Dell B3465dnf Mono Embedded Web Server -- Security Administrators Guide - Page 16
To add a new LDAP+GSSAPI setup
View all Dell B3465dnf Mono manuals
Add to My Manuals
Save this manual to your list of manuals |
Page 16 highlights
Using security features in the Embedded Web Server 16 To add a new LDAP+GSSAPI setup 1 From the Embedded Web Server, click Settings > Security > Security Setup. 2 Under Advanced Security Setup, click LDAP+GSSAPI. 3 Click Add an LDAP+GSSAPI Setup. The setup dialog is divided into four parts: General Information • Setup Name-This name will be used to identify each particular LDAP+GSSAPI Server Setup when creating security templates. • Server Address-Type the IP address or the host name of the LDAP server where the authentication will be performed. • Server Port-This is the port used by the Embedded Web Server to communicate with the LDAP server. The default LDAP port is 389. • Use SSL/TLS-From the drop‑down menu, select None, SSL/TLS (Secure Sockets Layer/Transport Layer Security), or TLS. • Userid Attribute-Type either cn (common name), uid, userid, or user‑defined. • Mail Attribute-Type a maximum of 48 characters to uniquely identify e‑mail addresses. The default value is "mail." • Full Name Attribute-Type a maximum of 48 characters. • Search Base-This is the node in the LDAP server where user accounts reside. Multiple search bases may be entered, separated by commas. Note: A search base consists of multiple attributes separated by commas, such as cn (common name), ou (organizational unit), o (organization), c (country), and dc (domain). • Search Timeout-Enter a value from 5 to 30 seconds or 5 to 300 seconds depending on your printer model. • Use Kerberos Service Ticket-If selected, then a Kerberos ticket is presented to the LDAP server using the GSSAPI protocol to obtain access. Device Credentials • Use Active Directory Device Credentials-If selected, then user credentials and group designations can be pulled from the existing network comparable to other network services. • MFP Kerberos Username-Type the distinguished name of the print server or servers. • MFP's Password-Type the Kerberos password for the print server or servers. Search specific object classes • person-If selected, then the "person" object class will also be searched. • Custom Object Class-If selected, then this custom search object class will also be searched. The administrator can define up to three custom search object classes (optional). LDAP Group Names • Administrators can associate as many as 32 named groups stored on the LDAP server by entering identifiers for those groups under the Group Search Base list. Both the Short name for group and Group Identifier must be provided. • When creating security templates, the administrator can pick groups from this setup for controlling access to device functions. 4 Click Submit to save the changes, or Cancel to return to previous values.