Lexmark MB2546 Embedded Web Server--Security Administrator s Guide - Page 21

Editing or deleting an Active Directory login method, General Information, Device Credentials

Get Lexmark MB2546 PDF manuals and user guides View all Lexmark MB2546 manuals
Add to My Manuals
Save this manual to your list of manuals

Page 21 highlights

Managing login methods 21 Editing or deleting an Active Directory login method 1 From the Embedded Web Server, click Settings > Security > Login Methods. 2 From the Network Accounts section, click the Active Directory login method. 3 Do either of the following: • To delete the login method, click Unjoin Domain. • Configure the following settings, and then click Save and Verify. General Information - Setup Name-Type a unique name for the Active Directory login method. - Server Address-Type the IP address or the host name of the LDAP server. - Server Port-Enter the port where queries are sent. - Required User Input-Select the required authentication credentials when logging in to the printer. - Use Integrated Windows Authentication-Select one of the following: • Do not use • Use if available-Use Windows operating system authentication credentials, if available. • Require-Use only Windows operating system authentication credentials. Device Credentials - Use Active Directory Device Credentials-Use user credentials and group designations that are pulled from the existing network comparable to other network services. - If Use Active Directory Device Credentials is disabled, then provide the authentication credentials used to bind the printer with the Active Directory server. • Device Username-Type the fully qualified DN of a user registered to the Active Directory server. • Device Realm-The Active Directory domain name. • Device Password-Type the password for the user. Advanced Options - Use SSL/TLS-If the LDAP server requires SSL, then select SSL/TLS. - Require Certificate-If the LDAP server requires a certificate, then select Yes. - Userid Attribute-Type the LDAP attribute to search for when authenticating users' credentials. The default value is sAMAccountName, which is common in a Windows environment. For other directories, you can type uid, cn, or a user-defined attribute. For more information, contact your system administrator. - Mail Attribute-Type the LDAP attribute that contains the users' e-mail addresses. The default value is mail. - Fax number Attribute-Type the LDAP attribute that contains the users' fax number. The default value is facsimiletelephonenumber. - Full Name Attribute-Type the LDAP attribute that contains the users' full names. The default value is cn. - Home Directory Attribute-Type the LDAP attribute that contains the users' home directory. The default value is homeDirectory. - Group Membership Attribute-Type the LDAP attribute required for group search. The default value is memberOf.

  • 1
  • 2
  • 3
  • 4
  • 5
  • 6
  • 7
  • 8
  • 9
  • 10
  • 11
  • 12
  • 13
  • 14
  • 15
  • 16
  • 17
  • 18
  • 19
  • 20
  • 21
  • 22
  • 23
  • 24
  • 25
  • 26
  • 27
  • 28
  • 29
  • 30
  • 31
  • 32
  • 33
  • 34
  • 35
  • 36
  • 37
  • 38
  • 39
  • 40
  • 41
  • 42
Editing or deleting an Active Directory login method
1
From the Embedded Web Server, click
Settings
>
Security
>
Login Methods
.
2
From the Network Accounts section, click the Active Directory login method.
3
Do either of the following:
To delete the login method, click
Unjoin Domain
.
Configure the following settings, and then click
Save and Verify
.
General Information
Setup Name
—Type a unique name for the Active Directory login method.
Server Address
—Type the IP address or the host name of the LDAP server.
Server Port
—Enter the port where queries are sent.
Required User Input
—Select the required authentication credentials when logging in to the printer.
Use Integrated Windows Authentication
—Select one of the following:
Do not use
Use if available
—Use Windows operating system authentication credentials, if available.
Require
—Use only Windows operating system authentication credentials.
Device Credentials
Use Active Directory Device Credentials
—Use user credentials and group designations that are
pulled from the existing network comparable to other network services.
If
Use Active Directory Device Credentials
is disabled, then provide the authentication credentials
used to bind the printer with the Active Directory server.
Device Username
—Type the fully qualified DN of a user registered to the Active Directory server.
Device Realm
—The Active Directory domain name.
Device Password
—Type the password for the user.
Advanced Options
Use SSL/TLS
—If the LDAP server requires SSL, then select
SSL/TLS
.
Require Certificate
—If the LDAP server requires a certificate, then select
Yes
.
Userid Attribute
—Type the LDAP attribute to search for when authenticating users’ credentials. The
default value is
sAMAccountName
, which is common in a Windows environment. For other
directories, you can type
uid
,
cn
, or a user-defined attribute. For more information, contact your
system administrator.
Mail Attribute
—Type the LDAP attribute that contains the users’ e-mail addresses. The default value
is
mail
.
Fax number Attribute
—Type the LDAP attribute that contains the users’ fax number. The default
value is
facsimiletelephonenumber
.
Full Name Attribute
—Type the LDAP attribute that contains the users’ full names. The default value
is
cn
.
Home Directory Attribute
—Type the LDAP attribute that contains the users’ home directory. The
default value is
homeDirectory
.
Group Membership Attribute
—Type the LDAP attribute required for group search. The default value
is
memberOf
.
Managing login methods
21