Ricoh Aficio MP C3000 Security Guide - Page 60

Operational Requirements for LDAP Authentication

Get Ricoh Aficio MP C3000 PDF manuals and user guides View all Ricoh Aficio MP C3000 manuals
Add to My Manuals
Save this manual to your list of manuals

Page 60 highlights

User Authentication ❖ Operational Requirements for LDAP Authentication To specify LDAP authentication, the following requirements must be met: • The Printer/Scanner unit must be installed. • The network configuration must allow the machine to detect the presence of the LDAP server. • When SSL is being used, TLSv1, SSLv2, or SSLv3 can function on the LDAP server. • The LDAP server must be registered in the machine. 2 For details about registration, see Network Guide. Limitation ❒ Under LDAP authentication, you cannot specify access limits for groups reg- istered in the LDAP Server. ❒ When using LDAP Authentication, you cannot use reference functions in LDAP Search for servers using SSL. ❒ Enter the user's login user name using up to 32 characters and login password using up to 128 characters. ❒ Do not use double-byte Japanese, Traditional Chinese, Simplified Chinese, or Hangul characters when entering the login user name or password. If you use double-byte characters , you cannot authenticate using Web Image Monitor. Note ❒ Under LDAP Authentication, if "Anonymous Authentication" in the LDAP server's settings is not set to "Prohibit", users who do not have an LDAP server account might still be able to gain access. ❒ If the LDAP server is configured using Windows Active Directory, Anonymous Authentication might be available. If Windows Authentication is available, we recommend you use it. ❒ The first time an unregistered user accesses the machine after LDAP authentication has been specified, the user is registered in the machine and can use the functions available under Function Permissions during LDAP Authentication. ❒ To limit the available functions for each user, register each user and corresponding Function Permissions setting in the address book, or specify Function Permissions for each registered user. The Function Permissions setting becomes effective when the user accesses the machine subsequently. 51

  • 1
  • 2
  • 3
  • 4
  • 5
  • 6
  • 7
  • 8
  • 9
  • 10
  • 11
  • 12
  • 13
  • 14
  • 15
  • 16
  • 17
  • 18
  • 19
  • 20
  • 21
  • 22
  • 23
  • 24
  • 25
  • 26
  • 27
  • 28
  • 29
  • 30
  • 31
  • 32
  • 33
  • 34
  • 35
  • 36
  • 37
  • 38
  • 39
  • 40
  • 41
  • 42
  • 43
  • 44
  • 45
  • 46
  • 47
  • 48
  • 49
  • 50
  • 51
  • 52
  • 53
  • 54
  • 55
  • 56
  • 57
  • 58
  • 59
  • 60
  • 61
  • 62
  • 63
  • 64
  • 65
  • 66
  • 67
  • 68
  • 69
  • 70
  • 71
  • 72
  • 73
  • 74
  • 75
  • 76
  • 77
  • 78
  • 79
  • 80
  • 81
  • 82
  • 83
  • 84
  • 85
  • 86
  • 87
  • 88
  • 89
  • 90
  • 91
  • 92
  • 93
  • 94
  • 95
  • 96
  • 97
  • 98
  • 99
  • 100
  • 101
  • 102
  • 103
  • 104
  • 105
  • 106
  • 107
  • 108
  • 109
  • 110
  • 111
  • 112
  • 113
  • 114
  • 115
  • 116
  • 117
  • 118
  • 119
  • 120
  • 121
  • 122
  • 123
  • 124
  • 125
  • 126
  • 127
  • 128
  • 129
  • 130
  • 131
  • 132
  • 133
  • 134
  • 135
  • 136
  • 137
  • 138
  • 139
  • 140
  • 141
  • 142
  • 143
  • 144
  • 145
  • 146
  • 147
  • 148
  • 149
  • 150
  • 151
  • 152
  • 153
  • 154
  • 155
  • 156
  • 157
  • 158
  • 159
  • 160
  • 161
  • 162
  • 163
  • 164
  • 165
  • 166
  • 167
  • 168
  • 169
  • 170
  • 171
  • 172
  • 173
  • 174
  • 175
  • 176
  • 177
  • 178
  • 179
  • 180
  • 181
  • 182
  • 183
  • 184
  • 185
  • 186
  • 187
  • 188
  • 189
  • 190
  • 191
  • 192
  • 193
  • 194
  • 195
  • 196
  • 197
  • 198
  • 199
  • 200
  • 201
  • 202
  • 203
  • 204
  • 205
  • 206
  • 207
  • 208
  • 209
  • 210
  • 211
  • 212
  • 213
  • 214
  • 215
  • 216
  • 217
  • 218
  • 219
  • 220
  • 221
  • 222
  • 223
  • 224
  • 225
  • 226
  • 227
  • 228
  • 229
  • 230
  • 231
  • 232
  • 233
  • 234
  • 235
  • 236
User Authentication
51
2
Operational Requirements for LDAP Authentication
To specify LDAP authentication, the following requirements must be met:
The Printer/Scanner unit must be installed.
The network configuration must allow the machine to detect the presence
of the LDAP server.
When SSL is being used, TLSv1, SSLv2, or SSLv3 can function on the LDAP
server.
The LDAP server must be registered in the machine.
For details about registration, see Network Guide.
Limitation
Under LDAP authentication, you cannot specify access limits for groups reg-
istered in the LDAP Server.
When using LDAP Authentication, you cannot use reference functions in
LDAP Search for servers using SSL.
Enter the user’s login user name using up to 32 characters and login password
using up to 128 characters.
Do not use double-byte Japanese, Traditional Chinese, Simplified Chinese, or
Hangul characters when entering the login user name or password. If you use
double-byte characters , you cannot authenticate using Web Image Monitor.
Note
Under LDAP Authentication, if “Anonymous Authentication” in the LDAP
server’s settings is not set to "Prohibit", users who do not have an LDAP serv-
er account might still be able to gain access.
If the LDAP server is configured using Windows Active Directory, Anony-
mous Authentication might be available. If Windows Authentication is avail-
able, we recommend you use it.
The first time an unregistered user accesses the machine after LDAP authen-
tication has been specified, the user is registered in the machine and can use
the functions available under Function Permissions during LDAP Authenti-
cation.
To limit the available functions for each user, register each user and corre-
sponding Function Permissions setting in the address book, or specify Func-
tion Permissions for each registered user. The Function Permissions setting
becomes effective when the user accesses the machine subsequently.