Configuring user authentication settings

Notes:

• Starting with eSF versions 5.2.x and 2.2.x, the user authentication settings inherit the printer login configuration settings defined for the organization where the printer is enrolled.
• For more information on the Embedded Solutions Framework (eSF) version installed on your printer, see the help information documentation.
• For more information on configuring the printer login, see the Lexmark Cloud Services Administrator’s Guide.
• The printer settings are updated through the identity service provider, client ID, and client secret of the organization. To show the updated settings, after specifying the identity service provider values, save the settings, and then refresh the page.

1. From the Embedded Web Server, access the configuration page for the application.

2. From the Identity Service Settings section, select Enable Lock Screen or Enable Idle Screen.

3. Type the IP address, host name, or URL of the identity service provider and the badge service provider.

4. Set the application access policy.

   • Continue—If the connection to the identity service provider fails, then the user can continue using the printer.

   • Fail—If the connection to the identity service provider fails, then the printer display returns to the login screen.

5. To use a secure connection, upload the identity service provider SSL certificate.

   Note: For more information on creating the SSL certificate, see the documentation that came with your web browser.

6. To let users log in to the printer using a separate service account, select Use Service Account, and then enter the service account credentials.

   Note: This setting is not applicable when the application is configured for federated access. For more information, see Configuring the client ID and the client secret.

7. Do any of the following:

   For eSF version 5.0 or later

   1. From the Card Registration Settings section, set Card Registration to Identity Service.

      Note: If Card Registration is set to Disabled, then the users cannot register their card.

   2. Click Save.

   For eSF versions 3.x and 4.x

   1. From the User Authentication section, set Card Validation to Identity Service.

   2. Set Card Registration Access Control to Identity Service.

   3. Click Apply.

   4. From the Embedded Web Server, click Settings > Security > Security Setup > Access Control > Device Solutions.

   5. Set Session Access Control to the security template configured with Cloud Authentication.

      Note: The default security template is Solution 2.

   6. Click Apply.