PKI Pre-Installation Guide
Version 2.0.0
Page 15
1.
User authorization can be enabled or disabled for the device. If you want to use User
Authorization for the whole device or for individual device functions, this must be
enabled. Do you want to enable this feature?
□
Yes
□
No
2.
If User Authorization is enabled, the application must use an LDAP query to determine
the Active Directory groups to which the user belongs. To use the MFP’s default LDAP
directory (this is the typical answer), check the Default Configuration option. To define a
separate LDAP Configuration to use for this lookup, check one of the Custom
Configuration options and complete the appropriate section.
Check the box below to indicate the LDAP directory setup that will be used:
□
LDAP – Default Configuration (as specified in section 2.5)
□
LDAP – Configuration 1 (as specified in section 8.1)
□
LDAP – Configuration 2 (as specified in section 8.2)
□
LDAP – Configuration 3 (as specified in section 8.3)
3.
If User Authorization is enabled, it can be used to restrict access to the device as a whole
or just to individual functions. For device access, select the appropriate authorization
setting.
□
All Users Can Use the Device – no restrictions
□
Only Users in the Groups specified in item 4 can use the device
□
All Users Except those in the Groups specified in item 4 can use the device
4.
If User Authorization is enabled and the device access setting in item 3 requires groups to
be included or excluded, list the Active Directory group names here.
________________________________________________________________________
________________________________________________________________________
________________________________________________________________________
3.4 Logout Behavior
3.4.1 Auto-Logout
After a user has successfully authenticated to the device, there is an Auto-Logout timeout
feature. If the user does not touch the screen within the specified time even with the SmartCard