Specifying Ldap Authentication - Ricoh MP 6002 User Manual

2. Configuring User Authentication
Select either Kerberos, DIGEST, or Cleartext authentication.
• User Name
You do not have to enter the user name if the LDAP server supports "Anonymous
Authentication".
• Password
You do not have to enter the password if the LDAP server supports "Anonymous
Authentication".
For details about registering an LDAP server, see "Programming the LDAP server", Connecting the
Machine/ System Settings.
• For the characters that can be used for login user names and passwords, see p.21 "Usable
characters for user names and passwords".
• When you select Cleartext authentication, LDAP Simplified authentication is enabled. Simplified
authentication can be performed with a user attribute (such as cn, or uid), instead of the DN.
• In LDAP simple authentication mode, authentication will fail if the password is left blank. To allow
blank passwords, contact your service representative.
• Under LDAP authentication, if "Anonymous Authentication" in the LDAP server's settings is not set to
Prohibit, users who do not have an LDAP server account might still be able to gain access.
• If the LDAP server is configured using Windows Active Directory, "Anonymous Authentication"
might be available. If Windows authentication is available, we recommend you use it.
• The first time an unregistered user accesses the machine after LDAP authentication has been
specified, the user is registered in the machine and can use the functions available under "Available
Functions" during LDAP authentication. To limit the available functions for each user, register each
user and corresponding "Available Functions" setting in the Address Book, or specify "Available
Functions" for each registered user. The "Available Functions" setting becomes effective when the
user accesses the machine subsequently.
• To enable Kerberos for LDAP authentication, a realm must be registered beforehand. The realm
must be programmed in capital letters. For details about registering a realm, see "Programming the
Realm", Connecting the Machine/ System Settings.
• Transmission between the machine and the KDC server is encrypted if Kerberos authentication is
enabled. For details about specifying encrypted transmission, see p.183 "Kerberos Authentication
Encryption Setting".

Specifying LDAP Authentication

Before beginning to configure the machine, make sure that administrator authentication is properly
configured under "Administrator Authentication Management".
52