AU-211P Authentication Unit User Guide for bizhub C220/C280/C360/C452/C552/C652
Page 2
... Overview 7 2.2 Part names and their functions 8 2.3 Pre-Setting 9 2.3.1 Configuring Network Settings 9 2.3.2 Registering Active Directory for Authentication 11 2.3.3 Correcting the MFP Time 12 2.3.4 Registering the DNS Server Associated with Active Directory ........ 13 2.3.5 Specifying the PIV Transitional Mode 14 2.3.6 Configuring Settings for Verifying the Active Directory Certificate 15 2.4 Operation Settings 20 3 How to Use the Authentication Unit...
... Overview 7 2.2 Part names and their functions 8 2.3 Pre-Setting 9 2.3.1 Configuring Network Settings 9 2.3.2 Registering Active Directory for Authentication 11 2.3.3 Correcting the MFP Time 12 2.3.4 Registering the DNS Server Associated with Active Directory ........ 13 2.3.5 Specifying the PIV Transitional Mode 14 2.3.6 Configuring Settings for Verifying the Active Directory Certificate 15 2.4 Operation Settings 20 3 How to Use the Authentication Unit...
AU-211P Authentication Unit User Guide for bizhub C220/C280/C360/C452/C552/C652
Page 3
Contents 3.5 Scan to E-mail (S/MIME) Using PKI Card 36 3.5.1 Overview 36 3.5.2 Related Settings 37 3.5.3 Encrypting an E-Mail and Adding a Digital Signature 39 3.6 PKI Card Print 40 3.6.1 Overview... Using Scan To Home 55 3.8.3 Related Settings 56 3.8.4 Using Scan To Home 57 4 Added or Changed Setting Information 58 4.1 User Settings 58 4.1.1 System Settings 58 4.2 Administrator Settings 59 4.2.1 System Settings 59 4.2.2 User Authentication/ Account Track 59 4.2.3 Network Settings 60 4.2.4 Security Settings 61 4.2.5 License Settings 61 5 Appendix 62 5.1 Product Specifications ...
Contents 3.5 Scan to E-mail (S/MIME) Using PKI Card 36 3.5.1 Overview 36 3.5.2 Related Settings 37 3.5.3 Encrypting an E-Mail and Adding a Digital Signature 39 3.6 PKI Card Print 40 3.6.1 Overview... Using Scan To Home 55 3.8.3 Related Settings 56 3.8.4 Using Scan To Home 57 4 Added or Changed Setting Information 58 4.1 User Settings 58 4.1.1 System Settings 58 4.2 Administrator Settings 59 4.2.1 System Settings 59 4.2.2 User Authentication/ Account Track 59 4.2.3 Network Settings 60 4.2.4 Security Settings 61 4.2.5 License Settings 61 5 Appendix 62 5.1 Product Specifications ...
AU-211P Authentication Unit User Guide for bizhub C220/C280/C360/C452/C552/C652
Page 10
... Directory for verifying the Active Directory certificate (page 15) 2.3.1 Configuring Network Settings Configure the basic settings required to automatically retrieve the IP address or directly specify it. Configuring settings for authentication (page 11) - Description Select whether to use this system, pre-configure the following settings on the MFP. - When automatically retrieving the IP address, select...
... Directory for verifying the Active Directory certificate (page 15) 2.3.1 Configuring Network Settings Configure the basic settings required to automatically retrieve the IP address or directly specify it. Configuring settings for authentication (page 11) - Description Select whether to use this system, pre-configure the following settings on the MFP. - When automatically retrieving the IP address, select...
AU-211P Authentication Unit User Guide for bizhub C220/C280/C360/C452/C552/C652
Page 13
... the host address of the NTP server, select [ON]. Time Adjustment Setting On the MFP control panel, press the [Utility/Counter] key, and then [Administrator Settings] - [Network Settings] - [Forward] - [Detail Settings] [Time Adjustment Setting]. Page 1/2 Item ON/OFF Auto IPv6 Retrieval Host Address Port Number Set Date Page 2/2 Item Auto Time Adjustment Polling Interval Description Select [ON...
... the host address of the NTP server, select [ON]. Time Adjustment Setting On the MFP control panel, press the [Utility/Counter] key, and then [Administrator Settings] - [Network Settings] - [Forward] - [Detail Settings] [Time Adjustment Setting]. Page 1/2 Item ON/OFF Auto IPv6 Retrieval Host Address Port Number Set Date Page 2/2 Item Auto Time Adjustment Polling Interval Description Select [ON...
AU-211P Authentication Unit User Guide for bizhub C220/C280/C360/C452/C552/C652
Page 14
...) On the MFP control panel, press the [Utility/Counter] key, and then [Administrator Settings] - [Network Settings] - [TCP/IP Settings] - [DNS Server Settings (IPv4)]. This item is available when using the MFP in the MFP. AU-211P 13 Priority...secondary DNS server and 2 associated with Active Directory. DNS Server Settings (IPv6) On the MFP control panel, press the [Utility/Counter] key, and then [Administrator Settings] - [Network Settings] - [TCP/IP Settings] - [DNS Server Settings (IPv6)]. 2 Note These settings are required when using DHCP. Item Description DNS Server Auto ...
...) On the MFP control panel, press the [Utility/Counter] key, and then [Administrator Settings] - [Network Settings] - [TCP/IP Settings] - [DNS Server Settings (IPv4)]. This item is available when using the MFP in the MFP. AU-211P 13 Priority...secondary DNS server and 2 associated with Active Directory. DNS Server Settings (IPv6) On the MFP control panel, press the [Utility/Counter] key, and then [Administrator Settings] - [Network Settings] - [TCP/IP Settings] - [DNS Server Settings (IPv6)]. 2 Note These settings are required when using DHCP. Item Description DNS Server Auto ...
AU-211P Authentication Unit User Guide for bizhub C220/C280/C360/C452/C552/C652
Page 27
... to use the LDAP server. On the MFP control panel, press the [Utility/Counter] key, and then [Administrator Settings] - [Network Settings] - [LDAP Settings] - [Setting Up LDAP]. On the MFP control panel, press the [Utility/Counter] key, and then [Administrator Settings] - [Network Settings] - [LDAP Settings] - [Enabling LDAP]. Item Enabling LDAP Description Select [ON]. How to Use the Authentication Unit 3 3.3.2 Related...
... to use the LDAP server. On the MFP control panel, press the [Utility/Counter] key, and then [Administrator Settings] - [Network Settings] - [LDAP Settings] - [Setting Up LDAP]. On the MFP control panel, press the [Utility/Counter] key, and then [Administrator Settings] - [Network Settings] - [LDAP Settings] - [Enabling LDAP]. Item Enabling LDAP Description Select [ON]. How to Use the Authentication Unit 3 3.3.2 Related...
AU-211P Authentication Unit User Guide for bizhub C220/C280/C360/C452/C552/C652
Page 33
...not the NTLM user authentication is performed. Client Settings Configure the setting to configure the SMB TX settings on the MFP that supports this system. Item ON/OFF SMB Authentication Setting User Authentication (NTLM) DFS Setting Description Select [ON]. When performing SMB TX ... domain environment, select [Kerberos]. How to Use the Authentication Unit 3 3.4.2 Related Settings This section explains how to perform SMB TX. On the MFP control panel, press the [Utility/Counter] key, and then [Administrator Settings] - [Network Settings] - [SMB Settings] - [Client Settings].
...not the NTLM user authentication is performed. Client Settings Configure the setting to configure the SMB TX settings on the MFP that supports this system. Item ON/OFF SMB Authentication Setting User Authentication (NTLM) DFS Setting Description Select [ON]. When performing SMB TX ... domain environment, select [Kerberos]. How to Use the Authentication Unit 3 3.4.2 Related Settings This section explains how to perform SMB TX. On the MFP control panel, press the [Utility/Counter] key, and then [Administrator Settings] - [Network Settings] - [SMB Settings] - [Client Settings].
AU-211P Authentication Unit User Guide for bizhub C220/C280/C360/C452/C552/C652
Page 38
...-211P 37 On the MFP control panel, press the [Utility/Counter] key, and then [Administrator Settings] - [Network Settings] - [E-Mail Settings] - [S/MIME Communication Settings]. If [Select when sending] is [Select when sending]. Automatically Obtain Certificates Select whether or not ...mail messages. Digital Signature To add a digital signature, select [Always add signature] or [Select when sending]. S/MIME Communication Settings Configure settings to add a digital signature before sending an e-mail. Print S/MIME Information Select whether or not S/MIME information is automatically ...
...-211P 37 On the MFP control panel, press the [Utility/Counter] key, and then [Administrator Settings] - [Network Settings] - [E-Mail Settings] - [S/MIME Communication Settings]. If [Select when sending] is [Select when sending]. Automatically Obtain Certificates Select whether or not ...mail messages. Digital Signature To add a digital signature, select [Always add signature] or [Select when sending]. S/MIME Communication Settings Configure settings to add a digital signature before sending an e-mail. Print S/MIME Information Select whether or not S/MIME information is automatically ...
AU-211P Authentication Unit User Guide for bizhub C220/C280/C360/C452/C552/C652
Page 61
...] has been added. For details, refer to "S/MIME Communication Settings" (page 37). SNMP Settings Item SNMP v1/v2c Settings SNMP v3 (IP) Description The default of [Write Setting] is [OFF]. Added or Changed Setting Information 4 4.2.3 Network Settings FTP Settings Item FTP Server Settings Description The default is [Invalid]. LDAP Settings Item Setting Up LDAP Description [Login Name], [Password] and [Select Server...
...] has been added. For details, refer to "S/MIME Communication Settings" (page 37). SNMP Settings Item SNMP v1/v2c Settings SNMP v3 (IP) Description The default of [Write Setting] is [OFF]. Added or Changed Setting Information 4 4.2.3 Network Settings FTP Settings Item FTP Server Settings Description The default is [Invalid]. LDAP Settings Item Setting Up LDAP Description [Login Name], [Password] and [Select Server...
bizhub C452/C552/C652/C552DS/C652DS Security Operations User Manual
Page 3
...setting function ...2-76 SNMP network setting function ...2-77 WebDAV Function ...2-78 Setting the WebDAV Server Password 2-78 PC-Fax RX Setting Function ...2-82 PC-Fax RX Setting ...2-82 TSI User Box Setting Function...2-86 TSI User Box Setting...2-86 TCP/IP Setting Function ...2-90 Setting...4.1.2 4.1.3 4.1.4 4.1.5 PageScope Data Administrator ...4-2 Accessing from PageScope Data Administrator 4-2 Setting the user authentication method 4-4 Changing the authentication mode...4-6 Making the user settings...4-9 Making the account settings...4-10 bizhub C652/C652DS/C552/C552DS/C452 Contents-2
...setting function ...2-76 SNMP network setting function ...2-77 WebDAV Function ...2-78 Setting the WebDAV Server Password 2-78 PC-Fax RX Setting Function ...2-82 PC-Fax RX Setting ...2-82 TSI User Box Setting Function...2-86 TSI User Box Setting...2-86 TCP/IP Setting Function ...2-90 Setting...4.1.2 4.1.3 4.1.4 4.1.5 PageScope Data Administrator ...4-2 Accessing from PageScope Data Administrator 4-2 Setting the user authentication method 4-4 Changing the authentication mode...4-6 Making the user settings...4-9 Making the account settings...4-10 bizhub C652/C652DS/C552/C552DS/C452 Contents-2
bizhub C452/C552/C652/C552DS/C652DS Security Operations User Manual
Page 14
... a certificate for the computer account. In such cases, it to the factory setting bizhub C652/C652DS/C552/C552DS/C452 1-10 Then, deploy the certificate, which offers enhanced security functions, gives a ...setting (MAC address) Clears the currently set password, resetting it to the factory setting (sysadm) Deletes the currently set S/MIME certificate Deletes the currently set Device certificate (SSL certificate) Clears the currently set network settings (DNS Server setting, IP Address setting, SMTP Server setting, NetWare Setting, NetBIOS setting and AppleTalk Printer Name setting...
... a certificate for the computer account. In such cases, it to the factory setting bizhub C652/C652DS/C552/C552DS/C452 1-10 Then, deploy the certificate, which offers enhanced security functions, gives a ...setting (MAC address) Clears the currently set password, resetting it to the factory setting (sysadm) Deletes the currently set S/MIME certificate Deletes the currently set Device certificate (SSL certificate) Clears the currently set network settings (DNS Server setting, IP Address setting, SMTP Server setting, NetWare Setting, NetBIOS setting and AppleTalk Printer Name setting...
bizhub C452/C552/C652/C552DS/C652DS Security Operations User Manual
Page 22
In this mode, system and network settings can be made. % Administrator (User Mode) is no more set to log off . or, turn off, and then turn it off from the Admin Mode. This allows you to [ON], entry of a wrong password ... off the main power switch → Turn on the main power switch → Turn on , the main power switch of the machine. bizhub C652/C652DS/C552/C552DS/C452 2-7 2.1 Accessing the Administrator Settings 2 5 Select "Administrator (Admin Mode)" or "Administrator (User Mode)" and enter the 8-digit Administrator Password in the "Password" box. % Administrator (Admin ...
In this mode, system and network settings can be made. % Administrator (User Mode) is no more set to log off . or, turn off, and then turn it off from the Admin Mode. This allows you to [ON], entry of a wrong password ... off the main power switch → Turn on the main power switch → Turn on , the main power switch of the machine. bizhub C652/C652DS/C552/C552DS/C452 2-7 2.1 Accessing the Administrator Settings 2 5 Select "Administrator (Admin Mode)" or "Administrator (User Mode)" and enter the 8-digit Administrator Password in the "Password" box. % Administrator (Admin ...
bizhub C452/C552/C652/C552DS/C652DS Security Operations User Manual
Page 24
...[ON] changes the setting values of destination data previously registered (Address Book and Program) Secure Print User Box Preview Initialize (Network Settings) Image Log Transfer Settings Factory Setting Invalid Mode 1 Mode ...Network Setting Clear (Pagescope Web Connection) Administrator Password Change Via Network (Pagescope Web Connection) Release Time settings Change by Secure Print ID (Mode 2). 2.2 Enhancing the Security Function 2 Setting the Enhanced Security Mode to be changed) The security level can be changed) Only Detail View is changed ) bizhub C652/C652DS/C552/C552DS/C452...
...[ON] changes the setting values of destination data previously registered (Address Book and Program) Secure Print User Box Preview Initialize (Network Settings) Image Log Transfer Settings Factory Setting Invalid Mode 1 Mode ...Network Setting Clear (Pagescope Web Connection) Administrator Password Change Via Network (Pagescope Web Connection) Release Time settings Change by Secure Print ID (Mode 2). 2.2 Enhancing the Security Function 2 Setting the Enhanced Security Mode to be changed) The security level can be changed) Only Detail View is changed ) bizhub C652/C652DS/C552/C552DS/C452...
bizhub C452/C552/C652/C552DS/C652DS Security Operations User Manual
Page 78
...MIME communications, it is authenticated, the machine enables the setting of encryption of text of e-mail transmitted and received between the PC and the machine. bizhub C652/C652DS/C552/C552DS/C452 2-63 Set 1024 bits or more for the key length of ... Communication Setting Function 2 2.15 S/MIME Communication Setting Function When access to call the Administrator Settings on the display, see page 2-2. 0 Do not leave the machine with the setting screen of Administrator Settings left shown on the display from the control panel. 2 Touch [Network Settings]. 3 Touch [E-Mail Settings]. 4...
...MIME communications, it is authenticated, the machine enables the setting of encryption of text of e-mail transmitted and received between the PC and the machine. bizhub C652/C652DS/C552/C552DS/C452 2-63 Set 1024 bits or more for the key length of ... Communication Setting Function 2 2.15 S/MIME Communication Setting Function When access to call the Administrator Settings on the display, see page 2-2. 0 Do not leave the machine with the setting screen of Administrator Settings left shown on the display from the control panel. 2 Touch [Network Settings]. 3 Touch [E-Mail Settings]. 4...
bizhub C452/C552/C652/C552DS/C652DS Security Operations User Manual
Page 84
... Settings. 1 Call the Administrator Settings on the display. bizhub C652/C652DS/C552/C552DS/C452 2-69 If it is absolutely necessary to leave the machine, be restored. In PageScope Web Connection, import/export of the Device Setting is enabled, allowing the setting for accessing the MIB object over the network using the SNMP from the control panel. 2 Touch [Network Settings...
... Settings. 1 Call the Administrator Settings on the display. bizhub C652/C652DS/C552/C552DS/C452 2-69 If it is absolutely necessary to leave the machine, be restored. In PageScope Web Connection, import/export of the Device Setting is enabled, allowing the setting for accessing the MIB object over the network using the SNMP from the control panel. 2 Touch [Network Settings...
bizhub C452/C552/C652/C552DS/C652DS Security Operations User Manual
Page 86
bizhub C652/C652DS/C552/C552DS/C452 2-71 For details of the Password Rules, see page 1-8. 10 To prevent entry of a wrong password, enter the auth-password again. % Press the [C] key to ... counted as unauthorized access, if the Enhanced Security Mode is set in the auth-passwords, a message appears that tells that there is set into an access lock state, rejecting any more auth-password from [Network Settings] of step 2, select [Forward] → [Detail Settings] → [Device Setting]. % The entry of the machine. 8 Enter the new 8-digit-or...
bizhub C652/C652DS/C552/C552DS/C452 2-71 For details of the Password Rules, see page 1-8. 10 To prevent entry of a wrong password, enter the auth-password again. % Press the [C] key to ... counted as unauthorized access, if the Enhanced Security Mode is set in the auth-passwords, a message appears that tells that there is set into an access lock state, rejecting any more auth-password from [Network Settings] of step 2, select [Forward] → [Detail Settings] → [Device Setting]. % The entry of the machine. 8 Enter the new 8-digit-or...
bizhub C452/C552/C652/C552DS/C652DS Security Operations User Manual
Page 87
...bizhub C652/C652DS/C552/C552DS/C452 2-72 If a wrong SNMP password (auth-password, priv-password) is entered a predetermined number of times (once to three times) or more set by the Administrator of the machine, the machine is set to [ON]. To cancel the access lock state, perform the Release Setting... of the Password Rules, a message appears that tells that is set into an access lock state, rejecting any more priv-password from [Network Settings] of step 2, select [Forward] → [Detail Settings] → [Device Setting]. % The entry of the Password Rules, see page 1-8. For...
...bizhub C652/C652DS/C552/C552DS/C452 2-72 If a wrong SNMP password (auth-password, priv-password) is entered a predetermined number of times (once to three times) or more set by the Administrator of the machine, the machine is set to [ON]. To cancel the access lock state, perform the Release Setting... of the Password Rules, a message appears that tells that is set into an access lock state, rejecting any more priv-password from [Network Settings] of step 2, select [Forward] → [Detail Settings] → [Device Setting]. % The entry of the Password Rules, see page 1-8. For...
bizhub C452/C552/C652/C552DS/C652DS Security Operations User Manual
Page 91
...the PC is used for the setting items. Setting Item Write User Name auth-password priv-password Security Level Object ID 1.3.6.1.4.1.18334.1.1.2.1.5.6.4.2.1.2.2 1.3.6.1.4.1.18334.1.1.2.1.5.6.4.2.1.3.2 1.3.6.1.4.1.18334.1.1.2.1.5.6.4.2.1.4.2 1.3.6.1.4.1.18334.1.1.2.1.5.6.4.2.1.5.2 bizhub C652/C652DS/C552/C552DS/C452 2-76 The machine allows you to...security control functions that meets the requirements of the Password Rules. Operation of the network setting function and the SNMP password change the setting, specify the corresponding object ID. If [auth-password] has been selected for ...
...the PC is used for the setting items. Setting Item Write User Name auth-password priv-password Security Level Object ID 1.3.6.1.4.1.18334.1.1.2.1.5.6.4.2.1.2.2 1.3.6.1.4.1.18334.1.1.2.1.5.6.4.2.1.3.2 1.3.6.1.4.1.18334.1.1.2.1.5.6.4.2.1.4.2 1.3.6.1.4.1.18334.1.1.2.1.5.6.4.2.1.5.2 bizhub C652/C652DS/C552/C552DS/C452 2-76 The machine allows you to...security control functions that meets the requirements of the Password Rules. Operation of the network setting function and the SNMP password change the setting, specify the corresponding object ID. If [auth-password] has been selected for ...
bizhub C452/C552/C652/C552DS/C652DS Security Operations User Manual
Page 92
... Object ID 1.3.6.1.4.1.18334.1.1.2.1.5.7.1.1.1.3.1 1.3.6.1.4.1.18334.1.1.2.1.5.7.1.1.1.6.1 1.3.6.1.4.1.18334.1.1.2.1.5.7.1.1.1.7.1 1.3.6.1.4.1.18334.1.1.2.1.5.7.1.2.1.3.1.1 1.3.6.1.4.1.18334.1.1.2.1.5.7.13.1.1.3.1 1.3.6.1.4.1.18334.1.1.2.1.5.8.3.1.3.1.1 1.3.6.1.4.1.18334.1.1.2.1.5.8.5.1.3.1.1 1.3.6.1.4.1.18334.1.1.2.1.5.9.2.1.3.1.1 1.3.6.1.4.1.18334.1.1.2.1.5.10.1.1.4.1 bizhub C652/C652DS/C552/C552DS/C452 2-77 2.16 SNMP Setting Function 2 2.16.4 SNMP network setting function The Administrator who has been authenticated through SNMP access authentication from the PC is allowed to operate...
... Object ID 1.3.6.1.4.1.18334.1.1.2.1.5.7.1.1.1.3.1 1.3.6.1.4.1.18334.1.1.2.1.5.7.1.1.1.6.1 1.3.6.1.4.1.18334.1.1.2.1.5.7.1.1.1.7.1 1.3.6.1.4.1.18334.1.1.2.1.5.7.1.2.1.3.1.1 1.3.6.1.4.1.18334.1.1.2.1.5.7.13.1.1.3.1 1.3.6.1.4.1.18334.1.1.2.1.5.8.3.1.3.1.1 1.3.6.1.4.1.18334.1.1.2.1.5.8.5.1.3.1.1 1.3.6.1.4.1.18334.1.1.2.1.5.9.2.1.3.1.1 1.3.6.1.4.1.18334.1.1.2.1.5.10.1.1.4.1 bizhub C652/C652DS/C552/C552DS/C452 2-77 2.16 SNMP Setting Function 2 2.16.4 SNMP network setting function The Administrator who has been authenticated through SNMP access authentication from the PC is allowed to operate...
bizhub C452/C552/C652/C552DS/C652DS Security Operations User Manual
Page 93
... the Administrator of the machine through the Administrator Settings is set to [ON]. bizhub C652/C652DS/C552/C552DS/C452 2-78 To cancel the access lock state, perform the Release Setting by the Administrator of the machine, the machine is incorrectly set by the Administrator of the machine. 1 Call the Network Settings screen on the display from the Administrator...
... the Administrator of the machine through the Administrator Settings is set to [ON]. bizhub C652/C652DS/C552/C552DS/C452 2-78 To cancel the access lock state, perform the Release Setting by the Administrator of the machine, the machine is incorrectly set by the Administrator of the machine. 1 Call the Network Settings screen on the display from the Administrator...