AU-211P Authentication Unit User Guide for bizhub 223/283/363/423
Page 2
... Overview 7 2.2 Part names and their functions 8 2.3 Pre-Setting 9 2.3.1 Configuring Network Settings 9 2.3.2 Registering Active Directory for Authentication 11 2.3.3 Correcting the MFP Time 12 2.3.4 Registering the DNS Server Associated with Active Directory ........ 13 2.3.5 Specifying the PIV Transitional Mode 14 2.3.6 Configuring Settings for Verifying the Active Directory Certificate 15 2.4 Operation Settings 20 3 How to Use the Authentication Unit...
... Overview 7 2.2 Part names and their functions 8 2.3 Pre-Setting 9 2.3.1 Configuring Network Settings 9 2.3.2 Registering Active Directory for Authentication 11 2.3.3 Correcting the MFP Time 12 2.3.4 Registering the DNS Server Associated with Active Directory ........ 13 2.3.5 Specifying the PIV Transitional Mode 14 2.3.6 Configuring Settings for Verifying the Active Directory Certificate 15 2.4 Operation Settings 20 3 How to Use the Authentication Unit...
AU-211P Authentication Unit User Guide for bizhub 223/283/363/423
Page 3
Contents 3.5 Scan to E-mail (S/MIME) Using PKI Card 36 3.5.1 Overview 36 3.5.2 Related Settings 37 3.5.3 Encrypting an E-Mail and Adding a Digital Signature 39 3.6 PKI Card Print 40 3.6.1 Overview... Using Scan To Home 55 3.8.3 Related Settings 56 3.8.4 Using Scan To Home 57 4 Added or Changed Setting Information 58 4.1 User Settings 58 4.1.1 System Settings 58 4.2 Administrator Settings 59 4.2.1 System Settings 59 4.2.2 User Authentication/ Account Track 59 4.2.3 Network Settings 60 4.2.4 Security Settings 61 4.2.5 License Settings 61 5 Appendix 62 5.1 Product Specifications ...
Contents 3.5 Scan to E-mail (S/MIME) Using PKI Card 36 3.5.1 Overview 36 3.5.2 Related Settings 37 3.5.3 Encrypting an E-Mail and Adding a Digital Signature 39 3.6 PKI Card Print 40 3.6.1 Overview... Using Scan To Home 55 3.8.3 Related Settings 56 3.8.4 Using Scan To Home 57 4 Added or Changed Setting Information 58 4.1 User Settings 58 4.1.1 System Settings 58 4.2 Administrator Settings 59 4.2.1 System Settings 59 4.2.2 User Authentication/ Account Track 59 4.2.3 Network Settings 60 4.2.4 Security Settings 61 4.2.5 License Settings 61 5 Appendix 62 5.1 Product Specifications ...
AU-211P Authentication Unit User Guide for bizhub 223/283/363/423
Page 10
...DNS server associated with Active Directory (page 13) - TCP/IP Settings On the MFP control panel, press the [Utility/Counter] key, and then [Administrator Settings] - [Network Settings] - [TCP/IP Settings]. When directly specifying the IP address, enter the IP address of... the Active Directory certificate (page 15) 2.3.1 Configuring Network Settings Configure the basic settings required to automatically retrieve the IP address or directly specify it. Configuring settings for authentication (page 11) - AU-211P 9 Configuring network settings (page 9) - Correcting the MFP time (page 12...
...DNS server associated with Active Directory (page 13) - TCP/IP Settings On the MFP control panel, press the [Utility/Counter] key, and then [Administrator Settings] - [Network Settings] - [TCP/IP Settings]. When directly specifying the IP address, enter the IP address of... the Active Directory certificate (page 15) 2.3.1 Configuring Network Settings Configure the basic settings required to automatically retrieve the IP address or directly specify it. Configuring settings for authentication (page 11) - AU-211P 9 Configuring network settings (page 9) - Correcting the MFP time (page 12...
AU-211P Authentication Unit User Guide for bizhub 223/283/363/423
Page 13
...it matches the Active Directory time with Active Directory. Time Adjustment Setting On the MFP control panel, press the [Utility/Counter] key, and then [Administrator Settings] - [Network Settings] - [Forward] - [Detail Settings] [Time Adjustment Setting]. To automatically obtain the IPv6 address of the NTP server ...ON]. Description When an automatic time correction is selected for Auto Time Adjustment, set the polling interval. Page 1/2 Item ON/OFF Auto IPv6 Retrieval Host Address Port Number Set Date Page 2/2 Item Auto Time Adjustment Polling Interval Description Select [ON]. AU...
...it matches the Active Directory time with Active Directory. Time Adjustment Setting On the MFP control panel, press the [Utility/Counter] key, and then [Administrator Settings] - [Network Settings] - [Forward] - [Detail Settings] [Time Adjustment Setting]. To automatically obtain the IPv6 address of the NTP server ...ON]. Description When an automatic time correction is selected for Auto Time Adjustment, set the polling interval. Page 1/2 Item ON/OFF Auto IPv6 Retrieval Host Address Port Number Set Date Page 2/2 Item Auto Time Adjustment Polling Interval Description Select [ON]. AU...
AU-211P Authentication Unit User Guide for bizhub 223/283/363/423
Page 14
... IPv4 address of the secondary DNS server and 2 associated with Active Directory. DNS Server Settings (IPv6) On the MFP control panel, press the [Utility/Counter] key, and then [Administrator Settings] - [Network Settings] - [TCP/IP Settings] - [DNS Server Settings (IPv6)]. 2 Note These settings are required when using DHCP. This item is available when using the MFP in the...
... IPv4 address of the secondary DNS server and 2 associated with Active Directory. DNS Server Settings (IPv6) On the MFP control panel, press the [Utility/Counter] key, and then [Administrator Settings] - [Network Settings] - [TCP/IP Settings] - [DNS Server Settings (IPv6)]. 2 Note These settings are required when using DHCP. This item is available when using the MFP in the...
AU-211P Authentication Unit User Guide for bizhub 223/283/363/423
Page 27
... the [Utility/Counter] key, and then [Administrator Settings] - [Network Settings] - [LDAP Settings] - [Enabling LDAP]. Item Enabling LDAP Description Select [ON]. AU-211P 26 On the MFP control panel, press the [Utility/Counter] key, and then [Administrator Settings] - [Network Settings] - [LDAP Settings] - [Setting Up LDAP]. How to Use the Authentication Unit 3 3.3.2 Related Settings This section explains how to search for the...
... the [Utility/Counter] key, and then [Administrator Settings] - [Network Settings] - [LDAP Settings] - [Enabling LDAP]. Item Enabling LDAP Description Select [ON]. AU-211P 26 On the MFP control panel, press the [Utility/Counter] key, and then [Administrator Settings] - [Network Settings] - [LDAP Settings] - [Setting Up LDAP]. How to Use the Authentication Unit 3 3.3.2 Related Settings This section explains how to search for the...
AU-211P Authentication Unit User Guide for bizhub 223/283/363/423
Page 33
...Select whether or not the NTLM user authentication is performed. Select the SMB TX authentication method. Client Settings Configure the setting to configure the SMB TX settings on the MFP that supports this system. When performing SMB TX for a folder accessible in a ... perform SMB TX. Item ON/OFF SMB Authentication Setting User Authentication (NTLM) DFS Setting Description Select [ON]. On the MFP control panel, press the [Utility/Counter] key, and then [Administrator Settings] - [Network Settings] - [SMB Settings] - [Client Settings]. To perform SMB TX in the Active Directory ...
...Select whether or not the NTLM user authentication is performed. Select the SMB TX authentication method. Client Settings Configure the setting to configure the SMB TX settings on the MFP that supports this system. When performing SMB TX for a folder accessible in a ... perform SMB TX. Item ON/OFF SMB Authentication Setting User Authentication (NTLM) DFS Setting Description Select [ON]. On the MFP control panel, press the [Utility/Counter] key, and then [Administrator Settings] - [Network Settings] - [SMB Settings] - [Client Settings]. To perform SMB TX in the Active Directory ...
AU-211P Authentication Unit User Guide for bizhub 223/283/363/423
Page 38
...the MFP control panel, press the [Utility/Counter] key, and then [Administrator Settings] - [Network Settings] - [E-Mail Settings] - [S/MIME Communication Settings]. Item Description ON/OFF Select [ON]. S/MIME Communication Settings Configure settings to encrypt an e-mail or add a digital signature on the MFP that supports... to add a digital signature before sending an e-mail. How to Use the Authentication Unit 3 3.5.2 Related Settings This section explains how to configure settings to encrypt an e-mail and add a digital signature. If [Select when sending] is automatically added using...
...the MFP control panel, press the [Utility/Counter] key, and then [Administrator Settings] - [Network Settings] - [E-Mail Settings] - [S/MIME Communication Settings]. Item Description ON/OFF Select [ON]. S/MIME Communication Settings Configure settings to encrypt an e-mail or add a digital signature on the MFP that supports... to add a digital signature before sending an e-mail. How to Use the Authentication Unit 3 3.5.2 Related Settings This section explains how to configure settings to encrypt an e-mail and add a digital signature. If [Select when sending] is automatically added using...
AU-211P Authentication Unit User Guide for bizhub 223/283/363/423
Page 61
... default is enabled. Added or Changed Setting Information 4 4.2.3 Network Settings FTP Settings Item FTP Server Settings Description The default is [Invalid]. For details, refer to [SMB Authentication Setting]. [Password Authentication Restriction] has been added. SNMP Settings Item SNMP v1/v2c Settings SNMP v3 (IP) Description The default of [Write Setting] is [OFF]. E-Mail Settings Item E-Mail TX (SMTP) S/MIME Communication...
... default is enabled. Added or Changed Setting Information 4 4.2.3 Network Settings FTP Settings Item FTP Server Settings Description The default is [Invalid]. For details, refer to [SMB Authentication Setting]. [Password Authentication Restriction] has been added. SNMP Settings Item SNMP v1/v2c Settings SNMP v3 (IP) Description The default of [Write Setting] is [OFF]. E-Mail Settings Item E-Mail TX (SMTP) S/MIME Communication...
bizhub 223/283/363/423 PKI Security Operations User Guide
Page 9
...state. - To disable PageScope Web Connection, press the [Utility/Counter] key, and then [Administrator Settings] - [Network Settings] - [HTTP Server Settings] on the MFP control panel, and set "PSWC Settings" to the environment, in [Mode 2]. - The Administrator should be periodically checked to "Restrict." ...93 characters) - The Administrator should also make sure that any number that no improper operations are performed. - bizhub 423/363/283/223 1-6 Password Usage Requirements The Administrator must change the Administrator Password as soon as the Administrator to -16...
...state. - To disable PageScope Web Connection, press the [Utility/Counter] key, and then [Administrator Settings] - [Network Settings] - [HTTP Server Settings] on the MFP control panel, and set "PSWC Settings" to the environment, in [Mode 2]. - The Administrator should be periodically checked to "Restrict." ...93 characters) - The Administrator should also make sure that any number that no improper operations are performed. - bizhub 423/363/283/223 1-6 Password Usage Requirements The Administrator must change the Administrator Password as soon as the Administrator to -16...
bizhub 223/283/363/423 PKI Security Operations User Guide
Page 10
...port on the rear right side of SNMP v1/v2c, press the [Utility/Counter] key, and then [Administrator Settings] - [Network Settings] - [SNMP Settings] - [Forward] - [SNMP v1/v2c Settings] - [Forward] on the machine by the Service Engineer are overseen by the machine is - Operation through ...install the IC card reader to any other USB port. The Administrator of being illegally accessed. bizhub 423/363/283/223 1-7 The Administrator should perform the following types of the machine should make the necessary settings. 1.4 Precautions for use in the disable state. -
...port on the rear right side of SNMP v1/v2c, press the [Utility/Counter] key, and then [Administrator Settings] - [Network Settings] - [SNMP Settings] - [Forward] - [SNMP v1/v2c Settings] - [Forward] on the machine by the Service Engineer are overseen by the machine is - Operation through ...install the IC card reader to any other USB port. The Administrator of being illegally accessed. bizhub 423/363/283/223 1-7 The Administrator should perform the following types of the machine should make the necessary settings. 1.4 Precautions for use in the disable state. -
bizhub 223/283/363/423 PKI Security Operations User Guide
Page 38
bizhub 423/363/283/223 2-26 2.8 S/MIME Communication Setting Function 2 2.8 S/MIME Communication Setting Function When access to set [Always add signature] or [Select when sending] for Digital Signature. Setting the S/MIME Communication 0 For the procedure to log off from the Administrator Settings. 1 Call the Administrator Settings screen on the display. If it is authenticated, the machine enables the setting of...
bizhub 423/363/283/223 2-26 2.8 S/MIME Communication Setting Function 2 2.8 S/MIME Communication Setting Function When access to set [Always add signature] or [Select when sending] for Digital Signature. Setting the S/MIME Communication 0 For the procedure to log off from the Administrator Settings. 1 Call the Administrator Settings screen on the display. If it is authenticated, the machine enables the setting of...
bizhub 223/283/363/423 PKI Security Operations User Guide
Page 45
bizhub 423/363/283/223 2-33 If it is absolutely necessary to leave the machine, be sure first to log off from the Administrator Settings. 1 Call the Network Settings screen on the display from the control panel. 2 Touch [TCP/IP Settings]. 3 Touch [IPv4 Setting]. 4 Touch [Manual Input]. 5 Select [IP Address] and set the IP Address. % If [Auto Input] is...
bizhub 423/363/283/223 2-33 If it is absolutely necessary to leave the machine, be sure first to log off from the Administrator Settings. 1 Call the Network Settings screen on the display from the control panel. 2 Touch [TCP/IP Settings]. 3 Touch [IPv4 Setting]. 4 Touch [Manual Input]. 5 Select [IP Address] and set the IP Address. % If [Auto Input] is...
bizhub 223/283/363/423 PKI Security Operations User Guide
Page 46
... log off from the control panel. 2 Touch [NetWare Settings]. 3 Make the necessary settings. 4 Touch [OK]. bizhub 423/363/283/223 2-34 Making the NetWare Setting 0 For the procedure to call the Network Settings screen on the display, see steps 1 and 2 of page 2-26. 0 Do not leave the machine with the setting screen of the machine through the Administrator...
... log off from the control panel. 2 Touch [NetWare Settings]. 3 Make the necessary settings. 4 Touch [OK]. bizhub 423/363/283/223 2-34 Making the NetWare Setting 0 For the procedure to call the Network Settings screen on the display, see steps 1 and 2 of page 2-26. 0 Do not leave the machine with the setting screen of the machine through the Administrator...
bizhub 223/283/363/423 PKI Security Operations User Guide
Page 47
... Administrator Settings is absolutely necessary to leave the machine, be sure first to call the Network Settings screen on the display, see steps 1 and 2 of page 2-26. 0 Do not leave the machine with the setting screen of Administrator Settings left shown on the display from the Administrator Settings. 1 Call the Network Settings screen on the display. bizhub 423/363/283...
... Administrator Settings is absolutely necessary to leave the machine, be sure first to call the Network Settings screen on the display, see steps 1 and 2 of page 2-26. 0 Do not leave the machine with the setting screen of Administrator Settings left shown on the display from the Administrator Settings. 1 Call the Network Settings screen on the display. bizhub 423/363/283...
bizhub 223/283/363/423 PKI Security Operations User Guide
Page 48
bizhub 423/363/283/223 2-36 If it is authenticated, the machine enables setting of Administrator Settings left shown on the display from the control panel. 2 Touch [E-Mail Settings]. 3 Touch [E-Mail TX (SMTP)]. 4 Make the necessary settings. 5 Touch [OK]. Setting the SMTP Server (E-Mail Server) 0 For the procedure to log off from the Administrator Settings. 1 Call the Network Settings screen on...
bizhub 423/363/283/223 2-36 If it is authenticated, the machine enables setting of Administrator Settings left shown on the display from the control panel. 2 Touch [E-Mail Settings]. 3 Touch [E-Mail TX (SMTP)]. 4 Make the necessary settings. 5 Touch [OK]. Setting the SMTP Server (E-Mail Server) 0 For the procedure to log off from the Administrator Settings. 1 Call the Network Settings screen on...
bizhub 223/283/363/423 Security Operations User Guide
Page 3
...setting function ...2-77 SNMP network setting function ...2-78 WebDAV Function ...2-79 Setting the WebDAV Server Password 2-79 PC-Fax RX Setting Function ...2-83 PC-Fax RX Setting ...2-83 TSI User Box Setting Function...2-86 TSI User Box Setting...2-86 TCP/IP Setting Function ...2-90 Setting... 4.1 4.1.1 4.1.2 4.1.3 4.1.4 4.1.5 PageScope Data Administrator ...4-2 Accessing from PageScope Data Administrator 4-2 Setting the user authentication method 4-5 Changing the authentication mode...4-7 Making the user settings...4-10 Making the account settings...4-11 bizhub 423/363/283/223 Contents-2
...setting function ...2-77 SNMP network setting function ...2-78 WebDAV Function ...2-79 Setting the WebDAV Server Password 2-79 PC-Fax RX Setting Function ...2-83 PC-Fax RX Setting ...2-83 TSI User Box Setting Function...2-86 TSI User Box Setting...2-86 TCP/IP Setting Function ...2-90 Setting... 4.1 4.1.1 4.1.2 4.1.3 4.1.4 4.1.5 PageScope Data Administrator ...4-2 Accessing from PageScope Data Administrator 4-2 Setting the user authentication method 4-5 Changing the authentication mode...4-7 Making the user settings...4-10 Making the account settings...4-11 bizhub 423/363/283/223 Contents-2
bizhub 223/283/363/423 Security Operations User Guide
Page 14
... address) Clears the currently set password, resetting it to the factory setting (sysadm) Deletes the currently set S/MIME certificate Deletes the currently set Device certificate (SSL certificate) Clears the currently set network settings (DNS Server setting, IP Address setting, SMTP Server setting, NetWare Setting, NetBIOS setting and AppleTalk Printer Name setting), resetting it becomes necessary to the factory setting bizhub 423/363/283/223 1-10 Then...
... address) Clears the currently set password, resetting it to the factory setting (sysadm) Deletes the currently set S/MIME certificate Deletes the currently set Device certificate (SSL certificate) Clears the currently set network settings (DNS Server setting, IP Address setting, SMTP Server setting, NetWare Setting, NetBIOS setting and AppleTalk Printer Name setting), resetting it becomes necessary to the factory setting bizhub 423/363/283/223 1-10 Then...
bizhub 223/283/363/423 Security Operations User Guide
Page 24
... Strength Automatically Obtain Certificates of destination data previously registered (Address Book and Program) Secure Print User Box Preview Initialize (Network Settings) Image Log Transfer Settings Factory Setting Invalid Mode 1 Mode 1 Restrict OFF Restrict Restrict OFF AES-256, 3DES-168, RC4-128, DES-56, RC4...method is changed ) The security level can be set) Restrict (not to be changed) Only Detail View is enabled before password authentication (Mode 2) Restrict (not to be changed) OFF (not to be changed ) bizhub 423/363/283/223 2-9 Function Name Password Rules Prohibited Functions...
... Strength Automatically Obtain Certificates of destination data previously registered (Address Book and Program) Secure Print User Box Preview Initialize (Network Settings) Image Log Transfer Settings Factory Setting Invalid Mode 1 Mode 1 Restrict OFF Restrict Restrict OFF AES-256, 3DES-168, RC4-128, DES-56, RC4...method is changed ) The security level can be set) Restrict (not to be changed) Only Detail View is enabled before password authentication (Mode 2) Restrict (not to be changed) OFF (not to be changed ) bizhub 423/363/283/223 2-9 Function Name Password Rules Prohibited Functions...
bizhub 223/283/363/423 Security Operations User Guide
Page 79
... from the control panel. 2 Touch [Network Settings]. 3 Touch [E-Mail Settings]. 4 Touch [S/MIME Communication Settings]. Set 1024 bits or more for the key length of the RSA public key for the certificate of each destination. 2.15.1 Setting the S/MIME Communication 0 For the procedure to register the certificate at the destination. bizhub 423/363/283/223 2-64 NOTICE To send...
... from the control panel. 2 Touch [Network Settings]. 3 Touch [E-Mail Settings]. 4 Touch [S/MIME Communication Settings]. Set 1024 bits or more for the key length of the RSA public key for the certificate of each destination. 2.15.1 Setting the S/MIME Communication 0 For the procedure to register the certificate at the destination. bizhub 423/363/283/223 2-64 NOTICE To send...