hit counter script

Login Service; About Login Service; Default Authentication Overview; Sso-H (Single Sign-On-H) Overview - Canon imageRUNNER ADVANCE 6075 Series Service Manual

Table of Contents

Advertisement

2
Technology > MEAP > Login Service > SSO-H (Single Sign-On-H) overview

Login Service

■ About Login Service

The login service is started up to authenticate the user when MEAP-enabled iR device is
booted up. Login service changes and install/ uninstall are carried out from the 'System
Management' page. The pre-install applications and those provided on the accessory CD
are as follows. Default Authentication is used as the default at the time of shipment from the
factory.
CAUTION:
• When the login service is set to SSO-H, Department ID management needs to be
[OFF] before changes can be made. To use SSO-H local device authentication and
Department ID management at the same time, after allocation of the department ID
to the Administrator, switch the authentication method to local device authentication
and then turn Department ID management ON.
• To use Department ID management in domain authentication, the option image-
WARE accounting manager is required.
• When the setting is SSO-H, the card reader for the option controller card cannot be
used.
• When using SSO-H, the clock settings of the server managing the Active Directory
and the MEAP device (and the PC used to log in), must be matched. If there is a
time difference of greater than five minutes in the clock settings, an error will be
generated when login is attempted.
• When the setting is SSO-H, start up takes a little longer when compared to Default
Authentication (because of the time required for object initialization).
• To use the SEND function when the setting is for SSO-H, when sending email, mail
addresses need to be programmed against each user. If they are not, email cannot
be sent. Note, however, that when sending i-Fax, the mail addresses set in the
device are used.
• This device does not support SDL, conventional SSO and Security Agent. In addition
these are not packaged in Administrator's CD.
2
Technology > MEAP > Login Service > SSO-H (Single Sign-On-H) overview

■ Default Authentication overview

This login service is selected when the department ID management is enabled or no
authentication function is set. Set the department ID management to [ON] on Setting /
Registration (Additional Functions mode) of this device and register 7-digit ID and PIN by
department. This setting restricts the use of this device only to users keying the registered
ID and PIN. Department IDs/ and PINs can be registered on the touch panel of this device or
Remote UI.

■ SSO-H (Single Sign-On-H) overview

This is a merger of the existing SDL and SSO login services and has the following features.
• Both the domain authentication and local device authentication login services can be used.
• There is no need to have a separate SA server.
• Login is not via SA, so SSO-H refers directly to DNS for authentication.
• Kerberos and NTML protocols are supported.
• The following three authentication methods may be selected from.
• Domain authentication
• Local device authentication
• Domain authentication + local authentication
CAUTION:
• The system configuration is different from previous SSO, so individual management
is required.
• Data porting of user information that was being used with the earlier SSO local
device authentication and SDL can be done by exporting/ importing. However,
application settings information cannot be ported.
2-194
2-194

Advertisement

Table of Contents
loading

Table of Contents

Save PDF