamic Authentication] is selected, the system

prompts you to enter the user name and password at

LDAP searching.

[Use Referral]

Select whether to use the referral function.

Make an appropriate choice to fit the LDAP server envi-

ronment.

[Search Condition

Attributes]

Select the attribute of the name used for LDAP searching.

You can toggle this attribute between [Name] (cn) and

[Nickname] (displayName).

Name attribute

[Initial Setting for

Search Details]

Specify LDAP search conditions.

Item

Description

Prior check

Item

Description

Prior check

[Enable SSL]

Select this check box to encrypt an SSL communication

between this machine and the LDAP server.

Does the server sup-

port SSL?

[Port Number

(SSL)]

Enter the port number to be used for SSL communication.

Default setting: 636

Server port number

[Certificate Verifi-

cation Level Set-

tings]

To verify the server certificate, configure settings to verify

the certificate.

[Validity Period]

Select whether to check that the server certificate is within

the validity period.

[CN]

Select whether to check that the CN of the server certifi-

cate matches the server address.

[Key Usage]

Select whether to check that the server certificate is used

according to the purpose approved by the issuer.