Lexmark X652DE Common Criteria Installation Supplement and Administrator Guide - Page 42

"Client [NAME] unknown" error message This error indicates the KDC being used to authenticate the user does not recognize the User Principle Name specified in the error message 1 From the Embedded Web Server, click Settings > Embedded Solutions > PKI Authentication >Configure. 2 If the Simple Kerberos Setup has been configured in PKI Authentication, verify that the IP address or hostname of the Domain Controller is correct. 3 If you are using a Kerberos configuration file, verify that the Domain Controller entry is correct. Login hangs for a long time at "Getting User Info..." For information about LDAP-related issues, see"LDAP Issues" on page 42. User is logged out almost immediately after logging in Try increasing the Panel Login Timeout interval: 1 From the Embedded Web Server, click Settings > Security > Miscellaneous Security Settings > Login Restrictions. 2 Increase the time (in seconds) of the Panel Login Timeout. LDAP Issues LDAP lookups take a long time, and then may or may not work This normally occurs either during login (at "Getting User Info"), or during address book searches. PORT 389 (NON-SSL) OR PORT 636 (SSL) IS BLOCKED BY A FIREWALL These ports are used by the printer to communicate with the LDAP server, and must be open in order for LDAP lookups to work. REVERSE DNS LOOKUPS ARE DISABLED ON THE NETWORK The printer uses reverse DNS lookups to verify IP addresses. If reverse lookup is disabled on the network: 1 From the Embedded Web Server, click Settings > Embedded Solutions > PKI Authentication > Configure. 2 Select Disable Reverse DNS Lookups. 3 Click Apply. LDAP REFERRALS ARE ENABLED 1 From the Embedded Web Server, click Settings > Embedded Solutions > PKI Authentication > Configure. 2 Select Disable LDAP Referrals. Note: Leaving LDAP referrals enabled can increase LDAP search times. 42