HP MFP Sending Software 4.0 to 4.20 manual Using authentication, Ldap bind methods

Page 59

Using authentication

Authentication is a security feature that requires users to provide a network username and password before using digital-sending features. Authentication can be turned on or off for each device that the HP DSS supports.

NOTE At no time are the credentials that are used to authenticate at the device written to either the HP DSS server or the device hard disk. In addition, although the credentials that the HP DSS administrator uses to configure authentication or LDAP addressing are written to the HP DSS server hard disk, a hashing algorithm is incorporated to ensure that these credentials cannot be recovered.

LDAP bind methods

Authentication can be performed by using Microsoft Windows, an LDAP server, or Novell NetWare. The authentication process also retrieves the user's e-mail address, so that the sender's address is automatically supplied in the From: text box when the e-mail is sent. Because the address cannot be changed or erased, users are prevented from sending e-mail using a fictitious return address.

E-mail retrieval is carried out by connecting to a local LDAP server using one of four possible bind methods. The following table outlines the types of LDAP bind methods that are used for HP DSS.

Table 3-4Authentication bind methods

Bind method

Description

Can be used by

 

 

 

Anonymous

The selected LDAP server does not require user credentials to gain

Windows

 

access to the LDAP database

Novell

 

 

 

 

 

Simple

The selected LDAP server requires user credentials but does not

Windows

 

support NTLM or SPNEGO.

Novell

 

The password, if any, is sent non-encrypted across the network.

 

LDAP

 

The process requires a username and password.

 

 

 

 

 

Simple over Secure

The selected LDAP server requires user credentials but does not

Windows

Channel (SSL)

support NTLM or SPNEGO.

LDAP

 

All data, including the username and password, is encrypted by

 

 

 

using the Secure Sockets Layer (SSL).

 

 

The LDAP server must be set up to support SSL.

 

 

 

 

Windows Negotiated

The selected LDAP server requires user credentials and supports

Windows

(SPNEGO)

SPNEGO and SSL.

 

 

Use this selection negotiate the strongest authentication protocol

 

 

that both the LDAP Server and the HP DSS server support.

 

 

Kerberos 5 is supported for Active Directory authentication.

 

 

NTLM is supported for Exchange 5.5 server authentication.

 

 

 

 

Software features

ENWW

Using authentication 51

Page 58 Page 60
Image 59
Page 58 Page 60
Contents HP Digital Sending Software Page HP Digital Sending Software Copyright and License Table of contents Software features Determining the search root Administration tool LDP.EXEConsole with ADSIEDIT.MSC Determining access rights 105 Troubleshooting toolsInstallation and removal AppendixHP Digital Sending Software IntroductionPurpose and scope Software description Technology overview Embedded e-mail Dsmp Function Detail Compatibility Software capabilitiesFunctions available through HP DSS 1Functions available through HP DSSFax Function Detail AuthenticationRemote Configuration Utility Control-panel featuresHP MFP Digital Sending Software Configuration Utility Secure e-mail AuthenticationMail capabilities Send-to-workflow capabilities Fax capabilitiesSend-to-folder capabilities Component HP DSS components2HP DSS network requirements Seats Part Number LicensingWindows interface Licenses from prior versions Hewlett-Packard limited warranty statementNode Locking Ownership HP software license termsLicense grant Part KEY Code Software description Software features Source Description Using Internet supportFinding documentation and other supporting information 1Sources of informationTool Purpose Understanding support tools2Support tools Using the e-mail feature Using the e-mail feature Email tab Configuring the e-mail featureExchange Mail servers that function as Smtp gatewaysLotus Domino Notes Verifying the Smtp gatewaySendmail QmailSecondary e-mail Using the secondary e-mail featureConfiguring secondary e-mail Using HP DSS to send secure e-mail5The Secondary Email tab To configure secondary e-mailLAN fax Using the fax featureInternet fax Windows 2000/XP faxLANFax LAN Fax notification TimeoutConfiguring the fax feature Configuring LAN fax notificationFax tab To configure LAN fax8Configuring Internet fax Software features To configure Internet faxTo configure Windows 2000/XP fax To configure Analog embedded fax Using the send-to-folder featureUsing HP DSS to send a document to a folder Send-to-folder FeatureChanging the settings Configuring the send-to-folder feature11 The Folders tab To configure the send-to-folder feature Configuring the send-to-workflow feature Using the send-to-workflow feature12 The Workflows tab Configuring a workflow menu Configuring a workflow groupTo create a workflow form for a folder destination Configuring a workflow form15 Add Prompts dialog box Software features Format Attributes 3Response format optionsSend to workflow Folder destination Creating a workflow form for an FTP site Creating a workflow form for a printer Software features Bind method Description Can be used by Using authentication4Authentication bind methods Ldap bind methodsWindows Active Directory authentication method Methods of authenticationDetermining the Ldap server bind method for Windows Windows AuthenticationNovell authentication methods Novell Bindery configuration Ldap authenticationNovell NDS configuration Ldap authentication 23The Authentication tab Configuring AuthenticationTo configure the Ldap server Ldap ConfigurationDetermining the Ldap server hostname or TCP/IP address Troubleshooting authentication\ telnet 15.63.55.144 Determining the search rootDetermining access rights Determining the correct Ldap attributes To determine Ldap attributes using LDP.EXEOnly one name appears in the Address Book Other authentication configuration issuesFirst name, last name out of order Ldap performance with dynamic Ldap addressingClearing addresses Using address booksEffect of authentication on address book availability Adding addressesPersonal distribution list Types of address booksPrivate PersonalPublic distribution list Using the Address Book ManagerGuest Global Replicated LDAP/ABMImporting addresses into the ABM Configuring address booksEffect at the control panel Configuring Ldap directory replication6Address book synchronization Method DescriptionTo set up automatic replication of the Ldap address book Configuring personal address booksTo add a new device Configuring individual devicesConfiguring DSS address books Icon Description Configuring a deviceMFP list 7MFP list iconsSoftware features Send to Email tab 27Send to Email tab in the Configure MFPs windowTo enable send to e-mail directly from the MFP To enable send to e-mail by using HP DSS28Advanced E-mail Settings dialog box Advanced e-mail settingsSend to Fax tab Configuring the HP DSS send-to-fax feature Option Action Configuring the MFP analog send-to-fax feature8MFP modem settings Addressing tabSoftware features Select Active Directory Defaults Advanced addressing settings Software features Log tab Document Size Document Type Preferences tabProperties tab 34Properties tab in the Configure Mfps windowSoftware features Troubleshooting tools To view the activity log Using the Activity Log in the Configuration UtilityEvent Description Action to take Using the log for an individual device1Device log events Running Error Message Suggested Actions Understanding critical error notifications2Critical error messages Troubleshooting tools Installation and removal Network operating systems Requirements for installing HP DSSSystem requirements Supported platformsNovell NetWare support MFP firmware requirementsClient operating systems for the Address Book Manager only Upgrading from previous versions of HP DSS HP DSS CD contentsPorts Uninstalling HP DSS Installation and removal Appendix Image processing Workflow image file settings1Effects of the file settings Document type Description Mail file settings2Document type settings Accpcc Supported third-party fax programsTopcall Appendix Gateways FaxMessages Page Hewlett-Packard Development Company, L.P
Top Page Image Contents