Specifications
The following functions and features can be restricted:
Access Management System Realtime Workflow
When the Access Management System has been enabled, users must log in to the device using
SDL/SSO user authentication. Access Management System supports authentication through
Active Directory using SSO-H, which includes support for Kerberos Authentication. Once a user
logs into the device with their user name and password, the device can determine which roles
are assigned to that particular user. Restrictions are applied based on the assigned roles. If an
entire function is restricted, the tab will not appear on the control panel for that particular user
or group.
Device Function Values Description
Print
Allowed, Not Allowed
Allows or prohibits using applications
related to the Print function.
Copy
Allowed, Not Allowed
Allows or prohibits using applications
related to the Copy function.
Send
Allowed, Not Allowed
Allows or prohibits using applications
related to the Send function. (Including the
Fax function).
Mail Box
Allowed, Not Allowed
Allows or prohibits using applications
related to the Mail Box function. (Including
Job Hold function).
Web Access
Allowed, Not Allowed
Allows or prohibits using application
related to the Web Access function.
Utility
Allowed, Not Allowed
Allows or prohibits using applications
related to Utilities.
MEAP Applications
Allowed, Not Allowed
Allows or prohibits the use of MEAP
applications.
Others
Allowed, Not Allowed
Allows or prohibits using other
applications.
Section 2 — Canon’s Imaging & Printing Security Framework
20
White Paper: Canon imageRUNNER/imagePRESS Security