Upload
others
View
4
Download
0
Embed Size (px)
Citation preview
Smart Card RegistrationUser Guide
2
Microsoft, Windows, and Active Directory are either registered trademarks or trademarks of Microsoft Corporation in theUnited States and/or other countries.
Other company names or product names are registered trademarks or trademarks of each company. Microsoft product screen shot(s) reprinted with permission from Microsoft Corporation.
Xerox, Xerox and Design, Fuji Xerox and Design, as well as CentreWare are registered trademarks or trademarks of Xerox Corporation in Japan and/or other countries.Smart WelcomEyes is a registered trademark or trademark of FUJIFILM Business Innovation Corp.
When “Fuji Xerox Co., Ltd.” is used as a product provider in this document, replace it with “FUJIFILM Business Innovation Corp.”.
Important1. This manual may not be edited, modified or copied in whole or part without the written consent of the publisher.2. Parts of this manual is subject to change without prior notice.3. The screen shots and the illustrations in this manual are used as examples. They may differ from yours depending on the
model, the software, or the OS.
3
Preface
Thank you for selecting our product.
This guide describes how to configure "Smart Card Registration" (hereafter referred to as "this
service" or "feature") and the precautions you should follow during operation. To get the most
out of this service and to use it effectively, be sure to read this guide before use.
The guide assumes that you are familiar with a personal computer and your machine.
For information on a personal computer, refer to the manuals provided with the personal
computer. For information on how to operate your multifunction device, refer to the manual
provided with the multifunction device.
4
Using This Guide
This guide describes how to operate the services after installing this service on your machine and how to configure the System Administrator setting.
Organization of This GuideThis guide consists of the following chapters:
1 Smart Card RegistrationDescribes "Smart Card Registration".
2 Environmental SettingsDescribes the environmental settings to use this function.
3 Before Setup (for System Administrator)Describes the settings of the multifunction device and system administrator information to use this function.
4 Usage of Smart Card Registration (for Users)Describes how to use this function on the multifunction device.
5 TroubleshootingDescribes how to counteract against error messages.
6 Notes and RestrictionsDescribes the notes and restrictions to observe when using this function.
Conventions• The screen shots used in this guide and the screens displayed on your machine may be
different depending on the software being used due to the upgrades.
• Some of the items in the screen shots used in this guide may not be displayed or not be available depending on your machine configuration.
• In this document, "Computer" refers to a personal computer or workstation.
• The following terms are used in this guide:
ImportantIndicates important information you have to know or be reminded before operations.
NoteIndicates supplemental information useful for operation.
SeeIndicates references to other chapters and manuals.
• The following symbols are used in this guide:
" " : • A cross-reference included in this guide.• Names of features, touch screen messages and input text.
" " : • A cross-reference to other guides.
5
[ ] : • Folders, files, applications, button or menu names displayed on the touch
screen.
• Names of menus, commands, windows, or dialog boxes displayed on the
computer screen and their buttons and menu names.
{ } : • It represents the change value by the operation and operating
environment.
Example: [{login user name}] will be displayed.
< > button : • Hardware buttons on the control panel.
< > key : • Keys on the keyboard of the computer.
> : • Path to a certain item within a procedure on the control panel.
For example: When you see the procedure "select [Tools] > [Setup] >
[Create Folder]", this means that you need to select [Tools], select [Setup],
and then select [Create Folder].
• Path to a certain item within a procedure on a computer.
For example: When you see the procedure "to search for files and folders,
click [Start] > [Search] > [For Files or Folders]", this means that you need to
click [Start], click [Search], and then click [For Files or Folders] to search for
files and folders.
• Cross-reference
For example: "Refer to "5 Tools" > "Common Service Settings" > "Audio
Tones" in the Administrator Guide. The sentence above means that you
need to refer to the section "Audio Tones", which can be found under
"Common Service Settings" in chapter 5 Tools of the Administrator Guide.
6
ContentsPreface .......................................................................................................................................................................................................... 3
Using This Guide ....................................................................................................................................................................................... 4
1 Smart Card Registration ............................................................................................................................................................7
Associate the Smart Card with the User Information Stored on the Machine ......................................7
Associate the Smart Card with the Authentication Information Stored on the Active Directory
Server ....................................................................................................................................................................................7
2 Environmental Settings .............................................................................................................................................................9
Settings to Use Smart Card Registration ...............................................................................................................9
Configure Each Setting on the [Device] Screen ..................................................................................................9
Installation Procedures (for System Administrator) ....................................................................................... 10
3 Before Setup (for System Administrator) ........................................................................................................................ 11
Restrictions for Smart Card Registration ............................................................................................................ 11
Active Directory Settings ........................................................................................................................................... 11
Setup .................................................................................................................................................................................. 11
4 Usage of Smart Card Registration (for Users) ............................................................................................................... 15
New Registration .......................................................................................................................................................... 15
Re-registration of Card ............................................................................................................................................... 16
Delete Registered Information ............................................................................................................................... 17
5 Troubleshooting ......................................................................................................................................................................... 18
6 Notes and Restrictions ............................................................................................................................................................ 22
1 Smart Card Registration
7
1 Smart Card Registration
Smart Card Registration is the software that allows a user to associate user's own smart card
information with the registered user information on the machine easily. This software reduce
the operation of a server administrator or machine administrator.
If you set a machine to use Smart Card Registration, [Smart Card Registration] appears on the
menu screen of the machine. By [Smart Card Registration], you can register your smart card
information, and also you can associate your smart card information with your authentication
information on Active Directory® Server.
NoteFor supported models, refer to our official website.
Associate the Smart Card with the User Information Stored on the Machine
The system administrator just needs to hand in smart cards to users. This will reduce the work
of the system administrator.
Associate the Smart Card with the Authentication Information Stored on the Active Directory Server
Note• The machine with no support of Active Directory, settings of the Active Directory do not appear.• In Smart Card Registration, the combination of the LDAP server and the Active Directory is only
available as an external authentication server.
When the Login Type is "Login to Local Accounts"
The association between the smart card ID and the authentication information on the Active
Directory Server can be stored in the machine. This makes the update of the smart card
information easy when the system administrator of the Active Directory and the machine
administrator are different people.
Hold up a unregistered
smart card.
Select [Local Machine] for [Domain] and
enter the authentication information
saved on the machine.
The smart card ID is
associated with User account
and registered with the
machine.
Smart Card ID: Verify with the machine database
User ID:Smart Card ID:
User ID:
Password:
Password:
1 Smart Card Registration
8
ImportantWhen you use this service, the authentication information saved on the Active Directory server is copied and saved in the device unit.
In order to prevent the leak of the information from the device unit, we recommend that you enable the hard disk data encryption feature.
When the Login Type is "Login to Remote Accounts"When the information entered by the user is authenticated by the Active Directory server, the
Smart Card information is added to the authentication information registered to Active
Directory. You can update the Smart Card information easily even when the system
administrator of the Active Directory is different from the device administrator.
Smart Card ID:
User ID:
Password:
Verify with the Active Directory server
User ID:
Password:
Smart Card ID:
Hold up a unregistered
smart card.
Select [Active Directory Server] for
[Domain] and enter the authentication
information saved on the Active Directory
Server.
The smart card ID is
associated with User account
and registered with the
machine.
Hold up a unregistered
Smart Card.
Select [Active Directory Server] for
authentication and enter the
authentication information saved on the
Active Directory Server.
Smart Card information is
added to the authentication
information of Active
Directory.
Smart Card ID: Verify with the Active Directory server
User ID:
Password:
Smart Card ID:
User ID:
Password:
2 Environmental Settings
9
2 Environmental Settings
Settings to Use Smart Card RegistrationYou are required to set environments in your machine to use this service.
NoteRebooting the machine may be required depending on the settings. When a message is displayed on the screen, follow the message and reboot the machine.
Configure Each Setting on the [Device] ScreenThe [Device] screen can be displayed according to the following steps.
Note• The screens shown in this guide may differ the screens on your multifunction device. For details of
the setting method, refer to the guides provided with your multifunction device.
Steps0 1 Enter the system administrator's user ID (and passcode as necessary), and enter the
system administration mode.
2 Select [Device].
3 Set each item.
Note• You may need to reboot the multifunction device to apply the specified settings to the multifunction
device. When the message prompting you to reboot the multifunction device appears, reboot the multifunction device.
SOAP Port
Steps0 1 Select [Connectivity & Network Setup] > [Port Settings] > [SOAP].
2 Select the values below for each item.• [Port Status]: [Enabled]
• [Port Number]: [80]
Items Required Settings Refer to
SOAP Port • Port Status: Enabled
• Port Number: 80
"SOAP Port"(P.9)
Protocol Settings • IP address, subnet mask, and gateway address:
settings for the use in TCP/IP network environment
"Protocol
Settings"(P.10)
2 Environmental Settings
10
Protocol Settings
Steps0 1 An IP address, subnet mask, and gateway address (settings for the use in TCP/IP network
environment) are set under [Connectivity & Network Setup] > [Protocol Settings] > [TCP/IP - Network Settings].
Installation Procedures (for System Administrator)First, refer to Software Options Setting Guide, and then configure the required settings for your
model.
After that, refer to Add-on Application Installation Guide, and then install Smart Card
Registration to a machine.
After the installation, refer to "3 Before Setup (for System Administrator)"(P.11), and then
operate the required setup.
SeeIf you update or uninstall Smart Card Registration, also refer to Add-on Application Installation Guide.
3 Before Setup (for System Administrator)
11
3 Before Setup (for System Administrator)
Restrictions for Smart Card RegistrationYou can register the Smart Card information for up to 999 users when the login type is "Login
to Local Accounts".
When the login type is "Login to Remote Accounts", the maximum number of users to register
the Smart Card information depends on the restriction of the Active Directory server.
ImportantIf the number of registered users is 1000, you cannot register or re-register of the smart card information.If you want to delete the user information, a machine administrator needs to delete the user information on the control panel and Device Setup.
Active Directory SettingsWhen using Active Directory for authentication, confirm the following with the administrator
of Active Directory:
• Authentication information of the user registering the Smart Card information is registered,
and
• When the login type is "Login to Remote Accounts", the user registering the Smart Card
information is given the write access privilege.
ImportantOnly IC card readers can register IC card information in the Active Directory server.
SetupThis section describes setup procedures in order to use this service.
IC Card ReaderThe IC Card Reader is equipped on the machine and set to be available.
NoteTo install IC Card Reader, contact our Customer Support Center.
Authentication Settings/AccountingLog in as a machine administrator on the control panel, and set below items.
• [Device] > [Authentication / Accounting] > [Authentication / Security Settings] >
[Authentication] > [Login Type]: set "Login to Local Accounts" or "Login to Remote
Accounts".
• When the login type is "Login to Local Accounts", [Tools] > [Accounting] > [Accounting Type]:
set "Accounting Disabled" or "Local Accounting".
When the login type is "Login to Remote Accounts", accounting setting is arbitrary.
3 Before Setup (for System Administrator)
12
Smart Card Authentication SettingLogin as a system administrator on the control panel, and [Device] > [Authentication /
Accounting] > [Authentication / Security Settings] > [Authentication] > [Login Type] > [Use of
Smart Card]: set [Yes].
Configure necessary settings in accordance with the login type.
When the Login Type is Login to Local Accounts• [Device] > [Authentication / Accounting] > [Authentication / Security Settings] > [User
Details Setup] > [Account Auto Setup for Card Login]: set [Enabled].
When the login type is Login to Remote Accounts• [Device] > [Authentication / Accounting] > [Authentication / Security Settings] > [User
Details Setup] > [Smart Card Link Mode]: set [No Passcode Required].
Access Control of Guest User (Optional when the login type is Login to Local Accounts)
Configure this setting when the login type is "Login to Local Accounts".
A guest user is a user whose smart card information is registered as User ID automatically by
Account Auto Setup for Card Login service (standard service).
If you want to limit the operation of guest users, login as a system administrator on the control
panel, and then configure as the following.
[Device] > [Authentication / Accounting] > [Authentication / Security Settings] > [User Details
Setup] > [Account Auto Setup for Card Login]: If you set [Enabled], the default value of
Account Auto Setup for Card Login will appear.
• [No Access] > [Copy]: [Feature Access] is set to [No Access]
• [No Access] > [Fax]: [Feature Access] is set to [No Access]
• [No Access] > [Scan]: [Feature Access] is set to [No Access]
• [No Access] > [Print]: [Feature Access] is set to [No Access]
NoteIf a not-registered card is lost, a person who got the lost card can use a machine freely. In case that a not-registered card is lost, we recommend guest users' access control are all [Locked].
Active Directory Server SettingsIf you use the authentication information of the Active Directory Server, from the control
panel or CentreWare Internet Services, login as a system administrator, and then set the Active
Directory Server.
To use this feature, the following items need to be set under [Device] > [Connectivity &
Network Setup] > [Remote Authentication/Directory Service] of the machine's touch screen.
• [Attribute of Login User Name]: Used as the User ID.
• [Attribute Type of E-mail Address]: Used as the e-mail address.
Important• The machine with no support of Active Directory, settings of the Active Directory do not appear.• User Name cannot be set on the control panel or CentreWare Internet services. You can set User
Name by setting the user information from Active Directory Server's "displayName" attribution.
SeeFor more information about Active Directory Server's settings, refer to the manual provided with the machine.
3 Before Setup (for System Administrator)
13
User RegistrationIf the user registered with a device unit uses this feature, on the control panel or Device Setup,
register the user information such as the user ID and password on a device unit.
NoteAfter the registration, tell the user the following things: his or her ID, password, and that the authentication destination is "local" to the user.
System Administrator's Information SettingsSet the information of a system administrator with Smart Card Registration.
Important• If you change [System Administrator ID] or [System Administrator Password] on Setting Screen
on the machine, change this service's settings also immediately. If not, this service may not run properly.
• This section is assumed that User ID and Password are already set to Active Directory Server.
• You cannot use Smart Card Registration service before you register the user information to Active Directory Server.
Steps0 1 Follow the settings of a device, and then authenticate as a system administrator.
2 Start [Smart Card Registration].
3 Enter the same value as the Settings in the machine in [System Administrator ID] and [System Administrator Password]. And then press [Next].
4 When the login type is "Login to Local Accounts", perform the following steps.
(1) Select [Domain] in accordance with the current configuration.The local machine, Active Directory server, or both can be selected as the authentication
destination.
(2) When [Standard Domain] is displayed, select the authentication destination which is displayed by default when the user registers the Smart Card.
(3) Set [Smart Card ID Verification] to "Enabled".
(4) Select [Finish].
Important• [Active Directory® Server] is not shown on a machine which does not support an external
authentication.
• This function does not work unless [Smart Card ID Verification] is set to Enabled. Be sure to set it to Enabled when using this function.
• If you want to uninstall this service, set [Verify] disabled next to Smart Card ID Settings on the Setup Screen beforehand. In case you uninstall this service before you disable [Verify], install this service again. And then you can disable [Verify].
NoteIf you use both of [Local Machine] and [Active Directory® Server], we recommend to set a machine or server with more users as Standard Domain.
5 When the login type is "Login to Remote Accounts", perform the following steps.
(1) To display the Smart Card registration screen instead of the standard menu screen when logged in on the multifunction device, set [Smart Card registration during Login to Remote Accounts] to Enabled.
3 Before Setup (for System Administrator)
14
(2) Select [Complete] or [Finish].
6 Reboot the machine as the instructions on the screen.
(1)
(2)
4 Usage of Smart Card Registration (for Users)
15
4 Usage of Smart Card Registration (for Users)
New Registration
Users Who Have Active Directory Accounts (Login to Remote Accounts)
Steps0 1 Touch the unregistered Smart Card over the reader of the multifunction device.
2 Enter your Active Directory ID and password. Then press the Register button.
3 The result of the registration appears.The Smart Card information is registered to the authentication information of the ID entered
in Step 2.
Users Who Have Active Directory Accounts (Login to Local Accounts)
Steps0 1 Touch the machine with a not-registered Smart Card, authenticate as the [Guest User].
2 Start [Smart Card Registration].
3 Select [Active Directory® Server] for [Domain]. And input your Active Directory ID and password. Then press the [Register] button.
4 The result of the registration appears.
Important• Right after a new card has been registered, all of the [Access Control] is [Unlocked]. If you want
to control access for each user, a system administrator needs to set those after the new registration.
• The password you entered in the procedure three is registered as the password of the machine. If you change Active Directory's password, the machine password is not changed automatically. Change the machine password on the control panel by yourself when you changed the Active Directory's password.
NoteOnce you register your Smart Card, you can use the authentication service of the machine. If you set [Passcode Entry for Smart Card Login] enabled, you can log in the machine by entering the password which you entered in the procedure three.
4 Usage of Smart Card Registration (for Users)
16
Users Who Do Not Have Active Directory Account (Local Users)
Steps0 1 Beforehand, make sure a machine administrator has already registered your user
information (ID and password).
2 Touch the machine with a not-registered Smart Card, authenticate as the [Guest User].
3 Start [Smart Card Registration].
4 Select [Local Machine] for [Domain]. And enter your ID and password noticed by the system administrator. And then press the [Register] button.
5 The result of the registration appears.
Re-registration of CardIf you need to re-register (overwrite) a different smart card which is not the same smart card
as you have ever used.
ImportantThe smart card which you have used will be not available.
Steps0 1 Operate the same procedures as described in "New Registration".
2 Press [OK] or [Yes] on the screen appeared.
4 Usage of Smart Card Registration (for Users)
17
3 Select [Confirm].
ImportantWhen the login type is "Login to Local Accounts", if the number of registered user is 1,000, you cannot re-register the Smart Card.
Delete Registered InformationRequest to your system administrator to delete the user information.
5 Troubleshooting
18
5 Troubleshooting
This section explains the messages that appears when an error occurs and remedies for the
errors while using this feature.
Fault Code Message Responding Method
001
004
007
008
009
011
017
035
036
054
065
066
067
070
071
076
083
084
085
086
092
093
097
Unable to register Smart Card.
Check the settings and status of
multifunction device, and Active
Directory® with your System
Administrator.
• Check the multifunction device to see if the
LDAP server used for Login to Remote
Accounts is set up correctly.
• Check the Active Directory settings.
002
033
089
Unable to register Smart Card.
Check the settings and status of
multifunction device with your System
Administrator.
Check the multifunction device to see if the
LDAP server used for Login to Remote
Accounts is set up correctly.
087 Unable to register Smart Card.
Check the settings and status of
multifunction device with your System
Administrator.
• Check the multifunction device to see if the
LDAP server used for Login to Remote
Accounts is set up correctly.
• Check that [Attribute of Typed User Name]
or [Attribute of Login User Name] is
correct.
003
012
013
019
051
052
053
080
090
094
095
Unable to register Smart Card.
Check the settings and status of Active
Directory® with your System
Administrator.
Check the Active Directory settings.
5 Troubleshooting
19
016
018
032
048
049
150
151
Unable to register Smart Card.
Check the value entered for User ID /
Password, or the expiry date and settings
at first login for Active Directory®
Password.
Check the settings and status of
multifunction device, and Active
Directory® with your System
Administrator.
• Check and enter the user ID and password
again.
• Check the multifunction device to see if the
LDAP server used for Login to Remote
Accounts is set up correctly.
• Check if the information of the
corresponding user is registered to Active
Directory.
• Check if the user is a valid user in Active
Directory.
• Check if the password has been expired in
Active Directory.
• If the password must be changed at initial
login as configured in Active Directory,
access to Active Directory from a device
such as PC to change the password.
021
034
Unable to register Smart Card.
Check the value entered for User ID /
Password, or the expiry date and settings
at first login for Active Directory®
Password.
Check the settings and status of
multifunction device with your System
Administrator.
• Check and enter the user ID and password
again.
• Check the multifunction device to see if the
LDAP server used for Login to Remote
Accounts is set up correctly.
• Check if the password has been expired in
Active Directory.
• If the password must be changed at initial
login as configured in Active Directory,
access to Active Directory from a device
such as PC to change the password.
050 Unable to register Smart Card.
Check the settings and status of
multifunction device, and Active
Directory® with your System
Administrator.
The user trying to register the Smart Card
does not have the write privilege to the
Active Directory server.
Set the read and write privileges so that the
user can modify his or her own information.
081
091
Unable to register Smart Card.
Check the settings and status of the
multifunction device, network, and Active
Directory® with your System
Administrator.
• Check the multifunction device to see if the
LDAP server used for Login to Remote
Accounts is set up correctly.
• Check the Active Directory server is
powered on.
• Check the Active Directory settings.
• Check that the device is connected to a
network.
110
202
Failed to register Smart Card. Register again from the beginning.
122 Incorrect User ID.
User ID should be from 1 to 32
alphanumeric characters or symbols.
The following symbols cannot be used.
["], [+], [;], [<], [>], [?], [ [ ], [ ] ], [`], [{], [|], [}]
Check your User ID, and then enter again.
201 Failed to verify with users registered in the
machine.
Enter ID and Password again.
Fault Code Message Responding Method
5 Troubleshooting
20
301 Failed to register Smart Card. This may be due to the following reasons.
• The password is too short or too long.
• The user ID exceeds 32 single-byte
characters.
• The e-mail address comprising of
alphanumeric characters and symbols
exceeds 128 characters in total.
Check the following and register again from
the beginning.
• Set a password between 4 and 12
characters. If you do not wish to set a
password, leave the field blank.
• Set a user ID within 32 single-byte
characters.
• Set an e-mail address comprising of
alphanumeric characters and symbols
within 128 characters in total.
302
303
304
Failed to register Smart Card. Request to your system administrator to
delete the user information, and then
register again.
307
308
309
System error has occurred. Please restart.
If the error still persists, contact your
Administrator.
Switch the main power and power off and
then on.
If the error still is not resolved, contact our
service representative.
401 Incorrect System Administrator ID and
Password.
Ask a system administrator to set the ID
and password again.
Ask a system administrator the initial
settings.
404
500
600
System error has occurred. Please restart.
If the error still persists, contact your
Administrator.
Switch the main power and power off and
then on.
If the error still is not resolved, contact our
Customer Support Center.
702 This Smart Card is already registered. Request to the smart card administrator to
check your smart card.
704 Failed to retrieve multifunction device
information.
Register again from the beginning.
705 Logout failed. Log out with the <Log In/Out> button.
706 Unable to use this feature as the initial
setup has not been completed.
Request to your system administrator to
perform initial setup.
Request to your System Administrator to
perform initial setup.
707 System error has occurred. Please restart.
If the error still persists, contact your
Administrator.
Switch the main power and power off and
then on.
If the error still is not resolved, contact our
Customer Support Center.
709 System error has occurred. Please restart.
If the error still persists, contact your
Administrator.
Switch the main power and power off and
then on.
If the error still is not resolved, contact our
service representative.
Fault Code Message Responding Method
5 Troubleshooting
21
710 This feature is only available if Login Type
is set to Login to Local Accounts.
Request to your system administrator to
check the authentication settings.
711 The specified User ID cannot be registered. Change your User ID.
801
802
Failed to register Smart Card. Contact our service representative.
900-999 System error has occurred. Please restart.
If the error still persists, contact your
Administrator.
Switch the main power and power off and
then on.
If the error still is not resolved, contact our
service representative.
1002 Already logged in.
Log out and try again.
Log out with the Log In/Out button and try
again.
- Login failed. Check the entered user ID and
password and try again.
Check the entered information and try again.
3060 An error has occurred. Wait for a while, and
then try again.
Wait for a while, and then try again.
3061 Log out and try again. Log out with the Log In/Out button and try
again.
3062 Unable to retrieve Smart Card information. Log out, hold up the Smart Card, and launch
the Smart Card Registration.
3063 An error has occurred.
Wait for a while, and then try again.
Ensure that the multifunction device is not
running a job or an interrupt is not
outstanding, and try again.
3064 Failed to retrieve the login user
information.
Log in as the system administrator and start
the Smart Card Registration again.
3065 An error has occurred.
Wait for a while, and then try again.
Wait for a while, and then try again.
Fault Code Message Responding Method
6 Notes and Restrictions
22
6 Notes and Restrictions
This section describes the notes and restrictions to observe when you use this service.
• Do not use the following user IDs.
-the user ID contains only " " (half-width space).
-the user ID contains any of the following: " " ", "+", ";", "<", ">", "?", "[", "]", "`", "{", "|", "}", ":", "#",
"(", ")", "\", ",", "*", "/", and "=".
-the user ID starts with " ' ".
• The local user password should conform to the specifications of the multifunction device.
The Active Directory user can use ASCII characters to set the password which is 1 to 127
characters in length.
• This service is available for users who use Card ID as the smart card information which is
different from User ID.
• The machine with no support of Active Directory, settings of the Active Directory do not
appear.
• The following service and product cannot be used with this service.
-Smart WelcomEyes Advance
-Smart WelcomEyes Advance 2
-Any other services which do not assume the usage with Login to Local Accounts or Login
to Remote Accounts
• You cannot re-register to the different domain if you once registered.
• To stop using this function, select [Common Service Settings] > [Screen / Button Settings] >
[Services Home], and set [Smart Card Registration] to "Disabled".
Notes and Restrictions When the Login Type is "Login to Local Accounts"• While you are operating Smart Card Registration, a guest user will remain in case that you
close the setting screen with the menu button, or the machine resets the settings
automatically by the Auto Clear service. If the guest user remains, the system administrator
can delete the guest user. On the control panel or Device Setup, search for the user whose
User Name is "Guest User", and then delete it.
If a guest user is left authenticated, press the Log In/Out button to clear the authentication.
Note• A guest user is a user whose smart card information is registered as User ID automatically by
Account Auto Setup for Card Login service (standard service).• If you cannot search "Guest User", the settings may be changed. The guest user's User Name is
set to a default name of the auto registration in [Tools] > [Authentication/Security Settings] > [User Details Setup] > [Login Type].
• While you are operating jobs as a guest user, do not register the smart card or re-register.
• When you use an Active Directory server, the authentication information saved on the
Active Directory server is copied and saved in the device unit.
In order to prevent the leak of the information from the device unit, we recommend that you
enable the hard disk data encryption feature.
• If a user reuses the second-hand smart card, a system administrator needs to delete the user
information of the card before a new user gets the second-hand card.
• If the number of registered user is 1,000, you cannot register the smart card or re-register.
6 Notes and Restrictions
23
Notes and Restrictions When the Login Type is "Login to Remote Accounts"• If a user reuses the second-hand Smart Card, the administrator of Active Directory needs to
delete the user information of the card from Active Directory before a new user gets the
second-hand card.
• To stop using this function, set [Smart Card registration during Login to Remote Accounts]
to "No".
• After changing the login type from Login to Remote Accounts to Login to Local Accounts
after starting to use this function, when the user tries to register the Smart Card, a message
warning of login type mismatch appears. If the login screen does not appear by trying again
after this message appears, login as the system administrator and launch the Smart Card
Registration to perform initial setting again.
• In the following cases, the [Smart Card Registration] screen appears even when you hold up
a registered Smart Card is touched:
-When authentication has taken too long time
-When the login screen has appeared again after login succeeded and authentication was
canceled with the Smart Card touched
In these cases, since the information of the Smart Card is already registered, trying to
register the information on the [Smart Card Registration] screen causes an error. Close the
[Smart Card Registration] screen without performing registration.
• When registering the Smart Card with Login to Remote Accounts, it is recommended not to
display the Smart Card registration icon on the menu screen of the multifunction device.
Select [Common Service Settings] > [Screen / Button Settings] > [Services Home], and set
[Smart Card Registration] to "Disabled".
• The IC card information can be registered in the Active Directory server only when using the
IC card reader.
IC card information cannot be registered in the Active Directory server when using the
following authentication devices.
- Authentication Controller
- Authentication Device/Associated Product of Third Party connected to Foreign Device
Interface
- Authentication Device/Associated Product of Third Party connected to DCS6061 (from
Bear Solutions)
Smart Card Registration User Guide
Author FUJIFILM Business Innovation Corp.Publisher FUJIFILM Business Innovation Corp. ME7692E2-9 (Edition 1)
September 2021Copyrighted © 2021 by FUJIFILM Business Innovation Corp., Ltd.