[Network Settings] : Device : Reference Guide

[Audit Log Settings]

[Authentication/Accounting]

[`Network Settings`]

Note

Do not use the same port numbers as other ports for LPD, port 9100, HTTP-SSL/TLS communication, SIP, primary server, and secondary server.
Do not use the same port numbers as LPD, port 9100, or HTTP-SSL/TLS communication for ports which use HTTP (IPP, Internet services (HTTP), UPnP discovery, SOAP, WSD).
If any of the following port numbers are set, the machine may fail to operate normally due to the port setting situation.
- 25
- 139
- 427
- 445
- 631
- 15000

[Port Settings]
[Wireless LAN Settings]
[Protocol Settings]
[Device Email Address / Host Name]
[Proxy Server List]
[EP Proxy Server Setup]
[SIP Settings]
[T.38 Settings]
[Outgoing/Incoming Email Settings]
[Remote Authentication / Directory Service]
[Security Settings]
[Other Settings]

[`Port Settings`]

Sets settings of interfaces of the machine connected to clients.

[`USB`]

Item		Description
[`Port Status`]		Set to [`Enabled`] to use USB.
[`Print Mode`]		Set type of print language used. If set to [`Auto`], it is determined what language is used to express data received from host, and appropriate print processing is performed in accordance with the data.
[`PJL`]		PJL (Printer Job Language) commands are data attached at the beginning of an actual print job. Normally, the machine is used with this left set to [`Enabled`].
[`Auto Eject Time`]		Sets time from when it becomes impossible for data to be sent to the machine until paper is ejected.
[`Adobe Communication Protocol`]
	[`Standard`]	Set when printer driver output protocol is ASCII format.
	[`Binary`]	Set when printer driver output protocol is BCP format.
	[`TBCP`]	Set when printer driver output protocol is TBCP format.
	[`RAW`]	Set when printer driver output protocol is ASCII format or binary format. Data is output as is, without any control by the Adobe communication protocol.
[`PostScript Wait Timeout`]		When set to [`Disabled`], the time until the connection is disconnected when printing data follows [`Auto Eject Time`]. If set to [`Enabled`], the time complies with the PostScript timeout. Note Set [`Adobe Communication Protocol`] to [`RAW`].

[`LPD`]

Item	Description
[`Port Status`]	Set to [`Enabled`] to use LPD.
[`Port Number`]	Set port number used with LPD.
[`Maximum Number of Sessions`]	Set maximum number of clients that can be connected simultaneously to the machine with LPD.

[`SMB Client`]

Item	Description
[`Port Status`]	Set to [`Enabled`] to use SMB. This is set when performing SMB transfer using [`Scan`].

[`IPP`]

Item	Description
[`Port Status`]	Set to [`Enabled`] to use IPP. This is set when printing via the Internet using IPP (Internet Printing Protocol).
[`Added Port Number`]	Set a port number that receives IPP at a non-standard port number.

Item

Description

[Port Status]

Set to [Enabled] to use IPP.

This is set when printing via the Internet using IPP (Internet Printing Protocol).

[Added Port Number]

Set a port number that receives IPP at a non-standard port number.

[`Bonjour`]

Item	Description
[`Port Status`]	Set to [`Enabled`] to use Bonjour.

[`Port 9100`]

Item	Description
[`Port Status`]	Set to [`Enabled`] to use Port 9100. Set when using RAW protocol with standard TCP/IP port monitor of Windows.
[`Port Number`]	Set port number used with Port 9100.

Item

Description

[Port Status]

Set to [Enabled] to use Port 9100.

Set when using RAW protocol with standard TCP/IP port monitor of Windows.

[Port Number]

Set port number used with Port 9100.

[`SNMP`]

Item	Description
[`Port Status`]	Set to [`Enabled`] to use SNMP. This is set when using applications made by us for managing the machine using a network.

[`SIP`]

Item	Description
[`Port Status`]	Set to [`Enabled`] to use IP fax (SIP).
[`Port Number`]	Set port number used with IP fax (SIP).

[`FTP Client`]

Item	Description
[`Port Status`]	Set to [`Enabled`] to use FTP. Note Setting of the starting rate when sending a scanned image via FTP communication is performed with `Internet Services`.

[`Receive Email`]

Item	Description
[`Port Status`]	Set to [`Enabled`] to receive Email or Internet fax.

[`Send Email`]

Item	Description
[`Port Status`]	Set to [`Enabled`] to send Email or Internet fax.

[`Email Notification Service`]

Item	Description
[`Port Status`]	Set to [`Enabled`] to use Email notification service or [`Notify Job Completion by Email`]. The status of the notified machine is: “Consumables Status”, “Parts Status”, “Paper Tray Status”, “Output Tray Status”, “Jam Status”, “Interlock Status”, or “Fault Notice”. Note Setting of Email Notification Service is done with `Internet Services`.

Item

Description

[Port Status]

Set to [Enabled] to use Email notification service or [Notify Job Completion by Email].

The status of the notified machine is: “Consumables Status”, “Parts Status”, “Paper Tray Status”, “Output Tray Status”, “Jam Status”, “Interlock Status”, or “Fault Notice”.

Note

Setting of Email Notification Service is done with Internet Services.

[`UPnP Discovery`]

Item	Description
[`Port Status`]	Set to [`Enabled`] to use UPnP.
[`Port Number`]	Set port number used with UPnP communication.

[`WSD`]

Item	Description
[`Port (Print from Desktop)`]	Set to [`Enabled`] to use WSD print. This is set when searching devices on a network from Windows OS.
[`Port (Scan to Desktop)`]	Set to [`Enabled`] to use scan to desktop. This is set when searching devices on a network from Windows OS.
[`Port Number`]	Set port number used with WSD communication.

Item

Description

[Port (Print from Desktop)]

Set to [Enabled] to use WSD print.

This is set when searching devices on a network from Windows OS.

[Port (Scan to Desktop)]

Set to [Enabled] to use scan to desktop.

This is set when searching devices on a network from Windows OS.

[Port Number]

Set port number used with WSD communication.

[`Internet Services (HTTP)`]

Item	Description
[`Port Status`]	Set to [`Enabled`] to use `Internet Services`.
[`Port Number`]	Set port number used with `Internet Services`.

[`SOAP`]

Item	Description
[`Port Status`]	Set to [`Enabled`] to use SOAP port. This is set when using applications such as `Device Setup`.
[`Port Number`]	Set port number used with SOAP.

[`WebDAV`]

Item	Description
[`Port Status`]	Set to [`Enabled`] to use WebDAV. This is set when accessing the machine’s folder using an application.
[`Port Number`]	Set port number used with WebDAV.
[`Operation Timeout`]	Set timeout time.

[`ThinPrint`]

Item	Description
[`Port Status`]	Set to [`Enabled`] to use ThinPrint. The machine supports printing in the ThinPrint environment. Printing is done by decompressing data compressed and sent from the server (Windows Server).
[`Port Number`]	Set port number used with ThinPrint. Note Can be used when communication protocol operates with IPv4. The maximum number of simultaneous connections is 3.

Item

Description

[Port Status]

Set to [Enabled] to use ThinPrint.

The machine supports printing in the ThinPrint environment. Printing is done by decompressing data compressed and sent from the server (Windows Server).

[Port Number]

Set port number used with ThinPrint.

Note

Can be used when communication protocol operates with IPv4.
The maximum number of simultaneous connections is 3.

[`SFTP Client`]

Item	Description
[`Port Status`]	Set to [`Enabled`] to use SFTP.

[`Wireless LAN Settings`]

Refer

Refer to Using the Wireless Network.

[`Protocol Settings`]

Sets the conditions needed for communication.

[`Ethernet Settings`]

Item	Description
[`Ethernet - Network Name`]/[`Ethernet 1 - Network Name`]/[`Ethernet 2 - Network Name`]	Sets the names of each line when using 2 Ethernet interface lines.
[`Ethernet - Rated Speed`]/[`Ethernet 1 - Rated Speed`]/[`Ethernet 2 - Rated Speed`]	Sets communication speed of Ethernet interface. Select auto detect or fixed speed according to the connected network environment.
[`Energy Efficient Ethernet`]	Enables energy efficient feature of Ethernet interface.

[`TCP/IP - Common Settings`]

Item	Description
[`Primary Network`]	Displays name of network operating as primary network when using multiple interfaces. Note Setting of the primary network is done with `Internet Services`.
[`IP Mode`]	Sets TCP/IP operation mode.

[`TCP/IP - Network Settings`]

Note

If you use multiple interfaces, this item is displayed as [TCP/IP - Network Settings (Ethernet 1)]/[TCP/IP - Network Settings (Ethernet 2)]/[TCP/IP - Network Settings (Wi-Fi)].
The same IP address cannot be set in [TCP/IP - Network Settings (Ethernet 1)], [TCP/IP - Network Settings (Ethernet 2)] and [TCP/IP - Network Settings (Wi-Fi)].
Ports usable in a secondary network are: LPD, Port 9100, SNMP, Internet services (HTTP), Bonjour, IPP, ThinPrint, WSD, AirPrint, and Mopria. A secondary network interface may fail to operate if it is set with an application that uses another port.

Item		Description
[`IPv4 - IP Address Resolution`]		Sets method of retrieving IP address, subnet mask, and gateway address.
[`IPv4 - IP Address`]		Specifies IP address.
[`IPv4 - Subnet Mask`]		Specifies subnet mask.
[`IPv4 - Gateway Address`]		Specifies gateway address.
[`IPv4 - DNS Server Setup`]		Sets DNS server.
	[`Get IP Address from DHCP`]	Enables retrieval of DNS server address from DHCP server.
	[`DNS Server Address 1`] to [`DNS Server Address 3`]	Sets address of DNS server manually. Enables setting of substitute DNS server address for alternate DNS server 2 and 3.
[`IPv4 - IP Filter`]		Enables limitation of connection to the machine with the IPv4 address. Note [`IPv4 - IP Filter`] applies to all features using TCP/IP. For example, printing, scan jobs (folder scan), `Internet Services`, and web applications. To enable [`IPv4 - IP Filter`] and perform FTP transfer of a scanned image from the machine, be sure to switch the FTP starting rate to [`Active Mode`]. Switching of the FTP starting rate is done using `Internet Services`. Setup of the IPv4 address for receiving connections is done with [`IP Filter`] of `Internet Services`.
[`IPv6 Address Manual Configuration`]		Enables manual setting of IPv6 address.
[`IPv6 - Manual Address`]		Specifies IPv6 address.
[`IPv6 - Manual Address Prefix`]		Sets prefix length.
[`IPv6 - Manual Gateway Address`]		Sets gateway address.
[`IPv6 - DNS Server Setup`]		Sets DNS server.
	[`Get IP Address from DHCP`]	Enables retrieval of DNS server address from DHCP server.
	[`DNS Server Address 1`] to [`DNS Server Address 3`]	Sets address of DNS server manually. Enables setting of substitute DNS server address for alternate DNS server 2 and 3.
[`Auto Configured IPv6 Address`]		Displays set IP address. Note If the IP address is set manually, up to 2 addresses can be assigned with stateless automatic configuration.
[`IPv6 - IP Filter`]		Enables limitation of connection to the machine with the IPv6 address. Note [`IPv6 - IP Filter`] applies to all features using TCP/IP. For example, printing, scan jobs (folder scan), `Internet Services`, and web applications. To enable [`IPv6 - IP Filter`] and perform FTP transfer of a scanned image from the machine, be sure to switch the FTP starting rate to [`Active Mode`]. You can set the FTP starting rate in `Internet Services`. Setup of the IPv6 address for receiving connections is done with [`IP Filter`] of `Internet Services`.

[`Ping Connection Test`]

Enables confirmation whether normal communication is possible between the machine and client computer under the set conditions.

[`Print Network Protocol Report`]

Outputs report on protocol settings for primary interface.

[`Device Email Address / Host Name`]

[`Email Address`]

Input the Email address of the machine up to 128 characters.

SMTP Reception

Any name can be set for the account (part to the left of the @ mark). Set the combination of the host name and domain name as the address part (part to the right of the @ mark). An alias cannot be set.

For example,

Account name: mymail
Host name: myhost
Domain name: example.com

In this case, the Email address is mymail@myhost.example.com.

POP3 Reception

Specify the Email Address for receiving emails.

[`Device Name`]

Input the name of the machine up to 32 characters.

[`Host Name`]

Input the host name in 32 half-size characters or less.

Note

In communication with SMB, the part from the beginning to 15 half-size characters is used as a host name. To correctly identify the machine, set the host name to 15 half-sized characters or less.

[`Domain Name`]

Input the domain name up to 255 characters.

[`Proxy Server List`]

Set when using web applications.

Note

Change the settings only when using services that require proxy setting.

[`Proxy Server Settings`]

Proxy server settings can be set for each interface, in accordance with the network environment.

Note

If you use multiple interfaces, this item is displayed as [Proxy Server Settings - Ethernet 1]/[Proxy Server Settings - Ethernet 2]/[Proxy Server Settings - Wi-Fi].
These are also applied to connection with SFTP servers.

Item	Description
[`Use Proxy Server`]	Enables use of proxy server.
[`Proxy Server Setup`]	Sets method of specifying proxy server. [`Same Proxy for All Protocols`] Settings for HTTP proxy server are also applied to HTTPS proxy server. [`Different Proxy for Each Protocol`] Enables different settings for HTTPS proxy server and HTTP proxy server, respectively. [`Use Automatic Proxy Configuration Script`] Setting is done by using PAC file for setting HTTPS proxy server and HTTP proxy server. [`Automatically Detect Settings`] Detects settings for HTTPS proxy server and HTTP proxy server.
[`Enter URL to Configuration Script`]	Specifies URL when setting [`Proxy Server Setup`] to [`Use Automatic Proxy Configuration Script`].
[`Address to Bypass Proxy Server`]	Sets addresses for not using a proxy server. Specification can be done with IPv4 address, IPv6 address, and FQDN format. Specification can also be done using “*” (wild card).
[`HTTP Proxy Server Name`]/[`HTTPS Proxy Server Name`]	Input server name or IP address. Specification can be done with IPv4 address, IPv6 address, and FQDN format.
[`HTTP Proxy Server Port Number`]/[`HTTPS Proxy Server Port Number`]	Specifies port number of HTTP proxy server and HTTPS proxy server.
[`HTTP Proxy Server Authentication`]/[`HTTPS Proxy Server Authentication`]	Set to [`Enabled`] if authentication is necessary when connecting to an HTTP proxy server or HTTPS proxy server.
[`HTTP Proxy Server Login Name`]/[`HTTPS Proxy Server Login Name`]	Input the login name.
[`HTTP Proxy Server Password`]/[`HTTPS Proxy Server Password`]	Input password.

[`EP Proxy Server Setup`]

Sets settings for proxy server for EP connection, when using the EP system for EP-BB multifunction device management service via the Internet.

This is the same as [Proxy Server List].

Note

There are countries and regions where the EP-BB multifunction device management service is not available.

Refer

Refer to our official website for information on the EP-BB multifunction device service.

[`SIP Settings`]

Set when using IP fax (SIP).

Item			Description
[`SIP Device Address`]			Sets SIP user ID of the machine. Note If an SIP server is not used, specify the IP address of the machine after @. If an SIP server made by Cisco is used, then for the [`SIP Device Address`] set for the machine, it is only possible to specify the IPv4 address text string for the SIP server after the @ mark. The system will not operate if an IPv6 address text string, FQDN text string, or SIP domain name text string has been specified.
[`SIP Transport Protocol`]			Sets SIP transport protocol. Note Set [`UDP`] to use an SIP server made by Cisco.
[`Enable SIP Server`]			Enables use of SIP server.
[`SIP Server IP Address Resolution`]			Specifies the method of resolving the IP address of the SIP proxy server and SIP registrar server. Note Even in the case of [`DHCP`] or [`DHCPv6`], there is a need to manually set port numbers, login user names, login passwords, and types for the SIP proxy server and SIP registrar server. To automatically resolve IP addresses by setting to [`DHCP`], set [`IPv4 - IP Address Resolution`] to [`DHCP`] or [`DHCP/AutoIP`] with TCP/IP - Network Settings of the machine. If the IP address is automatically resolved, the same automatically resolved IP address is set for both the proxy server and registrar server. To use different addresses for the proxy server and registrar server, set manually. When multiple addresses are automatically resolved, the first address is set as the primary proxy/registrar server, and the second address is set as the secondary proxy/registrar server. Third and subsequent addresses are not used. Even is an IP address is automatically resolved, it is not possible to automatically resolve the port number, login user name, login password, and server type. Set these items manually.
[`SIP Proxy Server Setup`]			Sets SIP proxy server. This enables setting of the primary server and secondary server. Note Up to 2 SIP proxy servers can be used.
[`SIP Registrar Server Setup`]			Sets SIP registrar server. This enables setting of the primary server and secondary server. Note Up to 2 SIP registrar servers can be used.
[`VoIP Gateway Setup`]			Sets VoIP Gateways 1 to 50. This enables setting of separate VoIP gateways depending on the telephone number of the remote terminal. Note When using a fixed VoIP gateway, do not set an ID for VoIP gateway 1. Set the address only. This cannot be used with an IPv6 network.
	[`VoIP Gateway 1`] to [`VoIP Gateway 50`]
		[`ID`]	Sets numerals for specifying telephone number of remote terminal. For example, if “03” is set, then this VoIP gateway is used for telephone numbers starting with “03” such as 0312345678 and 0312345679. Note To specify a specific telephone number, set the entire telephone number, e.g., 0312345678.
		[`Gateway Address`]	Input the IP address of the VoIP gateway. Specification can be done with an IPv4 address, IPv6 address, or FQDN format.

[`T.38 Settings`]

Sets settings for T.38 when using IP fax (SIP). Normally, no change is necessarily.

[`Outgoing/Incoming Email Settings`]

[`POP3 Server Settings`]

Note

You can set the POP3 server of Exchange Online which uses Oauth2.0 authentication using Internet Services.
You can set only one POP3 server. The settings you made later takes effect.
If you set the POP3 server of Exchange Online which uses Oauth2.0 authentication, the setting of this item is not used.

Item	Description
[`Server Name / IP Address`]	Input server name or IP address of POP3 server.
[`Port Number`]	Sets port number of POP3 server.
[`Polling Interval`]	Sets interval for checking POP3 server for Email.
[`Login Name`]	Input name for logging in to POP3 server.
[`Password`]	Sets password for POP reception.
[`POP Password Encryption`]	Enables password encryption.

[`SMTP Server Settings`]

Enables confirmation of the connection situation between the machine and SMTP server by tapping on [Connection Test] and sending a test Email to an Email address specified by the machine. Also, if [Connection Test] > [Print SMTP Comm Report] is selected, a report is printed showing the specifics of the SMTP communication protocol sent/received by the machine.

Item	Description
[`SMTP Server Name / IP Address`]	Input server name or IP address of SMTP server.
[`SMTP Server Port Number`]	Sets port number of SMTP server.
[`Email Send Authentication`]	Sets method of authentication for sending via SMTP. Note As authentication methods, the system supports AUTH GSSAPI (only when specifying Kerberos), AUTH NTLMv2, AUTH NTLMv1, AUTH PLAIN, AUTH LOGIN, and AUTH CRAM-MD5.
[`Login Credentials for Email Send`]	Sets Login Credentials for Email Send. If set to [`Remotely Authenticated User`], login to the SMTP server is performed with the remote authentication user name/password if log in to remote accounts is performed on the machine prior to running a job. You can also select Operation in case login fails. If log in to remote accounts is not used, then the user name/password set for the machine is used.
[`SMTP AUTH Login Name`]	Sets login name for SMTP server.
[`SMTP AUTH Password`]	Sets login password for SMTP server.

[`Remote Authentication / Directory Service`]

[`Authentication System Setup`]

Item	Description
[`Authentication System`]	Selects system for performing authentication. Note If using our products (sold separately) as the remote accounts, select [`Authentication Agent`]. Setting of the Microsoft Entra ID is done with `Internet Services`.
[`Server Response Timeout`]	Sets server response timeout for authentication.
[`Search Timeout`]	Sets timeout for user details search.

[`Kerberos Server Settings`]

Item		Description
[`Kerberos Server 1 (Default)`] to [`Kerberos Server 5`]		Kerberos Server 1 to 5 are set, respectively, as follows. The specifics set for Kerberos Server 1 are used as the default for authentication.
	[`Primary Server Name/Address`]	Input server name or IP address of primary server.
	[`Primary Server - Port Number`]	Input port number of primary server.
	[`Secondary Server Name/Address`]	Input server name or IP address of secondary server.
	[`Secondary Server - Port Number`]	Input port number of secondary server.
	[`Domain Name`]	When using Active Directory of a Windows Server as the server, set the domain name of Active Directory as the domain name. Note Be sure to set the domain name in all uppercase letters. An authentication error will occur if set in lowercase letters.
[`Server Certificate Verification`]		Server Certificate can be verified.

[`LDAP Server / Directory Service Settings`]

Sets items such as the directory server and the attributes and scope for search when LDAP authentication and the Address Book search using LDAP is used.

Connection with the server can be confirmed by tapping on [Connection Test].

Item		Description
[`Primary Server Name/Address`]		Input server name or IP address of primary server.
[`Primary Server - Port Number`]		Input port number of primary server.
[`Secondary Server Name/Address`]		Input server name or IP address of secondary server. Connects to substitute server when communication is down due to primary server maintenance, etc.
[`Secondary Server - Port Number`]		Input port number of secondary server. Connects to substitute server when communication is down due to primary server maintenance, etc.
[`Authentication Method`]
	[`Direct Authentication`]	Authentication for the LDAP server is performed with the entered user ID and password.
	[`Authentication of User Attributes`]	Authentication for the LDAP server is performed based on specific attribute information. This sets the attribute name for [`Attribute of Entered User Name`].
[`Attribute of Entered User Name`]		Sets attribute name when authentication method for LDAP authentication is [`Authentication of User Attributes`]. Authentication for the LDAP server is performed based on specific attribute information. This sets the attribute name for [`Attribute of Entered User Name`]. For example, set “mail” to have users input their Email address. Note Set an attribute that guarantees that each user is provided with a unique value.
[`Attribute of Login User Name`]		Input the attribute name to be used as the user’s display name or identifier. Note Set an attribute that guarantees that each user is provided with a unique value. Login is not possible if the set attribute cannot be retrieved from the LDAP server. If the authentication method is [`Direct Authentication`], set to an item the same as the user ID attribute input at authentication from the operation panel.
[`Use Added Text String`]		Enables automatic addition of information input with [`Text String Added to User Name`] when entering user details from the touch panel display.
[`Text String Added to User Name`]		If [`Use Added Text String`] is set for [`Enabled`], that fixed text string is input. For example, if “@myhost.example.com” is set when authenticating using an Email address (user@myhost.example.com), login can be done by entering “user” only.
[`Attribute of IC Card`]		Sets search attribute of card ID when performing LDAP authentication using an IC Card.
[`Network User ID Attribute`]		Sets attribute of login user name for searching by card ID of the IC Card, when performing LDAP authentication using the IC Card. The retrieved user name is used as the user details provided to the remote service.
[`Login Credentials to Search Entries`]		Sets credentials used when searching.
[`Login Name`]		Sets user name when accessing directory server using the Address Book search and LDAP certification via the [`Authentication of User Attributes`] method. This is the setting only for only when directory service authentication is necessary. Note Input should basically be done in the DN format. However, attribute values such as display name can also be specified in the case of Active Directory. For details, visit the official website of Microsoft.
[`Password`]		Sets login password of user specified with [`Login Name`].
[`Search Directory Root`]		Input the text string to serve as the root for search. Note The root specified here serves as the basis for user search. Specify the root of the hierarchy containing the users who log in. However, if the number of users or groups contained in the hierarchy below the root is too large, it may take some time to log in to the machine.
[`Search Scope`]		Sets the search scope from the directory root.
[`Object Class of Search Target`]		Input the object class for search.
[`LDAP Referrals`]		Enables reconnection to specified server when an instruction to connect to another LDAP server is given by the connected LDAP server.
[`LDAP Referral Hop Limit`]		When using the referral feature this sets how many times to allow switching of the connected server.
[`LDAP Server`]		Sets software used with directory server.
[`Search Entries by Common Name`]		Enables use of the attribute type of name as a search condition when searching with a name as the search key.
[`Search Entries by Surname`]		Enables use of the attribute type of surname as a search condition when searching with a name as the search key.
[`Search Entries by Given Name`]		Enables use of the attribute type of given name as a search condition when searching with a name as the search key.
[`Attribute Type of Name`]		Sets attribute type of recipient name. This enables input of attribute name of field used as recipient name from the among items of user details set for the LDAP server to be used. For Windows, input “cn” for the attribute name used as the recipient name.
[`Attribute Type of Surname`]		Sets attribute type of recipient surname.
[`Attribute Type of Given Name`]		Sets attribute type of recipient given name.
[`Attribute Type of Email Address`]		Sets attribute type of Email address. Sets attribute name of field used as Email information from among the items of user details set for the LDAP server to be used. For Windows, input “mail” for the attribute name used as the Email information.
[`Attribute Type of Fax Number`]		Sets attribute type of fax number.
[`Attribute Type of IP Fax (SIP) Number`]		Sets IP fax (SIP) number from user details set for the LDAP server to be used, as attribute name of field to be used.
[`Attribute Type of Email (Internet Fax)`]		Sets Attribute Type of Email (Internet Fax).
[`Attribute Type of Custom Item 1`] to [`Attribute Type of Custom Item 3`]		Sets LDAP attribute types for custom items 1 to 3. Enables free specification of user attributes set at LDAP server that is the search target, other than [`Attribute Type of Name`] or [`Attribute Type of Email Address`].
[`Attribute Name of Custom Item 1`] to [`Attribute Name of Custom Item 3`]		Sets attributes names assigned to custom items 1 to 3.
[`Attribute Type of Certificate`]		Sets attribute type of certificate. This enables input of attribute name of field used as certificate from among the items of user details set for the LDAP server to be used. For Windows, input “userCertificate;binary” for the attribute name of the certificate. This information is used as an S/MIME certificate when selecting a recipient using directory service, and end an Email encrypted with S/MIME. Note To carry out encrypted communication, setup is necessary for all the trusted root certificate authorities and intermediate certificate authorities set in the certificate path used for the machine.
[`Maximum Number of Search Results`]		Sets the number of results for displaying addresses matching search conditions. If the search results exceed the maximum number, further search processing is suspended.
[`Search Timeout`]		Sets search timeout time.

[`Security Settings`]

[`SSL/TLS Settings`]

Set when encrypting communication between the machine and servers or client computers.

Item		Description
[`TLS Security Level`]		Sets the mode of encrypted communication.
[`Device Certificate - Server`]		Sets server certificate for SSL/TLS communication.
[`HTTP - SSL/TLS Communication`]		Enables use of SSL/TLS communication only. Note If set to [`Enable HTTPS Only`], the ports for [`UPnP Discovery`] and [`WSD`] are stopped.
[`HTTP - SSL/TLS Port Number`]		Specifies port number for SSL/TLS communication.
[`LDAP - SSL/TLS Communication`]		Enables SSL/TLS communication for accessing authentication, search, etc. To enable SSL communication, it is necessary to change [`Primary Server - Port Number`] and [`Secondary Server - Port Number`] for [`LDAP Server / Directory Service Settings`]. The port number for SSL communication of the LDAP directory server is ordinarily 636.
[`SMTP - SSL/TLS Communication`]		Sets settings for SSL/TLS communication. Note Internet fax direct (P2P) is not supported.
	[`Disabled`]	SSL/TLS communication is not performed.
	[`STARTTLS (If Available)`]	Performs SSL/TLS communication after verifying certificate. SSL/TLS communication is not performed if certificate cannot be verified.
	[`STARTTLS`]	Performs SSL/TLS communication after verifying certificate. Communication is not performed if certificate cannot be verified.
	[`SSL/TLS`]	Performs SSL/TLS communication.
[`ThinPrint - SSL/TLS Communication`]		Enables SSL/TLS communication.
[`Device Certificate - Client`]		Sets client certificate for performing SSL/TLS communication.
[`Verify Remote Server Certificate`]		Enables verification of remote server certificate when operating the machine as an SSL client.

[`S/MIME Settings`]

Set when sending and receiving Emails and Internet faxes using encryption or signature features.

Refer

For more information on encryption and signature features, refer to Encryption and Signature Function.

Item	Description
[`Device Certificate - S/MIME`]	Sets certificate used in S/MIME communication.
[`S/MIME Communication`]	Enables S/MIME communication.
[`Receive Untrusted Email`]	The following Emails cannot be received when set to [`No`]. Email other than S/MIME when [`S/MIME Communication`] has been set to enabled Emails for which signature/verification has failed Emails whose attached certificate is expired
[`Receive Untrusted Internet Fax`]	The following Internet faxes cannot be received when set to [`No`]. Internet faxes other than S/MIME when [`S/MIME Settings`] has been set to enabled Internet faxes for which signature/verification has failed Internet faxes whose attached certificate is expired
[`Message Digest Algorithm`]	Sets cryptography method used when converting Emails to a hash value called a message digest. Note If the public key of the certificate is RSA 512-bit, then incomplete Email may be sent if set to [`SHA-512`].
[`Message Encryption Algorithm`]	Sets message encryption algorithm.
[`Send Encrypted Emails Individually`]	Enables sending of encrypted Emails individually for each recipient.
[`Send Encrypt. Internet Fax Individually`]	Enables sending of encrypted Internet faxes individually for each recipient.
[`Digital Signature - Email`]	Sets whether to always use a digital signature, or to select when sending, when sending Email.
[`Signing Certificate (Email)`]	Specifies the certificate used in [`Digital Signature`] for sending Email.
[`Digital Signature - Internet Fax`]	Sets whether to always use a digital signature, or to select when sending, when sending Internet faxes from the machine.
[`Certificate Auto Store`]	Enables saving of certificate when an Email with S/MIME certificate attached is received from an Email address set in the Address Book.

[`PDF/DocuWorks Signature Settings`]

Refer

For more information on signature features, refer to Encryption and Signature Function.

Item	Description
[`Device Certificate`]	Sets certificate used for signature.
[`PDF Signature`]	Enables signing of PDF files.
[`PDF Signature Hash Algorithm`]	Sets hash algorithm used for PDF signatures.
[`DocuWorks Signature`]	Enables signing of DocuWorks documents.
[`DocuWorks Signature Hash Algorithm`]	Sets hash algorithm used for DocuWorks signatures.
[`Signing Certificate`]	Sets certificate used with PDF/DocuWorks signature of scanner.

[`IPsec Settings`]

Sets to ensure safe communication by encrypting the network in packet units.

Note

If the Secondary Ethernet kit or wireless network kit is installed, this item can only be specified for the primary network.
Check with the network administrator regarding [IKE Authentication Method], [Preshared Key], [DH Group], and [PFS Settings].

Item		Description
[`IPsec Settings`]/[`IPsec Settings (Ethernet 1)`]/[`IPsec Settings (Ethernet 2)`]/[`IPsec Settings (Wi-Fi)`]
	[`IKE Authentication Method`]	Sets IKE authentication method.
	[`Preshared Key`]	Input preshared key. Set when [`IKE Authentication Method`] is [`Authenticate by Preshared Key`].
	[`Device Certificate`]	Sets certificate used in IPsec communication. Set when [`IKE Authentication Method`] is [`Authenticate by Digital Signature`]. Here, a self-signed certificate created with `Internet Services` cannot be used.
	[`IPsec Communication`]	Enables IPSec communication.
	[`IKE SA Lifetime`]	Sets valid period of IKE SA.
	[`IPsec SA Lifetime`]	Sets valid period of IPsec SA.
	[`DH Group`]	Sets DH group.
	[`PFS Settings`]	Enables PFS.
	[`Destination IPv4 Address`]	Sets IPv4 address or range of destinations for allowing communication.
	[`Destination IPv6 Address`]	Sets IPv6 address or range of destinations for allowing communication.
	[`Communicate with Non-IPsec Devices`]	Enables communication with devices not supported by IPsec, at addresses other than those set with the destination address.

[`IEEE 802.1X Settings`]

Item		Description
[`IEEE 802.1X Settings`]/[`IEEE 802.1X Settings (Ethernet 1)`], [`IEEE 802.1X Settings (Ethernet 2)`]
	[`IEEE 802.1X`]	Enables use of IEEE 802.1x authentication.
	[`Authentication Method`]	Sets IEEE 802.1x authentication method.
	[`Login User Name`]	Input the login user name up to 128 characters. Note If you set [`Authentication Method`] to [`EAP-TLS`], the user name in the client certificate is used.
	[`Login Password`]	Input login password in 1 to 128 bytes or less. Note If you set [`Authentication Method`] to [`EAP-TLS`], the password is not necessary for authentication.
	[`Server Certificate Verification`]	Enables verification of the server certificate if the [`Authentication Method`] is [`PEAP/MS-CHAPv2`].

[`Certificate Revocation Settings`]

Item	Description
[`Level of Certificate Verification`]	Sets level of certificate verification.
[`Certificate Revocation Check`]	Sets method for retrieval of certificate status. Set to [`By Retrieving CRL`] if the machine retrieves and verifies the certificate revocation list (CRL) from the validation authority. Set to [`By OCSP`] if confirmation is done by inquiring with the certification authority or validation authority using the OCSP (Online Certificate Status Protocol) enabling confirmation of the validity of the certificate.
[`Auto Retrieval of CRL`]	Enables auto retrieval of certificate revocation list (CRL).
[`CRL Retrieval Timeout`]	Sets upper limit on lime for retrieving certificate revocation list (CRL).
[`Query to OCSP Responder`]	Specifies method of specifying OCSP responder. Can be set to [`Use URL in Certificate`] or [`Use URL Set by Administrator`].
[`URL of OCSP Responder`]	Set URL of inquiry contact when [`Use URL Set by Administrator`] has been selected for [`Query to OCSP Responder`].
[`OCSP Communication Timeout`]	Sets upper limit of communication time with OCSP responder.

[`Verify Extended Key Usage of Certificates`]

During the certificate verifications, also verifies whether:

The Extended Key Usage of certificates contains “Server Authentication”, for verification of the server certificates
The Extended Key Usage of certificates contains “OCSP Signing”, for checking the certificate revocation using OCSP

[`Remote Operation Panel`]

Sets whether users can operate the control panel of this machine from the client computer connected to the network. When operating this machine from a client computer, a message indicating that remote operation is in progress is displayed on the control panel of this machine. During this time, the control panel is not available.

Note

During operating the control panel of this machine, the remote operation panel is not available.
During remote operation, the screen being operated on the client computer is displayed on the control panel of this machine, potentially allowing outsiders to see the screen.

[`Other Settings`]

[`FIPS 140 Validation Mode`]

FIPS 140 (Federal Information Processing Standard 140) is a U.S. Federal Standard prescribing specifications for security requirements relating to cryptography modules.

Security can be further strengthened by setting the FIPS 140-3 mode to [Enabled].

The following features operate using cryptography algorithms that are not FIPS 140 certified. Use in an environment compatible with FIPS 140 is recommended.

SMTP authentication
HTTP authentication
SMB Transfer
Scan to Folder

DocuWorks direct print
LDAP authentication
Kerberos authentication
802.1x authentication

Email
PDF direct print

Email is applicable only when S/MIME or SMTP AUTH has been used.

[`Restrict Folder Access by Network`]

Enables limitation of networks used for storage or retrieval of files in folders.

[`Other Settings`]

Sets other settings relating to the network.

Item		Description
[`Protocol to Receive Email`]		Set according to use environment.
[`Add Domain Name to User Name`]		Enables addition of domain name to user name.
[`Output Destination for Email`]		Sets output destination for printing Email. If set to [`Auto`], the output destination set as the default for output destination is selected.
[`Domain Filtering`]		Sets domains for allowing, or disabling sending and receiving of Email, Internet faxes, and IP faxes (SIP).
	[`Domain Filtering`]	Enables specification of domains for allowing sending and receiving when set to [`Allow Domains`]. Enables specification of domains for disabling sending and receiving when set to [`Block Domains`].
	[`Domain 1`] to [`Domain 50`]	Enables specification of domain names for sending and receiving when [`Domain Filtering`] is set to [`Allow Domains`] or [`Block Domains`].
[`Fixed USB Port ID`]		Sets whether to use a serial number or to use a fixed value as the ID for notification via the USB interface.