Skip header
 

Programming the LDAP server

This section describes how to program the LDAP server.

1Press the [User Tools/Counter] key.

2Press [System Settings].

3Press [Administrator Tools].

4Press [Down arrow keyNext] twice.

5Press [Program / Change / Delete LDAP Server].

6Check that [Program / Change] is selected.

7Select the LDAP server you want to program or change.

When programming the server, select [*Not Programmed].

8Press [Change] under “Name”.

9Enter the name, and then press [OK].

10Press [Change] under “Server Name”.

11Enter the server name, and then press [OK].

12Press [Change] under “Search Base”.

Select a root folder to start the search from e-mail addresses registered in the selected folder are search targets.

13Enter the search base, and then press [OK].

For example, if the search target is the sales department of ABC company, enter "dc=sales department, o=ABC". (In this example, the description is for an active directory. "dc" is for the organization unit, and "o" is for the company.)

Search base registration may be required depending on your server environment. When registration is required, unspecified searches will result in error.

Check your server environment and enter any required specifications.

14Press [Change] under “Port Number”.

Specify the port number for communicating with the LDAP server. Specify a port that is compliant with your environment.

15Enter the port number using the number keys, and then press the [Hash] key.

When SSL is set to [On], the port number automatically changes to "636".

16Under “Use Secure Connection (SSL)”, press [On].

Use SSL to communicate with the LDAP server.

For SSL to function, the LDAP server must support SSL.

If you set SSL to [On], the port number automatically changes to "636".

If you do not enable SSL, security problems may occur. To enable SSL, you must use the machine's settings. For details, consult your network administrator.

17Press [Down arrow keyNext].

18Select the authentication method.

To make a search request to the LDAP server, use the administrator account for authentication.

Authentication settings must comply with your server's authentication settings. Check your server settings before setting this machine.

[Digest Authentication] is available only with LDAP Version3.0.

If you select [Cleartext Authentication], a password is sent to the LDAP server as is, without any encryption processing.

If you select [Digest Authentication], a password is sent using an encryption process that prevents passwords from being revealed during transmission to the LDAP server.

If you select [Kerberos Authentication], a password is sent using an encryption process that prevents passwords from being revealed during transmission to the KDC server where authentication occurs.

If you select [Off], proceed to step 24.

If you select [Digest Authentication] or [Cleartext Authentication], proceed to step 19 to 22, and then proceed to step 24.

If you select [Kerberos Authentication], proceed to step 19 to 23, and then proceed to step 24.

Operation panel screen illustration

19Press [Change] under “User Name”.

When [Kerberos Authentication], [Digest Authentication], or [Cleartext Authentication] is selected for the authentication setting, use the administrator account name and password. Do not enter the administrator account name and password when using authentication for each individual or each search.

20Enter the user name, and then press [OK].

Procedures for the user name setting differ depending on server environment. Check your server environment before making the setting.

Example: Domain Name\User Name, User Name@Domain Name, CN=Name, OU=Department Name, DC=Server Name

21Press [Change] under “Password”.

22Enter the password, and then press [OK].

The user name and password are required for administrator authentication to access the LDAP server.

You can connect to the LDAP server using a user name and password stored in the Address Book. For details, see "Registering SMTP and LDAP Authentication".

If you select [Digest Authentication] or [Cleartext Authentication], proceed to step 24.

23Select the Realm.

Operation panel screen illustration

24Press [Connection Test].

Access the LDAP server to check that the proper connection is established. Check authentication works according to the authentication settings.

25Press [Exit].

If the connection test fails, check your settings and try again.

This function does not check search conditions or the search base.

26Press [Down arrow keyNext].

27Press [Change] for items you want to use as search conditions from the following: “Name”, “E-mail Address”, “Fax Number”, “Company Name”, and “Department Name”.

You can enter an attribute as a typical search keyword. Using the entered attribute, the function searches the LDAP server's Address Book.

28Enter the attribute you want to use when searching for e-mail addresses, and then press [OK].

The attribute value may change depending on the server environment. Check that the attribute value complies with your server environment before setting it.

You can leave items blank, but you cannot leave attributes blank when searching for e-mail addresses from the LDAP server Address Book.

29Press [Down arrow keyNext].

30Press [Change] under “Attribute”.

31Enter the attribute you want to use when searching for e-mail addresses, and then press [OK].

The attribute value may change depending on the server environment. Check that the attribute complies with your server environment before setting it.

32Press [Change] under “Key Display”.

33Enter the key display, and then press [OK].

The registered "Key Display" appears as a keyword for searching LDAP.

  • Without key display registration

    Operation panel screen illustration

  • With key display registration

    Operation panel screen illustration

The key does not appear on the search screen unless both "Attribute" and "Key Display" are registered. Make sure you register both to use the optional search.

34Press [OK].

35Press [Exit].

36Press the [User Tools/Counter] key.