Dell S2815dn Installation And Configuration Manual Download

Page: 1 / 40

CACStar User Guide Rev A27

Dell™ S2815dn

CAC

Star

™ Smart Card Reader

Installation and Configuration Guide

Document protection for CAC/PIV enabled

Multifunction Devices

Summary of Contents for S2815dn

Page 1: ...r User Guide Rev A27 Copyright 2017 Digital Imaging Technology Page 1 Dell S2815dn CACStar Smart Card Reader Installation and Configuration Guide Document protection for CAC PIV enabled Multifunction Devices ...

Page 3: ...LAN Side Configuration 10 Local Side Configuration 12 Security 13 MFD Function Enabling 13 Email Setup 15 Authentication Method 17 User Logging 24 Upload Certificate 24 Administrator 26 Change Password 26 Administrator Access 26 Firmware Update 28 Technical Support 30 Setup Test 31 Date Time 32 Hold Print Files 33 Hold File Name Matching Format 34 Status 36 Card Reader 36 Network 37 Other 38 ...

Page 5: ...done using secure web based access to CACStar by the network administrator In its simplest form the admin only needs to configure the IP address of the MFD and the IP address of the local time server Information about many additional configuration options is described later in this guide Prior to starting the CACStar configuration you must know your network infrastructure Appendix A has a convenie...

Page 6: ...rmation b Press the F key again the display will say Configuration c Press the Enter key the display will show DHCP and the current setting The default is OFF d Press the F key again the display will show LAN IP Address and the current setting e Press the Enter key the display will show Enter New Value f Enter the desired IP Address and press Enter Use the IP address you want to use for the host c...

Page 7: ... the F key the display will say Information b Press the F key again the display will say Configuration c Press the Enter key the display will show DHCP and the current setting The default is OFF d Press the Enter key the display will show F Change X Exit e Press the F key to change the setting from OFF to ON f Press the Enter key After about 3 seconds CACStar will reboot g After reboot and initial...

Page 8: ...ev A27 Copyright 2017 Digital Imaging Technology Page 8 k To confirm this operation was successful you can ping the CACStar at its new IP address from your PC Figure 1 Keypad Function Buttons Exit Backspace Function Enter ...

Page 9: ... your browser to the CACStar using a secure connection on port 8443 at the IP address you assigned in the steps above For example https 192 168 1 23 8443 or https 10 5 9 11 8443 You are likely to get an Invalid Certificate Warning from the browser If so override the warning and continue to the CACStar web site The browser will require an ID and password The default ID is admin The default password...

Page 11: ... to the new IP address you just entered Step 2 NTP Server Set this to the Network Time Protocol Server IP address or Server Name This will allow the CACStar to validate certificates by date If DHCP is in use you may check the NTP From DHCP box to force retrieval of the NTP Server address from the DHCP server in which case the address field is not used and may be left blank Step 3 Configure Gateway...

Page 12: ...t Domain name for the LAN Step 5 Press Update Local Side Configuration These settings define the IP addresses used for Local communication between the CACStar and the MFD printer The defaults are likely to be acceptable Usually there is no need to enter any IP addresses on this configuration page Make sure these values were entered into the MFD using the MFD printer operator panel ...

Page 13: ...cked the Function will always be allowed For example If you want the MFD Scan to Folder Function to only be available when a validated CAC Card is installed check the CAC Enable Scan To Folder box If you want the MFD Scan to Folder Function to be available all the time whether a CAC card is inserted or not uncheck the CAC Enable Scan To Folder box Click the Update button after all entries are made...

Page 14: ...serting their CAC card After authentication the user s jobs will be printed CAC Print Server Set this to the IP address of the Secure Print server Server Print Only If enabled print jobs will only be allowed from the configured CAC Print Server If not jobs will be allowed from any IP address For this to operate CAC Enable Printing must be selected in the Security MFD Function Enabling menu ...

Page 15: ...the item shown in the screen below SMTP Address or Server Name Set the IP address or Server Name of the SMTP server SMTP Port Number Set the TCP port number for SMTP communications User Email Address From Select the source location for the From email address Emailed scans can be from either the user s own email address on his CAC card or from the user s email address on the LDAP server ...

Page 16: ...on the CAC reader will show Encrypt Email Line 2 of the display shows No and can be toggled between Yes and No by pressing the F key When the desired choice is selected press the green Enter key to send the email message You need to make this choice or press the F key within 10 seconds If there are no key presses for 10 seconds the system will send the message unencrypted Email Encryption Type Cho...

Page 17: ...use Kerberos for Email Login Authentication If this box is checked the Kerberos section of Authentication Method web page must be completed properly Authentication Method CAC Validated Timeout This setting is the number of minutes of inactivity before a CAC Validated session will be terminated If this setting is 0 the timeout is disabled ...

Page 18: ...C card PKI certificate NOTE If OCSP is enabled you must have a DNS server configured Root Certificate Check this box to enable Root Certificate verification of CAC Cards If enabled the certificate chain including the Root CA Certificate will be used to validate the CAC card PKI certificate The card is also checked to be certain the CAC certificate has a valid private key NOTE If Root Certificate i...

Page 19: ...e keywords are L expands to become the user s last name F expands to become the user s first name M expands to become the user s middle name E expands to the user s email address e expands to the user s EDI PI I expands to the user s PIC Identification s expands to the user s SAN Principal name LDAP User ID options Choices are cn upn mail or name to be used for finding and identifying users Disabl...

Page 20: ...INIT Win2K The setting affects the Public Key Cryptography for Initial Authentication in Kerberos Check this box if you are using a Windows 2000 KDC Server and or need to use the older Kerberos PKINIT command reply set Disable Reverse DNS Lookups Check this box to disable Reverse DNS Lookups by Kerberos and LDAP This is only necessary if there is a problem using Reverse DNS Lookups If this box is ...

Page 21: ...ed if MFD SMB Kerberos Proxy is NOT checked AND the SMB Folder Name IS configured Default SMB Password The Password for the default SMB server This is only needed if MFD SMB Kerberos Proxy is NOT checked AND the SMB Folder Name is configured SMB Folder Name If a Folder Name is configured any folder name that is used by the printer will be replaced with this Folder Name Keywords can be used in this...

Page 22: ...e used to retrieve the path value for the u field Care should be taken when using characters before or after the u based on whether the LDAP Attribute value includes character s at the beginning or end SSL CA Certificate Checking If enabled the host SSL certificate will be verified against the CA certificate Therefore the applicable CA certificate must be loaded into the CACStar ...

Page 23: ...o SMB Book99 this name should be used for the printer s Server Address configuration The following sequences may be used to specify user related data in the destination path F First name M Middle Name L Last name E Email Address e EDI PI I PIC Identification u ldap attribute LDAP attribute value Examples myserver myshare e or uhomeDirectory NOTE all entries MUST resolve to a fully qualified Server...

Page 24: ...gy Page 24 User Logging User Logging provides a means to create view or delete a user log file to track user activity If this is enabled it will log the date user name and other information The log can be downloaded in a csv file format for viewing Upload Certificate ...

Page 25: ...ates are in a txt file format please send them to us and we will convert them to a supported format If desired we can preload them into new units The Create Certificates Summary will create a text file listing all certificates stored in the CACStar This is a text file that can be viewed or downloaded by selecting the View Certificates Summary button Device Certificate Management Generate and uploa...

Page 26: ...l Imaging Technology Page 26 Administrator Change Password Use this feature to change the password for the administrator When the Change Password button is clicked the next internal web page access will require this new password Administrator Access ...

Page 27: ...r will allow a Telnet session to occur The Telnet session will happen over Port 23 Telnet use with CACStar is intended for diagnostics by the developers Allow Non Secure Port 8080 If this is enabled CACStar will use Port 8080 and HTTP for HTML Otherwise Port 8443 and HTTPS will be used for HTML Changing this setting requires a reboot of CACStar Disable Front Panel Configuration If this is checked ...

Page 28: ... is stored in flash memory and can be updated as necessary for addition of new features The CACStar cfg file may also be uploaded It is a text file that contains the CACStar configuration items For more details about how to update the firmware please see the separate document Firmware Update Procedure ...

Page 29: ... edited The MAC address and Serial Number are displayed for information purposes only and will not be used as a configuration item Export Config File will allow this file to be saved outside CACStar This file should be saved as a text file It may be edited with a text editor It may also be uploaded to CACStar at a later date Create and Export Current Certificates Create Certificates File will crea...

Page 30: ...agnose network and configuration concerns Use of these features is normally in conjunction with technical support from your vendor Create SysLog File A log file can be created for use by CACStar Engineering to help resolve problems that may occur Ethernet Capture An Ethernet Capture file can be created containing information from either the Local port or the LAN port for use by CACStar Engineering...

Page 32: ...Star User Guide Rev A27 Copyright 2017 Digital Imaging Technology Page 32 Date Time This is used to set the system date and time in CACStar if necessary The time zone should be set to your local time zone ...

Page 33: ...te is reached the file will be deleted without being printed Remaining storage and total storage are displayed so the user will know if held print files are reaching the maximum storage capacity When storage is nearly full a warning message will be displayed on the CAC reader LCD MEMORY NEAR FULL Hold Print Expiration This sets the default expiration in number of days for all received Hold Print f...

Page 34: ... the user s last name l the first character of the user s last name e the user s EDI PI I the user s PIC Identification S the user s SAM Account Name from LDAP A number may be used between the and the keyword to specify a maximum number of characters For example 5L would indicate a maximum of 5 characters of the user s last name Add Hold Print Usernames If jobs must have user names from the host s...

Page 35: ...l Imaging Technology Page 35 Export Hold Print Usernames If you want to copy the usernames from one CACStar to another you can Export the usernames You will get a db file which you can then send to another CACStar to load them into the other CACStar ...

Page 36: ...ogy Page 36 Status The Status pages offer three views of information about the current operations of CACStar Number of successful card validations number of unsuccessful card validations network operations date time and firmware version are all displayed Card Reader ...

Search results

Summary of Contents for S2815dn

Reviews:

Related manuals for S2815dn

Brands by name

Popular brands

Dell S2815dn, Installation And Configuration Manual

Search results

Summary of Contents for S2815dn

Reviews:

Related manuals for S2815dn

Brands by name

Popular brands