Authentication Tab

Authentication requires MFP users to provide valid credentials to send documents to the workflow server. The authentication settings are configured for the server, and they can be enabled or disabled for any group of MFPs.

Option Description
Authentication Type Choose the authentication method to be used by the component.
  • None — No authentication method will be used.
  • Standard — Uses Windows Active Directory or other LDAP server for authentication.
  • Netware — Uses NetWare authentication.
  • CustomPlugin — The administrator has full control over the prompts presented to the user and validation of user entries.
Standard Authentication In the Server or LDAP Path box, enter the Active Directory server name or IP address or the LDAP path for authentication.

Two types of bind are available:

  • Windows bind (selected by default) — If authentication is within the same domain, the Server or LDAP path can be left blank.
  • Simple bind - Enter the Server or LDAP path (LDAP://server name,5000)

For either bind, you can configure the following options:

  • Fast Bind — If disabled, the Active Directory Server returns all the user attributes to the workflow server.
  • Server Bind — If disabled, the Active Directory Server tries to connect to DNS server to resolve the IP address of the workflow server.
  • Use SSL — If disabled, the connection between LDAP and Workflow server is not encrypted. To use SSL option you must have a server certificate for the ADAM service . If verifying against another domain, enter the server name and port number (LDAP://server name,5001). Click Test to verify that the user name created on the server authenticates successfully.

Refer to the Microsoft web site for information about setting the LDAP Bind options.

NetWare This authentication method prompts the user for a NetWare user name, password, context and tree.
  • NDS Tree — Enter the default nDS tree.
  • NDS Context — Enter the default NDS context.
Plug-in Authentication The administrator defines prompts that are displayed to the user.
  • Snap-in path — Specifies the path to the compiled snap-in (.NET assembly) that contains the custom authentication code. You can click the browse button (...) to locate the snap-in file.
  • Source path  — Path to the source code of the snap-in. This path is used by code editor to compile the snap-in only during design time.
  • Create/Edit Snapin — Click this button to open a code editor window with basic snap-in code. For details of the code editor window and the object model, please refer to the Lexmark Capture Component Snap-in Documentation  by clicking the Help button in the code editor window.
User Info Lookup You can configure an LDAP search to retrieve additional information about the authenticated user, such as their email and full name. To enable this feature, select the Use LDAP Search to retrieve additional user information check box. Click the Configure button to open the LDAP Lookup Settings dialog box to configure settings for the LDAP server. For more information, see LDAP Lookup Settings.
Note: When "Standard" is selected as the Authentication Type, the email address is retrieved automatically as part of the authentication, so an LDAP search is not required if you only need the email address.
Test Lookup To test the search settings, enter a sample user name in the Username box and click the Test button.