DEFAULT SETTINGS
Default Settings
You can change the default settings.
User Authentication
This setting enables or disables user authentication and specifies the authentication method.
When the user authentication is enabled, each user of the machine is registered. When a user logs in, the separate authentication settings apply to the user. This function allows greater control of security and cost management than that on previous machines.
Even if user information is not stored in the machine, you can directly enter the user information stored in an LDAP server to log in to the machine if necessary. In this case, the authentication information of the "User" being stored as factory default applies to the login user. For more information, see "DEFAULT USER LIST".
When the user authentication is enabled, each user of the machine is registered. When a user logs in, the separate authentication settings apply to the user. This function allows greater control of security and cost management than that on previous machines.
Even if user information is not stored in the machine, you can directly enter the user information stored in an LDAP server to log in to the machine if necessary. In this case, the authentication information of the "User" being stored as factory default applies to the login user. For more information, see "DEFAULT USER LIST".
- For user registration procedure, see "ADDING OR EDITING A USER".
- For the user authentication setup, see "AUTHENTICATION BY USER NUMBER" or "AUTHENTICATION BY LOGIN NAME/PASSWORD".
User Authentication
If [User Authentication] is enabled, the authentication screen appears before an operation is carried out in any mode except for the job status screen*.Log in as an already registered user.
After logging in, you can move freely through the modes.
* The login screen appears when a document filing file is used or when a broadcast transmission is reattempted from the job status screen.
Authentication Method Setting
This selects the authentication method. When using user authentication, be sure to configure this setting first. The items to be configured for users stored after setting the user authentication method vary depending on the selected authentication method.| Item | Description |
|---|---|
| Authenticate a User by Login Name and Password | Standard authentication method using a login name and password. |
| Authenticate a User by Login Name, Password and E-mail Address | This authentication also checks the e-mail address, in addition to the login name and password of the user. |
| Authenticate a User by User Number Only | Use this option for simple authentication if you skip the network authentication. |
- The login screen will vary depending on the authentication method that is selected.
For details, see "AUTHENTICATION BY USER NUMBER" or "AUTHENTICATION BY LOGIN NAME/PASSWORD". - When "Authenticate a User by User Number Only" is selected for the authentication method, network authentication cannot be used.
Device Account Mode Setting
A specific user can be registered as an auto login user. When this option is enabled, the registered user can log in to the machine automatically.This function can eliminate each login procedure on the authentication screen and apply the selected user settings (such as network authentication and favorite operations). As an example, this enables uses such as "authentication for color copying only".
Also, you can temporarily log in as a user other than the auto login user, and operate the machine with the privileges of this user. To allow other users to log in temporarily when [Device Account Mode] is enabled, select [Allow Login by Different User].
To log in as a user other than a fixed user when [Allow Login by Different User] is enabled, tap the [Logout] key to cancel the fixed user login state. When the user authentication screen appears, log in as the desired user again. After you have used the machine, tap the [Logout] key to log out as the current suer. If you have logged in as the Auto Login user, and if you have failed automatic login due to some reasons or if you do not have the administrator's privileges, you cannot use the general setting modes or Setting mode. In that case, the administrator should tap the [Administrator Login] key on the Setting mode screen and log in again.Actions when the Limit of Pages for Output Jobs
This setting determines whether or not a job will be completed if the page limit is reached while the job is in progress.
The following settings can be configured. Locking of the operation panel for five minutes can be canceled by selecting [User Control] in "Setting mode (administrator)" → [Default Settings] → [Release the Lock on Machine Operation Panel].
When a print job is executed by a user who is not registered in the machine, the "Other User" registered as factory default is used as the login user.
For more information, see "DEFAULT USER LIST".
When login is performed by network authentication using user information that is not registered in the machine, the login user will be the "User" registered as factory default. For more information, see "DEFAULT USER LIST".
The information stored is as follows:
If access control information cannot be obtained from the LDAP server used for authentication, user authentication will not be possible.
Back to top
The following settings can be configured.
- Job is Completed even when the Limit of Pages is Reached
- Job is Stopped when the Limit of Pages is Reached
- Job is Stopped when the Limit of Pages is Reached and the Receiving Job is Deleted
A Warning when Login Fails
If a login fails three times in succession, a warning is displayed and further login is disabled for five minutes. This prevents an unauthorized person from attempting to guess a password. (The number of failed login attempts is retained even if the power is turned off.)
Locking of the operation panel for five minutes can be canceled by selecting [User Control] in "Setting mode (administrator)" → [Default Settings] → [Release the Lock on Machine Operation Panel].Disabling of Printing by Invalid User
Printing by users whose information is not stored in the machine, such as printing without entering valid user information in the printer driver or printing of a file on an FTP server in Setting mode (Web version), can be prohibited.
When a print job is executed by a user who is not registered in the machine, the "Other User" registered as factory default is used as the login user. For more information, see "DEFAULT USER LIST".
Automatically print stored jobs after login
When retention is enabled in the printer driver and print data has been spooled to the machine, the spooled print data is automatically printed out when the user who enabled retention logs in.
Default Network Authentication Server Setting
Use this to set the default network authentication server.
When you log into Setting mode (Web version) or send a print job to the machine using user information that is not registered in the machine, the authentication server is not known. This setting is used to select one of the LDAP servers registered in the machine as the authentication server.
When you log into Setting mode (Web version) or send a print job to the machine using user information that is not registered in the machine, the authentication server is not known. This setting is used to select one of the LDAP servers registered in the machine as the authentication server.
When login is performed by network authentication using user information that is not registered in the machine, the login user will be the "User" registered as factory default. For more information, see "DEFAULT USER LIST".Perform LDAP Server Access Control
Register the access control information for page count limits, authorities, and favorite operations can be registered on an LDAP server in advance. By using this LDAP server for network authentication, perform the user authentication based on the registered access control information.
Use this function when user authentication is performed by network authentication using an LDAP server or a directory service (Active Directory, etc.).
Before using this function, configure settings for authentication by LDAP server, obtain control numbers for the "Pages Limit Group", "Authority Group", "Favorite Operation Group", and "My Folder" (including base settings for each group), and associate these with the control numbers registered in the machine.
To use this function, add the properties associated with "Pages Limit Group", "Authority Group", "Favorite Operation Group", and "My Folder" to the directory information of the LDAP server used for user authentication.
The property information is indicated below. Settings previously stored in the machine cannot be changed.
Use this function when user authentication is performed by network authentication using an LDAP server or a directory service (Active Directory, etc.).
Before using this function, configure settings for authentication by LDAP server, obtain control numbers for the "Pages Limit Group", "Authority Group", "Favorite Operation Group", and "My Folder" (including base settings for each group), and associate these with the control numbers registered in the machine.
To use this function, add the properties associated with "Pages Limit Group", "Authority Group", "Favorite Operation Group", and "My Folder" to the directory information of the LDAP server used for user authentication.
The property information is indicated below. Settings previously stored in the machine cannot be changed.
| Property | Name of property in factory default state | Setting |
|---|---|---|
| Pages Limit Group | pagelimit | A registration number of the storing page limit group which has been stored in the machine. Or a group name already stored in the machine. Unlimited: unlimited |
| Authority Group | authority | A registration number of the authority group which has been stored in the machine. Or a group name already stored in the machine. Admin: admin User: user Guest: guest |
| Favorite Operation Group | favorite | A registration number of the favorite operation group which has been stored in the machine. Or a group name already stored in the machine. Following the System Settings: systemsettings |
| My Folder | myfolder | Folder name of user folder stored in the machine. Do not enter if the default folder is specified. |
Rename the properties that the machine obtains from the LDAP server as follows. In "Setting mode (administrator)", select [Network Settings] → [LDAP Settings]. From the Global Address Book setting screen, select [Linkage with User Control Function] and then select [Pages Limit Group], [Authority Group], [Favorite Operation Group] and [My Folder].
The [Pages Limit Group], [Authority Group], and [Favorite Operation Group] information that is registered in each machine determines the authority and settings that the user is actually granted. To use this function to ensure that users are granted the same authority and settings on any machine, register the [Pages Limit Group], [Authority Group], and [Favorite Operation Group] information with the same authority so that they will be registered in each machine using the same registration numbers.
For [My Folder], register the folder that has the same name in [Custom Folder] in each machine.
The directory information of the LDAP server that is used cannot be changed from the machine. Consult the administrator of the LDAP server.
The [Pages Limit Group], [Authority Group], and [Favorite Operation Group] information that is registered in each machine determines the authority and settings that the user is actually granted. To use this function to ensure that users are granted the same authority and settings on any machine, register the [Pages Limit Group], [Authority Group], and [Favorite Operation Group] information with the same authority so that they will be registered in each machine using the same registration numbers.
For [My Folder], register the folder that has the same name in [Custom Folder] in each machine.
The directory information of the LDAP server that is used cannot be changed from the machine. Consult the administrator of the LDAP server.
Auto-registered users
When access control is enabled and login is performed by network authentication, the user information in the LDAP server is automatically registered in the machine.The information stored is as follows:
| Item | Description |
|---|---|
| User Name | Information is acquired from the LDAP server.* |
| Initial | 1 |
| Index | User 1 |
| Password | - |
| Authentication Settings | - |
| Authentication Server | Network Authentication |
| E-mail Address | Information is acquired from the LDAP server. |
| My Folder | |
| Pages Limit Group | |
| Authority Group | |
| Favorite Operation Group |
*If the user name cannot be acquired, the first 16 characters of the text string entered as the user name for network authentication is used.
If the login name is different but the user name received from the LDAP server is the same, or if the user name is already registered in the machine, "Cannot login because the user name entered has been previously registered" will appear and it will not be possible to log in. In this case, the user name stored on the LDAP server or the user name stored on the machine must be changed. Consult the administrator of the machine.
If automatic registration by LDAP authentication is attempted when 1,000 users are already registered, the following message will appear and it will not be possible to log in: "Maximum entries for User Name is 1,000. Old or unused user names will be deleted." Consult the administrator of the machine.
If automatic registration by LDAP authentication is attempted when 1,000 users are already registered, the following message will appear and it will not be possible to log in: "Maximum entries for User Name is 1,000. Old or unused user names will be deleted." Consult the administrator of the machine.
- If a user that is registered in the machine is authenticated by network authentication, the user registration settings in the machine will be given priority for the page count limit group, authority group, favorite operations group, and my folder.
- If the access control obtained from the LDAP server is not registered in the machine, the factory default user authority will be applied.
- When this function is not enabled and a user is authenticated by network authentication as a non-registered user, the factory default user authority will be applied.
If access control information cannot be obtained from the LDAP server used for authentication, user authentication will not be possible.Display Usage Status after Login
When user authentication is enabled, this setting specifies whether or not to display the page counts of a user when the user logs in.
Login Name Display
When user authentication is enabled, this setting specifies whether or not to display the login name.
Include Job Status in user authentication
When user authentication is enabled, this setting specifies whether or not to include the job status in user authentication.
Automatic Logout Setting
When user authentication is enabled, this setting specifies whether or not to enable automatic logout.
The time until logout can be specified up to 240 seconds in increments of 10 seconds.
The time until logout can be specified up to 240 seconds in increments of 10 seconds.
Edit Help Display of Login Screen
Settings you have created here is displayed in the login screen.
User Information Print
Prints the following item lists.
* Cannot be printed when no groups are stored.
- User List
- List of Number of Pages Used
- Page Limit Group List*
- Authority Group List
- Favorite Operation Group List*
- All User Information Print
* Cannot be printed when no groups are stored.
- In "Setting mode (administrator)", select [System Settings] → [Device Control] → [List Prints].
- In All User Information Print, the following items are handled by 2-sided printing on an item basis.
- User List
- List of Number of Pages Used
- Page Limit Group List
- FAVORITE OPERATION GROUP LIST
Reset Counter After Sending E-mail Status
After Status Message has been sent, the counter is reset.