Konica minolta Au-211p User manual

User’s Guide

Authentication Unit AU-211P

AU-211P 1-1

Table of contents

1Introduction

2 Getting Started

2.1 Product Overview............................................................................................................................ 2-2

Use conditions ................................................................................................................................... 2-2

2.2 Part Names and their Functions.................................................................................................... 2-3

2.3 Pre-Setting....................................................................................................................................... 2-4

2.3.1 Configuring Network Settings.............................................................................................................2-4

[TCP/IP].............................................................................................................................................. 2-4

[IPv4] .................................................................................................................................................. 2-4

[IPv6] .................................................................................................................................................. 2-4

[DNS Host] ......................................................................................................................................... 2-5

[DNS Domain Name Setting].............................................................................................................. 2-5

2.3.2 Registering Active Directory for Authentication..................................................................................2-6

2.3.3 Adjusting the MFP Time......................................................................................................................2-6

2.3.4 Registering the DNS Server Associated with Active Directory ...........................................................2-7

[DNS Server Setting(IPv4)] ................................................................................................................. 2-7

[DNS Server Setting(IPv6)] ................................................................................................................. 2-7

2.3.5 Setting PIV Transitional Mode.............................................................................................................2-7

2.3.6 Configuring Settings for Verifying the Active Directory Certificate .....................................................2-8

[Certificate Verification Setting].......................................................................................................... 2-8

[Certificate Verification Settings]........................................................................................................ 2-8

[External Certificate Setting] .............................................................................................................. 2-9

2.3.7 Enabling TPM (Trusted Platform Module)...........................................................................................2-9

[TPM Function Settings]..................................................................................................................... 2-9

[SSL Setting] ...................................................................................................................................... 2-9

2.3.8 Setting the Power Saving Mode .........................................................................................................2-9

2.4 Operation Settings ........................................................................................................................ 2-10

2.4.1 Settings to Change before Starting Operation .................................................................................2-10

[TCP Socket Setting]........................................................................................................................ 2-10

[WebDAV Server Settings] ............................................................................................................... 2-10

[FTP Server Settings] ....................................................................................................................... 2-10

[SNMP Setting]................................................................................................................................. 2-10

2.4.2 Settings to Change after Initialization was Completed.....................................................................2-10

[HTTP Server Settings]..................................................................................................................... 2-10

[OpenAPI Setting]............................................................................................................................. 2-10

3 How to Use the Authentication Unit

3.1 Login and Logout ............................................................................................................................ 3-2

3.1.1 Login ...................................................................................................................................................3-2

3.1.2 Logout.................................................................................................................................................3-3

3.2 Functions Using the PKI Card Authentication System................................................................ 3-4

3.3 Address Search (LDAP) Using PKI card ....................................................................................... 3-5

3.3.1 Overview .............................................................................................................................................3-5

3.3.2 Related Settings..................................................................................................................................3-5

[Enabling LDAP] ................................................................................................................................. 3-5

[Setting Up LDAP] .............................................................................................................................. 3-6

3.3.3 LDAP Search Method .........................................................................................................................3-7

3.4 SMB TX using PKI card .................................................................................................................. 3-8

3.4.1 Overview .............................................................................................................................................3-8

3.4.2 Related Settings..................................................................................................................................3-9

[Client Setting].................................................................................................................................... 3-9

AU-211P 1-2

3.4.3 SMB TX Method................................................................................................................................3-10

SMB TX ............................................................................................................................................ 3-10

SMB destination search................................................................................................................... 3-11

3.5 Scan to E-mail (S/MIME) using PKI card .................................................................................... 3-12

3.5.1 Overview ...........................................................................................................................................3-12

3.5.2 Related Settings................................................................................................................................3-13

[S/MIME] .......................................................................................................................................... 3-13

3.5.3 Encrypting an E-Mail and Adding a Digital Signature.......................................................................3-14

3.6 PDF Encryption and Signature Addition using PKI Card........................................................... 3-15

3.6.1 Overview ...........................................................................................................................................3-15

3.6.2 Encrypting a PDF Document ............................................................................................................3-16

3.6.3 Adding a Signature to a PDF Document...........................................................................................3-17

3.7 PKI Card Print................................................................................................................................ 3-18

3.7.1 Overview ...........................................................................................................................................3-18

3.7.2 Installing the Printer Driver................................................................................................................3-19

System environment requirements .................................................................................................. 3-19

Installation method........................................................................................................................... 3-20

3.7.3 Specifying the Print Data Deletion Time ...........................................................................................3-20

[PKI Encryption Document Delete Time Setting] ............................................................................. 3-20

3.7.4 PKI Card Print Method......................................................................................................................3-21

Sending print data (Printer driver setting) ........................................................................................ 3-21

MFP printing..................................................................................................................................... 3-23

3.8 Scan To Me.................................................................................................................................... 3-26

3.8.1 Overview ...........................................................................................................................................3-26

3.8.2 Related Settings................................................................................................................................3-27

Obtaining the e-mail address........................................................................................................... 3-27

[E-mail TX (SMTP)] ........................................................................................................................... 3-27

[S/MIME] .......................................................................................................................................... 3-27

3.8.3 Handling Scan To Me .......................................................................................................................3-27

3.9 Scan To Home ............................................................................................................................... 3-28

3.9.1 Overview ...........................................................................................................................................3-28

3.9.2 Related Settings................................................................................................................................3-28

Obtaining the Home folder position................................................................................................. 3-28

[Client Setting].................................................................................................................................. 3-28

[Scan to Home Settings] .................................................................................................................. 3-29

3.9.3 Handling Scan To Home...................................................................................................................3-29

4 Added or Changed Setting Information

4.1 [Administrator] ................................................................................................................................ 4-2

4.1.1 [System Settings] ................................................................................................................................4-2

[User Box Setting] .............................................................................................................................. 4-2

4.1.2 [User Auth/Account Track]..................................................................................................................4-2

[General Settings]............................................................................................................................... 4-2

[External Server Settings]................................................................................................................... 4-2

[PKI Card Authentication]................................................................................................................... 4-2

[Certificate Verification Setting].......................................................................................................... 4-2

4.1.3 [Network].............................................................................................................................................4-3

[FTP Setting] ...................................................................................................................................... 4-3

[SMB Setting] ..................................................................................................................................... 4-3

[LDAP Setting].................................................................................................................................... 4-3

[E-mail Setting]................................................................................................................................... 4-3

[SNMP Setting]................................................................................................................................... 4-3

[TCP Socket Setting].......................................................................................................................... 4-4

[WebDAV Settings]............................................................................................................................. 4-4

4.1.4 [Security] .............................................................................................................................................4-4

[Security Details] ................................................................................................................................ 4-4

[Job Log Settings].............................................................................................................................. 4-4

AU-211P 1-3

5 Appendix

5.1 Product Specifications ................................................................................................................... 5-2

5.2 Cleaning the Authentication Unit................................................................................................... 5-2

5.3 Troubleshooting .............................................................................................................................. 5-2

1Introduction

AU-211P 1-2

1Introduction

Thank you for choosing this device.

This User's Guide provides descriptions of the operating procedures and precautions for using Authentica-

tion Unit (IC Card Type) AU-211P. Carefully read this User's Guide before using this device.

The actual screens that appear may be slightly different from the screen images used in this User's Guide.

Trademark/copyright acknowledgements

-Microsoft®and Windows®are either registered trademarks or trademarks of Microsoft Corporation in

the United States and/or other countries.

-All other company names and product names mentioned in this User's Guide are either registered

trademarks or trademarks of their respective companies.

Restrictions

-Unauthorized use or reproduction of this User's Guide, whether in its entirety or in part, is strictly pro-

hibited.

-The information contained in this User's Guide is subject to change without notice.

2Getting Started

AU-211P 2-2

2.1 Product Overview 2

2 Getting Started

2.1 Product Overview

This product is a PKI card authentication unit that scans the PKI card (CAC or PIV card) to perform personal

authentication.

Connecting this unit enables you to run a PKI card authentication system (hereinafter referred to as "this sys-

tem") that uses the PKI card authentication unit on the MFP.

Using this system will enable you to carry out operations without making a password public on the network,

and to configure the system environment with a higher level of security. You can also implement the unique

functions using this system on the MFP.

Use conditions

The following conditions are required to use this system.

-PKI card authentication unit (This unit)

-MFP compatible with PKI card authentication system

-PKI card available for PIV and CAC

-User management using Active Directory (Kerberos authentication + PKINIT)

NOTICE

Do not disconnect the USB cable while using this unit. Doing so may cause this system to become unstable.

2.2 Part Names and their Functions 2

AU-211P 2-3

2.2 Part Names and their Functions

No. Part name Description

1 Card inlet Used to insert the PKI card.

2 LED lamp Turns green when you insert a PKI card into this unit.

Blinks green during authentication.

3 USB cable Used to connect this device to the MFP.

AU-211P 2-4

2.3 Pre-Setting 2

2.3 Pre-Setting

To use this system, pre-configure the following settings on the MFP.

-Configuring Network Settings (p. 2-4)

-Registering Active Directory for Authentication (p. 2-6)

-Adjusting the MFP Time (p. 2-6)

-Registering the DNS Server Associated with Active Directory (p. 2-7)

-Setting PIV Transitional Mode (p. 2-7)

-Configuring Settings for Verifying the Active Directory Certificate (p. 2-8)

-Setting the Power Saving Mode (p. 2-9)

2.3.1 Configuring Network Settings

Configure the basic settings required to use the MFP in network environment.

[TCP/IP]

Select [Utility] - [Administrator] - [Network] - [TCP/IP Setting] - [TCP/IP Setting1], and set [TCP/IP] to ON

(default: ON).

[IPv4]

Select [Utility] - [Administrator] - [Network] - [TCP/IP Setting] - [TCP/IP Setting1] - [IPv4], and configure the

following settings.

[IPv6]

Select [Utility] - [Administrator] - [Network] - [TCP/IP Setting] - [TCP/IP Setting1] - [IPv6], and configure the

following settings.

Item Description

[IP Address Setting Method] Select the method to specify the IP address of the MFP depending on

your environment (default: [Auto Setting]). To manually specify the IP ad-

dress, select [Manual Setting]. To automatically specify the IP address

using DHCP, select [Auto Setting], and specify the automatic setting

method.

[IP Address] Enter the fixed IP address assigned to the MFP when manually configur-

ing the setting.

[Subnet Mask] Enter the subnet mask when manually configuring the setting.

[Default Gateway] When directly entering the IP address, specify the default gateway of the

network to be connected.

Item Description

[IPv6] When using IPv6, set this option to ON (default: ON).

[Auto IPv6 Setting] When automatically specifying the IPv6 global address, set this option to

ON (default: ON). The IPv6 global address is automatically set based on

the prefix length notified from the router and the MAC address of the

MFP.

[DHCPv6 Setting] When automatically specifying the IPv6 global address using DHCPv6,

set this option to ON (default: ON).

[Link-Local Address] Displays the link-local address. The link-local address is automatically

specified from the MAC address of the MFP.

[Global Address] Enter the IPv6 global address when manually configuring the setting.

[Prefix Length] Enter the prefix length of the IPv6 global address between 1 and 128

when manually configuring the setting.

[Gateway Address] Enter the gateway address when manually configuring the setting.

2.3 Pre-Setting 2

AU-211P 2-5

Tips

These settings are required when using the MFP in the IPv6 environment.

[DNS Host]

Select [Utility] - [Administrator] - [Network] - [TCP/IP Setting] - [TCP/IP Setting1] - [DNS Host], and configure

the following settings.

[DNS Domain Name Setting]

Select [Utility] - [Administrator] - [Network] - [TCP/IP Setting] - [TCP/IP Setting1] - [DNS Domain Name Set-

ting], and configure the following settings.

Item Description

[DNS Host Name] Enter the host name of the MFP (using up to 63 characters). Only hyphen

(-) is available as a symbol. However, the name cannot be specified using

only symbols, and also cannot be suffixed by a symbol.

If your DNS server does not support the Dynamic DNS function, register

the host name of the MFP on the DNS server.

[Dynamic DNS Settings] When using the Dynamic DNS function, set this option to ON (default:

OFF). If your DNS server supports the Dynamic DNS function, the set host

name can be automatically registered to the DNS server or changes can

be automatically updated.

[LLMNR Setting] When using LLMNR, set this option to ON (default: ON). Using LLMNR

enables you to resolve the name even in an environment that does not

have a DNS server. This option is only compatible with Windows comput-

ers. It is useful to resolve the name in the IPv6 environment.

Item Description

[DNS Domain Auto Obtain] When automatically specifying the domain name using DHCP, set this

option to ON (default: ON).

[DNS Search Domain Name

Auto Retrieval]

When automatically specifying the search domain name using DHCP, set

this option to ON (default: ON).

[DNS Default Domain Name] When manually specifying the domain name, enter the default domain

name of the MFP (using up to 251 characters (up to 252 characters, in-

cluding [DNS Host Name])). Only hyphen (-) is available as a symbol.

However, the name cannot be specified using only symbols, and also

cannot be suffixed by a symbol.

[DNS Search Domain

Name1] to [DNS Search Do-

main Name3]

When manually configuring the setting, enter the search domain name

(using up to 63 characters). Hyphen (-) and period (.) are available as sym-

bols. However, the name cannot be specified using only symbols, and

also cannot be suffixed by a symbol.

AU-211P 2-6

2.3 Pre-Setting 2

2.3.2 Registering Active Directory for Authentication

Select [Utility] - [Administrator] - [User Auth/Account Track] - [External Server Settings] - [External Server Set-

tings] - Select any list in the server list. - [Edit] - [Edit], and configure the following settings.

Tips

When registering multiple Active Directory services, specify the default Active Directory in advance. Select

the desired Active Directory on the [External Server Settings] screen, and tap [Default].

2.3.3 Adjusting the MFP Time

You cannot log in to Active Directory if the time is extremely different between the MFP and Active Directory.

Adjust the MFP time to match the Active Directory time.

Select [Utility] - [Administrator] - [Maintenance] - [Date/Time Setting] - [Time Adjustment Setting], and config-

ure the following settings.

Tips

Before adjusting the time, select [Utility] - [Administrator] - [Maintenance] - [Date/Time Setting] - [Manual Set-

ting], and check that the time zone is set correctly.

Item Description

[External Server Name] Enter the name of the authentication server (using up to 32 characters).

[External Server Type] Select Active Directory.

[Active Directory] Register Active Directory connection information.

• [Default Domain Name]: Enter the default domain name of the authen-

tication server (using up to 64 characters).

• [Timeout]: Change the timeout interval for communication with Active

Directory, if required (default: [60] sec.).

Item Description

[Time Adjustment Setting] When connecting to the NTP server to adjust the date and time of the

MFP, set this option to ON (default: OFF).

[Auto IPv6 Retrieval] When automatically specifying the NTP server address using DHCPv6,

set this option to ON (default: ON).

[NTP Server Address] Specify the host address of the NTP server associated with Active Direc-

tory.

When specifying the host name instead of the address, select the [Please

check to enter host name.] check box.

[Port No.] If necessary, change the NTP server port number (default: [123]).

[Auto Time Adjustment] When periodically connecting to the NTP server to automatically adjust

the date and time of the MFP, set this option to ON (default: OFF).

• [Polling Interval]: Specify the interval to conduct the automatic adjust-

ment (default: [24] hours).

[Data Entry] Connect to the NTP server, and adjust the time.

2.3 Pre-Setting 2

AU-211P 2-7

2.3.4 Registering the DNS Server Associated with Active Directory

[DNS Server Setting(IPv4)]

Select [Utility] - [Administrator] - [Network] - [TCP/IP Setting] - [TCP/IP Setting1] - [DNS Server Setting(IPv4)],

and configure the following settings.

[DNS Server Setting(IPv6)]

Select [Utility] - [Administrator] - [Network] - [TCP/IP Setting] - [TCP/IP Setting1] - [DNS Server Setting(IPv6)],

and configure the following settings.

Tips

These settings are required when using the MFP in the IPv6 environment.

2.3.5 Setting PIV Transitional Mode

Specify the PIV transitional mode in the PIV transitional specifications.

Select [Utility] - [Administrator] - [User Auth/Account Track] - [PKI Card Authentication], and configure the fol-

lowing settings.

Item Description

[DNS Server Auto Obtain] When automatically specifying the DNS server address using DHCP, set

this option to ON (default: ON).

[Primary DNS Server] Enter the primary DNS server address when manually configuring the set-

ting.

[Secondary DNS Server1]

and [Secondary DNS Serv-

er2]

Enter the secondary DNS server address when manually configuring the

setting.

Item Description

[DNS Server Auto Obtain] When automatically specifying the DNS server address using DHCP, set

this option to ON (default: ON).

[Primary DNS Server] Enter the primary DNS server address when manually configuring the set-

ting.

[Secondary DNS Server1]

and [Secondary DNS Serv-

er2]

Enter the secondary DNS server address when manually configuring the

setting.

Item Description

[PIV Transitional Mode] Select PIV Transitional Mode from PIV or CAC.

AU-211P 2-8

2.3 Pre-Setting 2

2.3.6 Configuring Settings for Verifying the Active Directory Certificate

Configure the certificate verification settings to verify the Active Directory certificate when communicating

with Active Directory.

[Certificate Verification Setting]

Select [Utility] - [Administrator] - [User Auth/Account Track] - [Certificate Verification Setting], and configure

the following settings.

[Certificate Verification Settings]

Select [Security] - [Certificate Verification Settings] in the administrator mode of Web Connection, and con-

figure the following settings.

dReference

For details on how to use Web Connection, refer to the User’s Guide (Web Management Tool) supplied with

the MFP.

Item Description

[Verify Validity Period] Select whether to verify that the certificate is within the validity period.

[Check Root Signature] Select whether to check the root signature.

To check the root signature, view the external certificates managed on

the MFP. For details on how to register an external certificate in the MFP,

refer to "[External Certificate Setting] (p. 2-9)".

[Check CRL Expiration] Select whether to check that the certificate is not expired in the CRL (Cer-

tificate Revocation List).

[Check OCSP Expiration] Select whether to check that the certificate is not expired in the OCSP

service.

For details on the OCSP service setting procedure, refer to "[Certificate

Verification Settings] (p. 2-8)".

Item Description

[Certificate Verification Set-

tings]

When verifying the reliability of the peer's certificate, set this option to ON

(default: ON).

[Timeout] Change the time-out time of the certificate expiration confirmation if nec-

essary (default: [30] sec.).

[OCSP Service] Using the Online Certificate Status Protocol (OCSP) service enables you

to check online whether or not the certificate has expired.

When using the OCSP service, set this option to ON. Also, enter the URL

of the OCSP service (using up to 511 characters).

If [URL] is left blank, the URL of the OCSP service embedded in the cer-

tificate will be used.

[Proxy Settings] When a proxy server is installed in your environment, register the proxy

server.

• [Proxy Server Address]: Enter the proxy server address. When speci-

fying the host name instead of the address, select the [Please check

to enter host name.] check box.

• [Proxy Server Port Number]: If necessary, change the proxy server

port number (default: [8080]).

• [User Name]: Enter the user name used for proxy authentication (us-

ing up to 63 characters).

• [Password]: Enter the password used for proxy authentication (using

up to 63 characters).

• [Address not using Proxy Server]: Enter the address with no proxy

server used as needed. When specifying the host name instead of the

address, select the [Please check to enter host name.] check box.

2.3 Pre-Setting 2

AU-211P 2-9

[External Certificate Setting]

Import external certificates used to validate the certificate chain (certificate path) in the MFP.

1Select [Security] - [PKI Settings] - [External Certificate Setting] in the administrator mode of Web Con-

nection, and click [New Registration].

%To change certificates to be shown in the list, select a certificate you wish to change, and click

[Changes the display].

%To delete the registered certificate, click [Delete].

2Select a certificate to import from your computer or the SMB sharing folder.

%[Select from PC]: Select a certificate to import from your computer.

%[Select from SMB List]: Click [SMB List], and select a certificate to import from the SMB sharing

folder.

3Click [OK].

The import result is displayed.

dReference

For details on how to use Web Connection, refer to the User’s Guide (Web Management Tool) supplied with

the MFP.

2.3.7 Enabling TPM (Trusted Platform Module)

When TPM (Trusted Platform Module) is installed, enable TPM on the MFP.

Tips

The optional i-Option LK-115 v2 is required to use TPM.

[TPM Function Settings]

Select [Utility] - [Administrator] - [Security] - [TPM Setting], and set [TPM Function Settings] to ON.

[SSL Setting]

Select [Security] - [PKI Settings] - [Enable SSL Version] in the administrator mode of Web Connection, and

enable SSL/TLS.

dReference

For details on how to use Web Connection, refer to the User’s Guide (Web Management Tool) supplied with

the MFP.

2.3.8 Setting the Power Saving Mode

The authentication unit does not support ErP; therefore, set to the power saving mode.

Select [Utility] - [Administrator] - [Maintenance] - [Timer Setting] - [Power Settings], and configure the follow-

ing settings.

Item Description

[Power Key Setting] Select [Power Save] (default: [Power Save]).

AU-211P 2-10

2.4 Operation Settings 2

2.4 Operation Settings

Considering security risks, we recommend you to configure the following network settings when operating

this system.

2.4.1 Settings to Change before Starting Operation

[TCP Socket Setting]

Select [Utility] - [Administrator] - [Network] - [TCP Socket Setting], and set [TCP Socket] to OFF (default: OFF).

However, when TPM is installed, there will be no problems if this option is turned ON.

[WebDAV Server Settings]

Select [Utility] - [Administrator] - [Network] - [WebDAV Settings] - [WebDAV Server Settings], and set [Web-

DAV Settings] to OFF (default: OFF).

However, when TPM is installed, there will be no problems if this option is turned ON.

[FTP Server Settings]

Select [Utility] - [Administrator] - [Network] - [FTP Setting] - [FTP Server Setting], and set [FTP Server] to OFF

(default: OFF).

[SNMP Setting]

Select [Utility] - [Administrator] - [Network] - [SNMP Setting], and configure the following settings.

2.4.2 Settings to Change after Initialization was Completed

We recommend you to disable Web Connection and OpenAPI server function (link with external application)

after MFP initialization was completed.

[HTTP Server Settings]

Select [Utility] - [Administrator] - [Network] - [HTTP Server Settings], and set [Web Connection Setting] to OFF

(default: ON).

However, when TPM is installed, there will be no problems if this option is turned ON.

[OpenAPI Setting]

Select [Utility] - [Administrator] - [Network] - [OpenAPI Setting] - [OpenAPI Setting], and set [External Appli-

cation Connection] to OFF (default: ON).

However, when TPM is installed, there will be no problems if this option is turned ON.

Item Description

[SNMP Setting] Set [SNMP v3(IP)] to OFF (default: OFF).

[SNMP v1/v2c Settings] Set [Write Community Name] to OFF (default: OFF).

3How to Use the

Authentication Unit

AU-211P 3-2

3.1 Login and Logout 3

3 How to Use the Authentication Unit

This chapter explains how to log in and log out using this unit and also describes the functions using this

system.

The operations in Normal mode are described here. They can also be used in Enlarge Display mode. For de-

tails on the Enlarge Display mode, refer to the User's Guide (Accessibility) supplied with the MFP.

3.1 Login and Logout

NOTICE

Do not pull out the card while the access lamp is blinking.

Otherwise, the card may be damaged.

3.1.1 Login

This section describes the procedure to insert the PKI card into this unit and log in to the MFP.

1Insert the PKI card into this unit.

%To change the authentication server, tap the list icon of [Server Name] before inserting the PKI card,

and select the server. Then, tap [OK].

%You can log in as the public user if Public User Access is enabled.

%When logging in to the MFP as the administrator or User Box administrator, tap [ID & PW], and enter

the password.

3.1 Login and Logout 3

AU-211P 3-3

2Enter the PIN code.

%If this machine is equipped with an optional keypad, you can use the keypad to directly enter the

PIN code.

%Tapping the keyboard icon of [PIN] displays the keyboard screen. If necessary, you can use this key-

board screen to enter characters as a PIN code.

%If the number of continuous PIN code typing errors exceeds the allowable value, the PKI card is

locked, causing authentication to be disabled. For details on the allowable number of PKI card au-

thentication failures, and how to unlock the PKI card, contact your PKI card administrator.

3Tap [OK].

Perform authentication, and log in to the MFP.

Tips

-With Account Track enabled and only when logging in for the first time, perform user authentication us-

ing the PKI card before account authentication. When Account Track is performed on an MFP compat-

ible with this system, user authentication is synchronized with account authentication.

-If you insert the PKI card while logging in as a public user, you will be automatically logged out from

public user, and the PIN code entry screen is displayed. However, you will not be logged out even if

you insert the PKI card when the system is running, a warning message is displayed, or the screen on

which you cannot log out using the Access key is displayed.

-If you log in to the MFP as the administrator, you can check or delete the desired job.

-If you log in to the MFP as the User Box administrator, you can view the contents of all the created User

Boxes regardless of whether the password is specified.

3.1.2 Logout

To log out the MFP, pull out the PKI card from this unit.

Tips

-If the PKI card is used to log in to the MFP, you cannot log out the MFP using the Access key.

-If the MFP sub power is turned off while logging in using the PKI card, you will be logged out of the MFP.

-When the time for the system auto reset function is specified, the function will activate and you will be

logged out automatically if the MFP is not operated for the specified time. If no operations are carried

out for over 1 minute while you are logged in, you will be logged out automatically even when the system

auto reset function is disabled.

-In order to prevent the card from being left in the unit, the caution sound can be issued when you are

logged out automatically. To issue the caution sound, select [Sound Setting] - [Sound Setting] and set

[Warning Sound] to [On] in [Accessibility Setting] screen, and also set [Simple Caution Sound (Level 1)]

to [Yes] in [Sound Setting] - [Caution Sound] in advance.

AU-211P 3-4

3.2 Functions Using the PKI Card Authentication System 3

3.2 Functions Using the PKI Card Authentication System

This section explains the functions using the PKI card authentication system.

Function Description Refer-

ence

Address Search (LDAP) us-

ing PKI card

Logs in to the LDAP server using the Kerberos authentication

ticket that is obtained by Active Directory authentication us-

ing the PKI card when searching for the destination via the

LDAP server.

The user can perform authentication only once to obtain ac-

cess privileges, and configure the single sign-on environment

to be convenient.

p. 3-5

SMB TX using PKI card Logs in to the destination computer using the Kerberos au-

thentication ticket that is obtained by Active Directory au-

thentication using the PKI card when sending scanned data

via SMB.

The user can perform authentication only once to obtain ac-

cess privileges, and configure the single sign-on environment

to be convenient.

p. 3-8

Scan to E-mail (S/MIME) us-

ing PKI card

Adds a digital signature using the PKI card when sending an

e-mail.

This function prevents fabrication or spoofing of an e-mail.

p. 3-12

PDF encryption and signa-

ture addition using PKI card

Encrypts a PDF document and adds a signature using the

digital certificate registered in the PKI card when distributing

scanned data as a PDF document.

This function prevents illegal access to or fabrication of a

PDF document.

The optional i-Option LK-102 v3 or i-Option LK-110 v2 is

required to enable the PDF document encryption function us-

ing the PKI card.

p. 3-15

PKI Card Print Encrypts print data using the PKI card to send it to the MFP.

Print data is stored on an MFP, and can be decrypted and

printed if the same user performs authentication on a MFP

using the PKI card.

The print data is encrypted when it is sent from the printer

driver and can only be printed when authentication at the

MFP using the PKI card is successful; therefore, you can en-

sure the confidentiality of documents.

p. 3-18

Scan To Me Sends scanned data to the user’s e-mail address.

The user can obtain the user’s e-mail address using the

LDAP protocol, and easily send data to the obtained address.

This function is effective when frequently sending scanned

data to the user’s address.

p. 3-26

Scan To Home Sends scanned data to the user’s computer.

The user can obtain the position of the user’s Home folder

from Active Directory, and easily send data to the Home fold-

er of the user’s computer.

This function is effective when frequently sending scanned

data to the user’s address.

p. 3-28

Other manuals for AU-211P

Table of contents

Popular IP Access Controllers manuals by other brands

eKey

eKey TOCAhome Installation & operating manual

GeoVision

GeoVision GV-FR2020 user manual

LumiRing

LumiRing ICON PE manual

Vidos

Vidos ZS52 user manual

FingerTec

FingerTec R2 installation guide

Grosvenor

Grosvenor Janus C4 Series installation guide

OUZIM

OUZIM BioEngine 3 manual

L-1 Identity Solutions

L-1 Identity Solutions 4G Lite installation guide

AWID

AWID SENTINEL-PROX MR-1824 Installation sheet

Comelit

Comelit 3455 Programming manual

Comelit

Comelit Simple Key SK9000I Technical manual

Lathem

Lathem PC600 Series user guide

HID

HID Signo 25B installation guide

Kedacom

Kedacom KSCA120 Series quick start guide

Allegion

Allegion interflex IF-281 Cylinder manual

Conrad Electronic

Conrad Electronic KeyMatic CAC operating instructions

SDC

SDC IP100HK installation instructions

Modesto

Modesto MAK-21 instruction manual

Konica Minolta AU-211P User manual

Popular IP Access Controllers manuals by other brands