Configuring ADFS authentication

Before you begin, make sure that ADFS authentication is enabled in the SharePoint server. For more information, see Enabling authentication types.

Notes:

• This feature applies only to SharePoint 2013 and SharePoint 2010 with ADFS 2.0.
• This feature is available only in the Embedded Solutions Framework version 3 and version 4. For a list of supported printers, see the Readme file.
• The application does not support ADFS authentication with NTLM.

1. From the Embedded Web Server, access the configuration page for the application.

2. Add or edit a profile.

3. From the Authentication section, set the authentication type to Kerberos.

4. Specify how SSL is used to connect to the SharePoint server. For more information, see Configuring SSL settings.

5. From the ADFS Settings section, select Connect to ADFS.

6. Set the authentication method.

   • If you select Integrated, then make sure that Smart Card Authentication Client, the smart card reader, and the card reader driver are installed in the printer. For more information, see the Smart Card Authentication Client Administrator’s Guide.

   • If you select Forms-based, then make sure that the default local authentication type in the ADFS web configuration file is set to forms-based authentication. For more information, see Configuring forms-based authentication.

7. Click Apply.

Configuring Kerberos settings

1. From the Embedded Web Server, click Settings > Security > Security Setup.

2. From the Advanced Security Setup section, click Kerberos 5.

3. From the Simple Kerberos Setup section, type the KDC address, port number, and realm, and then click Submit.

   Note: Type the realm in uppercase.

4. Click Manage Security Templates > Add a Security Template.

5. Type the security template name.

6. In the Authentication Setup menu, select Kerberos Building Block, and then click Save Template.

   Note: If you select Integrated in the application configuration, then set the authentication to Smart Card Authentication Client.

7. Click Return to Security Setup.

8. From the Advanced Security Setup section, click Access Controls > Device Apps.

9. In the Scan To SharePoint menu, select your Kerberos template.

   Note: If you select Integrated in the application configuration, then select your Smart Card Authentication Client template.

10. Click Submit.

Configuring Smart Card Authentication Client

1. From the Embedded Web Server, access the configuration page for Smart Card Authentication Client.

2. From the Smart Card Setup section, set the Kerberos information to Use simple Kerberos setup.

3. Type the realm, domain controller, and the domain.

   Note: Type the realm in uppercase.

4. Click Apply.