Konica Minolta bizhub C250 Setting-Up Manual page 24
User authentication in combination with active directory environment, nds environment, smb /ntlm environment
Hide thumbs
Also See for bizhub C250:
- Service manual (1028 pages) ,
- User manual (658 pages) ,
- Operations (508 pages)
Table of Contents
Advertisement
During User
•
communication will take place over UDP port 88. In seldom cases, if the Kerberos network
package becomes too big, transport protocol changes from UDP to TCP. Our general
firmware does not support the Kerberos over TCP transport protocol. The size of a Kerberos
package is influenced by the User accounts group memberships. If the user account belong to
more
than
C250/C252/C300/C351/C352/C450 a special firmware, to provide Kerberos over TCP protocol
support, is available. For other models, please ask your technical support department. To
identify this issue, please make a network trace and check the Kerberos packages for the
error message [KRB Error: KRB5KRB_ERR_RESPONSE_TOO_BIG].
User Authentication - NDS
Due to security setting of the Novell Netware server, Admin credential can not be used for
•
user authentication.
User Authentication - SMB
Following Network protocols are used during user authentication – SMB (NTML). Please
•
ensure that the communication, for the listed protocols/ports, is not blocked by any
firewall. If one ore more of the listed protocols/ports are blocked, user authentication will
fail. In case of Windows 2003 Server, the Windows Firewall, which is enabled by default,
is blocking all of the listed protocols/ports by default. To allow required communication,
exceptions have to be configured.
Before Phase 3.0 firmware for bizhub C250/C252/C300/C351/C352/C450 and Phase 2.0
•
firmware for bizhub 420/500/600/750 SMB signing is not supported. This means that the
default security settings of a Windows 2003 Domain Server will not allow our MFP's to
carry out User authentication via SMB (NTML) with earlier firmware version. If you face
any difficulties with SMB (NTML) authentication, please ensure that the applicable system
is running with the latest firmware.
For bizhub 250/350 there will be no support for "SMB signing". To get user authentication,
•
via SMB (NTML), working following "Default Domain Controller Security Settings" must be
changes:
From
"Microsoft network server: Digitally sign communications (always)" enabled
To
"Microsoft network server: Digitally sign communications (always)" disabled
At least SMB Scanning or SMB printing must be enabled to use SMB user Authentication.
•
Authentication the Kerberos
25~30
groups,
Protocol
NBSS (NETBIOS Session Service)
Page 24 of 25
protocol is
involved. Usually Kerberos
this
issue
may
Port
139 / UDP
AD_NDS_SMB userauthentication set-up_ver_1_10.doc
occur.
For
bizhub
Hide quick links:
Advertisement
Table of Contents
