AU-211P Authentication Unit User Guide for bizhub 223/283/363/423
Page 2
... Overview 7 2.2 Part names and their functions 8 2.3 Pre-Setting 9 2.3.1 Configuring Network Settings 9 2.3.2 Registering Active Directory for Authentication 11 2.3.3 Correcting the MFP Time 12 2.3.4 Registering the DNS Server Associated with Active Directory ........ 13 2.3.5 Specifying the PIV Transitional Mode 14 2.3.6 Configuring Settings for Verifying the Active Directory Certificate 15 2.4 Operation Settings 20 3 How to Use the Authentication Unit...
... Overview 7 2.2 Part names and their functions 8 2.3 Pre-Setting 9 2.3.1 Configuring Network Settings 9 2.3.2 Registering Active Directory for Authentication 11 2.3.3 Correcting the MFP Time 12 2.3.4 Registering the DNS Server Associated with Active Directory ........ 13 2.3.5 Specifying the PIV Transitional Mode 14 2.3.6 Configuring Settings for Verifying the Active Directory Certificate 15 2.4 Operation Settings 20 3 How to Use the Authentication Unit...
AU-211P Authentication Unit User Guide for bizhub 223/283/363/423
Page 3
Contents 3.5 Scan to E-mail (S/MIME) Using PKI Card 36 3.5.1 Overview 36 3.5.2 Related Settings 37 3.5.3 Encrypting an E-Mail and Adding a Digital Signature 39 3.6 PKI Card Print 40 3.6.1 Overview... Using Scan To Home 55 3.8.3 Related Settings 56 3.8.4 Using Scan To Home 57 4 Added or Changed Setting Information 58 4.1 User Settings 58 4.1.1 System Settings 58 4.2 Administrator Settings 59 4.2.1 System Settings 59 4.2.2 User Authentication/ Account Track 59 4.2.3 Network Settings 60 4.2.4 Security Settings 61 4.2.5 License Settings 61 5 Appendix 62 5.1 Product Specifications ...
Contents 3.5 Scan to E-mail (S/MIME) Using PKI Card 36 3.5.1 Overview 36 3.5.2 Related Settings 37 3.5.3 Encrypting an E-Mail and Adding a Digital Signature 39 3.6 PKI Card Print 40 3.6.1 Overview... Using Scan To Home 55 3.8.3 Related Settings 56 3.8.4 Using Scan To Home 57 4 Added or Changed Setting Information 58 4.1 User Settings 58 4.1.1 System Settings 58 4.2 Administrator Settings 59 4.2.1 System Settings 59 4.2.2 User Authentication/ Account Track 59 4.2.3 Network Settings 60 4.2.4 Security Settings 61 4.2.5 License Settings 61 5 Appendix 62 5.1 Product Specifications ...
AU-211P Authentication Unit User Guide for bizhub 223/283/363/423
Page 10
... the MFP. - When automatically retrieving the IP address, select the automatic retrieval method. Item ON/OFF IPv4 Settings Item IP Application Method Auto Input IP Address Description Select [ON]. AU-211P 9 Configuring network settings (page 9) - Configuring settings for authentication (page 11) - When directly specifying the IP address, enter the IP address of the MFP...
... the MFP. - When automatically retrieving the IP address, select the automatic retrieval method. Item ON/OFF IPv4 Settings Item IP Application Method Auto Input IP Address Description Select [ON]. AU-211P 9 Configuring network settings (page 9) - Configuring settings for authentication (page 11) - When directly specifying the IP address, enter the IP address of the MFP...
AU-211P Authentication Unit User Guide for bizhub 223/283/363/423
Page 13
... key, and then [Administrator Settings] - [Network Settings] - [Forward] - [Detail Settings] [Time Adjustment Setting]. Specify the port number. Getting Started 2 2.3.3 Correcting the MFP Time You cannot log into Active Directory if the MFP system time is selected for Auto Time Adjustment, set the polling interval. Page 1/2... Item ON/OFF Auto IPv6 Retrieval Host Address Port Number Set Date Page 2/2 Item Auto Time Adjustment Polling Interval Description Select [ON]....
... key, and then [Administrator Settings] - [Network Settings] - [Forward] - [Detail Settings] [Time Adjustment Setting]. Specify the port number. Getting Started 2 2.3.3 Correcting the MFP Time You cannot log into Active Directory if the MFP system time is selected for Auto Time Adjustment, set the polling interval. Page 1/2... Item ON/OFF Auto IPv6 Retrieval Host Address Port Number Set Date Page 2/2 Item Auto Time Adjustment Polling Interval Description Select [ON]....
AU-211P Authentication Unit User Guide for bizhub 223/283/363/423
Page 14
... Select whether to automatically obtain the DNS server address. DNS Server Settings (IPv6) On the MFP control panel, press the [Utility/Counter] key, and then [Administrator Settings] - [Network Settings] - [TCP/IP Settings] - [DNS Server Settings (IPv6)]. 2 Note These settings are required when using DHCP. DNS Server Settings (IPv4) On the MFP control panel, press the [Utility/Counter] key...
... Select whether to automatically obtain the DNS server address. DNS Server Settings (IPv6) On the MFP control panel, press the [Utility/Counter] key, and then [Administrator Settings] - [Network Settings] - [TCP/IP Settings] - [DNS Server Settings (IPv6)]. 2 Note These settings are required when using DHCP. DNS Server Settings (IPv4) On the MFP control panel, press the [Utility/Counter] key...
AU-211P Authentication Unit User Guide for bizhub 223/283/363/423
Page 27
... destination. Item Enabling LDAP Description Select [ON]. AU-211P 26 On the MFP control panel, press the [Utility/Counter] key, and then [Administrator Settings] - [Network Settings] - [LDAP Settings] - [Setting Up LDAP]. On the MFP control panel, press the [Utility/Counter] key, and then [Administrator Settings] - [Network Settings] - [LDAP Settings] - [Enabling LDAP]. Enabling LDAP Configure settings to use the LDAP server.
... destination. Item Enabling LDAP Description Select [ON]. AU-211P 26 On the MFP control panel, press the [Utility/Counter] key, and then [Administrator Settings] - [Network Settings] - [LDAP Settings] - [Setting Up LDAP]. On the MFP control panel, press the [Utility/Counter] key, and then [Administrator Settings] - [Network Settings] - [LDAP Settings] - [Enabling LDAP]. Enabling LDAP Configure settings to use the LDAP server.
AU-211P Authentication Unit User Guide for bizhub 223/283/363/423
Page 33
...then [Administrator Settings] - [Network Settings] - [SMB Settings] - [Client Settings]. Select the SMB TX authentication method. AU-211P 32 When performing SMB TX in the environment in the Active Directory domain environment, select [Kerberos]. Item ON/OFF SMB Authentication Setting User Authentication (NTLM) DFS Setting Description Select ... DFS (Distributed File System) environment, select [Enable]. How to Use the Authentication Unit 3 3.4.2 Related Settings This section explains how to perform SMB TX. Select whether or not the NTLM user authentication is performed. Client...
...then [Administrator Settings] - [Network Settings] - [SMB Settings] - [Client Settings]. Select the SMB TX authentication method. AU-211P 32 When performing SMB TX in the environment in the Active Directory domain environment, select [Kerberos]. Item ON/OFF SMB Authentication Setting User Authentication (NTLM) DFS Setting Description Select ... DFS (Distributed File System) environment, select [Enable]. How to Use the Authentication Unit 3 3.4.2 Related Settings This section explains how to perform SMB TX. Select whether or not the NTLM user authentication is performed. Client...
AU-211P Authentication Unit User Guide for bizhub 223/283/363/423
Page 38
On the MFP control panel, press the [Utility/Counter] key, and then [Administrator Settings] - [Network Settings] - [E-Mail Settings] - [S/MIME Communication Settings]. Item Description ON/OFF Select [ON]. If [Select when sending] is [Select when sending]. The default is selected, ... when sending an e-mail. AU-211P 37 E-Mail Text Encryption Method Select the e-mail text encryption method. S/MIME Communication Settings Configure settings to encrypt an e-mail or add a digital signature on the MFP that supports this system. How to Use the Authentication Unit 3...
On the MFP control panel, press the [Utility/Counter] key, and then [Administrator Settings] - [Network Settings] - [E-Mail Settings] - [S/MIME Communication Settings]. Item Description ON/OFF Select [ON]. If [Select when sending] is [Select when sending]. The default is selected, ... when sending an e-mail. AU-211P 37 E-Mail Text Encryption Method Select the e-mail text encryption method. S/MIME Communication Settings Configure settings to encrypt an e-mail or add a digital signature on the MFP that supports this system. How to Use the Authentication Unit 3...
AU-211P Authentication Unit User Guide for bizhub 223/283/363/423
Page 61
... 32). The default is [OFF]. Added or Changed Setting Information 4 4.2.3 Network Settings FTP Settings Item FTP Server Settings Description The default is [OFF]. LDAP Settings Item Setting Up LDAP Description [Login Name], [Password] and [Select Server Authentication Method] are not displayed. [Authentication Type] is available only for SMTP authentication. [Digital Signature Type] ...
... 32). The default is [OFF]. Added or Changed Setting Information 4 4.2.3 Network Settings FTP Settings Item FTP Server Settings Description The default is [OFF]. LDAP Settings Item Setting Up LDAP Description [Login Name], [Password] and [Select Server Authentication Method] are not displayed. [Authentication Type] is available only for SMTP authentication. [Digital Signature Type] ...
bizhub 223/283/363/423 PKI Security Operations User Guide
Page 9
.../Counter] key, and then [Administrator Settings] - [System Connection] - [OpenAPI Settings] on the MFP control panel, and set "FTP Server Settings" to "OFF." The Administrator should disable the FTP Server and control the operation of the Encrypted document. - bizhub 423/363/283/223 1-6 When using an...is completed. To disable the FTP Server, press the [Utility/Counter] key, and then [Administrator Settings] - [Network Settings] - [FTP Settings] on the MFP control panel, and set "TCP Socket" to make sure that each server should be appropriately man- 1.4 Precautions for Operation ...
.../Counter] key, and then [Administrator Settings] - [System Connection] - [OpenAPI Settings] on the MFP control panel, and set "FTP Server Settings" to "OFF." The Administrator should disable the FTP Server and control the operation of the Encrypted document. - bizhub 423/363/283/223 1-6 When using an...is completed. To disable the FTP Server, press the [Utility/Counter] key, and then [Administrator Settings] - [Network Settings] - [FTP Settings] on the MFP control panel, and set "TCP Socket" to make sure that each server should be appropriately man- 1.4 Precautions for Operation ...
bizhub 223/283/363/423 PKI Security Operations User Guide
Page 10
... SNMP v1/v2c, press the [Utility/Counter] key, and then [Administrator Settings] - [Network Settings] - [SNMP Settings] - [Forward] - [SNMP v1/v2c Settings] - [Forward] on the MFP control panel, and set "Write Setting" to "Invalid." - The Administrator should disable SNMP v3 and control the ...bizhub 423/363/283/223 1-7 The Administrator should prohibit the user from the card reader and never leaves the card in the disable state. - To disable SNMP v3, press the [Utility/Counter] key, and then [Administrator Settings] - [Network Settings] - [SNMP Settings] on the MFP control panel, and set...
... SNMP v1/v2c, press the [Utility/Counter] key, and then [Administrator Settings] - [Network Settings] - [SNMP Settings] - [Forward] - [SNMP v1/v2c Settings] - [Forward] on the MFP control panel, and set "Write Setting" to "Invalid." - The Administrator should disable SNMP v3 and control the ...bizhub 423/363/283/223 1-7 The Administrator should prohibit the user from the card reader and never leaves the card in the disable state. - To disable SNMP v3, press the [Utility/Counter] key, and then [Administrator Settings] - [Network Settings] - [SNMP Settings] on the MFP control panel, and set...
bizhub 223/283/363/423 PKI Security Operations User Guide
Page 38
... the setting screen of e-mail transmitted and received between the PC and the machine. If it is authenticated, the machine enables the setting of encryption of text of Administrator Settings left shown on the display. bizhub 423/363/283/223 2-26 NOTICE Be sure to log off from the control panel. 2 Touch [Network Settings]. 3 Touch [E-Mail Settings]. 4 Touch...
... the setting screen of e-mail transmitted and received between the PC and the machine. If it is authenticated, the machine enables the setting of encryption of text of Administrator Settings left shown on the display. bizhub 423/363/283/223 2-26 NOTICE Be sure to log off from the control panel. 2 Touch [Network Settings]. 3 Touch [E-Mail Settings]. 4 Touch...
bizhub 223/283/363/423 PKI Security Operations User Guide
Page 45
...the machine, be sure first to log off from the Administrator Settings. 1 Call the Network Settings screen on the display from the control panel. 2 Touch [TCP/IP Settings]. 3 Touch [IPv4 Setting]. 4 Touch [Manual Input]. 5 Select [IP Address] and set the IP Address. % If [Auto Input] is selected for... [OK]. 2.11 TCP/IP Setting Function 2 2.11 TCP/IP Setting Function When access to the machine by the Administrator of the machine through 2 of page 2-33. 0 Do not leave the machine with the setting screen of Administrator Settings left shown on the display. bizhub 423/363/283/223 2-33
...the machine, be sure first to log off from the Administrator Settings. 1 Call the Network Settings screen on the display from the control panel. 2 Touch [TCP/IP Settings]. 3 Touch [IPv4 Setting]. 4 Touch [Manual Input]. 5 Select [IP Address] and set the IP Address. % If [Auto Input] is selected for... [OK]. 2.11 TCP/IP Setting Function 2 2.11 TCP/IP Setting Function When access to the machine by the Administrator of the machine through 2 of page 2-33. 0 Do not leave the machine with the setting screen of Administrator Settings left shown on the display. bizhub 423/363/283/223 2-33
bizhub 223/283/363/423 PKI Security Operations User Guide
Page 46
bizhub 423/363/283/223 2-34 Making the NetWare Setting 0 For the procedure to call the Network Settings screen on the display, see steps 1 and 2 of page 2-26. 0 Do not leave the machine with the setting screen of the machine through the Administrator Settings is absolutely necessary to leave the machine, be sure first to the machine by...
bizhub 423/363/283/223 2-34 Making the NetWare Setting 0 For the procedure to call the Network Settings screen on the display, see steps 1 and 2 of page 2-26. 0 Do not leave the machine with the setting screen of the machine through the Administrator Settings is absolutely necessary to leave the machine, be sure first to the machine by...
bizhub 223/283/363/423 PKI Security Operations User Guide
Page 47
... is authenticated, the machine enables setting of the NetBIOS Name. bizhub 423/363/283/223 2-35 Setting the NetBIOS Name 0 For the procedure to log off from the control panel. 2 Touch [SMB Settings]. 3 Touch [Print Settings]. 4 Touch [NetBIOS Name]. 5 Enter the NetBIOS Name. 6 Touch [OK]. 2.13 SMB Setting Function 2 2.13 SMB Setting Function When access to the machine...
... is authenticated, the machine enables setting of the NetBIOS Name. bizhub 423/363/283/223 2-35 Setting the NetBIOS Name 0 For the procedure to log off from the control panel. 2 Touch [SMB Settings]. 3 Touch [Print Settings]. 4 Touch [NetBIOS Name]. 5 Enter the NetBIOS Name. 6 Touch [OK]. 2.13 SMB Setting Function 2 2.13 SMB Setting Function When access to the machine...
bizhub 223/283/363/423 PKI Security Operations User Guide
Page 48
... (E-Mail Server) 0 For the procedure to log off from the Administrator Settings. 1 Call the Network Settings screen on the display. If it is authenticated, the machine enables setting of the SMTP Server (E-Mail Server). bizhub 423/363/283/223 2-36 2.14 E-Mail Setting Function 2 2.14 E-Mail Setting Function When access to the machine by the Administrator of the...
... (E-Mail Server) 0 For the procedure to log off from the Administrator Settings. 1 Call the Network Settings screen on the display. If it is authenticated, the machine enables setting of the SMTP Server (E-Mail Server). bizhub 423/363/283/223 2-36 2.14 E-Mail Setting Function 2 2.14 E-Mail Setting Function When access to the machine by the Administrator of the...
bizhub 223/283/363/423 Security Operations User Guide
Page 3
...setting function ...2-77 SNMP network setting function ...2-78 WebDAV Function ...2-79 Setting the WebDAV Server Password 2-79 PC-Fax RX Setting Function ...2-83 PC-Fax RX Setting ...2-83 TSI User Box Setting Function...2-86 TSI User Box Setting...2-86 TCP/IP Setting Function ...2-90 Setting... 4.1 4.1.1 4.1.2 4.1.3 4.1.4 4.1.5 PageScope Data Administrator ...4-2 Accessing from PageScope Data Administrator 4-2 Setting the user authentication method 4-5 Changing the authentication mode...4-7 Making the user settings...4-10 Making the account settings...4-11 bizhub 423/363/283/223 Contents-2
...setting function ...2-77 SNMP network setting function ...2-78 WebDAV Function ...2-79 Setting the WebDAV Server Password 2-79 PC-Fax RX Setting Function ...2-83 PC-Fax RX Setting ...2-83 TSI User Box Setting Function...2-86 TSI User Box Setting...2-86 TCP/IP Setting Function ...2-90 Setting... 4.1 4.1.1 4.1.2 4.1.3 4.1.4 4.1.5 PageScope Data Administrator ...4-2 Accessing from PageScope Data Administrator 4-2 Setting the user authentication method 4-5 Changing the authentication mode...4-7 Making the user settings...4-10 Making the account settings...4-11 bizhub 423/363/283/223 Contents-2
bizhub 223/283/363/423 Security Operations User Guide
Page 14
.... 2 Click "Certificate Error" to display the certificate. For [Host Name] and [Domain Name], specify the names set network settings (DNS Server setting, IP Address setting, SMTP Server setting, NetWare Setting, NetBIOS setting and AppleTalk Printer Name setting), resetting it to the factory setting bizhub 423/363/283/223 1-10 Then, deploy the certificate, which offers enhanced security functions, gives a certificate error message...
.... 2 Click "Certificate Error" to display the certificate. For [Host Name] and [Domain Name], specify the names set network settings (DNS Server setting, IP Address setting, SMTP Server setting, NetWare Setting, NetBIOS setting and AppleTalk Printer Name setting), resetting it to the factory setting bizhub 423/363/283/223 1-10 Then, deploy the certificate, which offers enhanced security functions, gives a certificate error message...
bizhub 223/283/363/423 Security Operations User Guide
Page 24
... Error the method is enabled before password authentication (Mode 2) Restrict (not to be changed) OFF (not to be changed) Only Detail View is changed ) bizhub 423/363/283/223 2-9 An 8-digit-or-more (no value less than AES/3DES) No (not to be changed) 3DES (not to be changed to DES... of destination data previously registered (Address Book and Program) Secure Print User Box Preview Initialize (Network Settings) Image Log Transfer Settings Factory Setting Invalid Mode 1 Mode 1 Restrict OFF Restrict Restrict OFF AES-256, 3DES-168, RC4-128, DES-56, RC4-40 No 3DES ON Read/Write enabled auth...
... Error the method is enabled before password authentication (Mode 2) Restrict (not to be changed) OFF (not to be changed) Only Detail View is changed ) bizhub 423/363/283/223 2-9 An 8-digit-or-more (no value less than AES/3DES) No (not to be changed) 3DES (not to be changed to DES... of destination data previously registered (Address Book and Program) Secure Print User Box Preview Initialize (Network Settings) Image Log Transfer Settings Factory Setting Invalid Mode 1 Mode 1 Restrict OFF Restrict Restrict OFF AES-256, 3DES-168, RC4-128, DES-56, RC4-40 No 3DES ON Read/Write enabled auth...
bizhub 223/283/363/423 Security Operations User Guide
Page 79
...leave the machine with the setting screen of Administrator Settings left shown on the display from the Administrator Settings. 1 Call the Administrator Settings on the display. If it becomes necessary to register the certificate at the destination. bizhub 423/363/283/223 2-64...Setting Function 2 2.15 S/MIME Communication Setting Function When access to the machine by the Administrator of the machine through the Administrator Settings is absolutely necessary to leave the machine, be sure first to log off from the control panel. 2 Touch [Network Settings]. 3 Touch [E-Mail Settings...
...leave the machine with the setting screen of Administrator Settings left shown on the display from the Administrator Settings. 1 Call the Administrator Settings on the display. If it becomes necessary to register the certificate at the destination. bizhub 423/363/283/223 2-64...Setting Function 2 2.15 S/MIME Communication Setting Function When access to the machine by the Administrator of the machine through the Administrator Settings is absolutely necessary to leave the machine, be sure first to log off from the control panel. 2 Touch [Network Settings]. 3 Touch [E-Mail Settings...