Setting up access rights, Overview, Setting up access – Xerox WorkCentre 6400 User Manual
Page 54: Rights
Security
WorkCentre 6400 Multifunction Printer
System Administrator Guide
54
Setting up Access Rights
Overview
You can control access to the printer’s services and features by setting up authentication,
authorization, and personalization.
Authentication
Authentication is the process of confirming a user’s identity by comparing information provided by the
user, such as their user name and password, against another source of user information such as an
LDAP directory. Users can be authenticated when accessing the control panel or when accessing
CentreWare IS.
There are several ways to authenticate a user:
•
Local: If you have a limited number of users, or do not have access to an LDAP network directory,
you can add user information, such as user names and passwords, to the printer’s internal
database. You can then specify tools and feature access for all users. Users are authenticated and
authorized when they log in at the control panel.
•
Network: The printer retrieves user information from an LDAP network directory to authenticate
and authorize users when they log in at the control panel. You must configure LDAP server settings
first. The printer can use of the following four protocols to communicate with your authentication
server:
•
Kerberos (Solaris)
•
Kerberos (Windows 2000/2003)
•
SMB (Windows 2000/2003)
•
LDAP
•
Card Reader: You must purchase and install a magnetic or proximity card reading system, such as
Xerox Secure Access. To access the printer, users must swipe a pre-programmed identification
card.
Authorization
Authorization is the process of defining the services and features that users are allowed to access. For
example, you can configure the printer to allow a user to copy, scan, and fax, but not email. There are
two types of authorization:
•
Locally on the Device (Internal Database): User login information is stored locally in the printer’s
internal User Information Database.
•
Remotely on the Network: User login information is stored externally in a network database such
as an LDAP directory.