LDAP Operation Guide (Lightweight Directory Access Protocol) To find basic information about network and advanced network features of your Brother machine: See the uu Network User's Guide. To download the latest manual, please visit the Brother Solutions Center at (http://solutions.brother.com/). You can also download the latest drivers and utilities for your machine, read FAQs and troubleshooting tips or learn about special printing solutions from the Brother Solutions Center.
Applicable models This User’s Guide applies to the following models. 5-line LCD models: MFC-8510DN/8520DN/8710DW/8810DW/8910DW Touchscreen models: DCP-8250DN and MFC-8950DW(T) (For MFC-8510DN, MFC-8520DN and MFC-8710DW) In order to use the LDAP function, please download the necessary firmware from the “Downloads” page for your model on the Brother Solutions Center at http://solutions.brother.com/.
Table of Contents 1 Introduction 1 Overview....................................................................................................................................................1 Benefits to the customer ............................................................................................................................1 2 Configuration for LDAP using a Web Browser 2 Changing the LDAP configuration ..................................................................................
1 Introduction 1 1 Overview 1 The LDAP protocol allows you to search for information such as fax numbers and E-mail addresses from your server. When you use the Fax, I-Fax or Scan to E-mail server features, you can use the LDAP search to find fax numbers or E-mail addresses.
2 Configuration for LDAP using a Web Browser 2 Changing the LDAP configuration 2 2 Note We recommend to use Windows® Internet Explorer® 7.0/8.0 or Firefox® 3.6 for Windows® and Safari 4.0/5.0 for Macintosh. Please also make sure that JavaScript and Cookies are always enabled in whichever browser you use. If a different web browser is used, make sure it is compatible with HTTP 1.0 and HTTP 1.1. a b Start your web browser.
Configuration for LDAP using a Web Browser h Make sure the machine is turned on and then choose Advanced Setting on the Protocol page. You can configure and change the following LDAP settings using a web browser. 2 1 2 3 4 5 6 1 This is the location of your LDAP server. 2 Change the port if necessary. (389 is the typical port number of LDAP). If you want to connect to the Global Catalog, enter the port number 3268. 3 Enter Search Root. This is the place to start a search.
Configuration for LDAP using a Web Browser i After you have configured the LDAP settings, click Submit. Make sure that the Status is OK on the Test Result page. Note • The LDAP function of this machine supports LDAPv3. 2 • You need to use Kerberos Authentication or Simple Authentication to communicate with your LDAP server. If the LDAP server supports Kerberos Authentication, we recommend to choose Kerberos for the Authentication setting.
Configuration for LDAP using a Web Browser Configuring your machine to communicate with your E-mail server 2 You must also configure your Brother machine to communicate with your E-mail server. a b 2 Start your web browser. Type “http://machine’s IP address/” into your browser's address bar (where “machine’s IP address” is the IP address of the machine or the print server name). For example: http://192.168.1.2/ c d e f No password is required by default.
Configuration for LDAP using a Web Browser g Change the E-mail server settings. 1 2 2 3 4 5 6 7 8 1 This is the location of your SMTP server and associated SMTP port address. The standard port number for SMTP is 25. 2 If your SMTP server requires authentication, input the necessary information here. 3 You can choose the encryption method between the machine and the SMTP server. 4 Some features of this machine, like I-Fax, allow you to send and receive E-mails to it.
Configuration for LDAP using a Web Browser i j After a short while you will be asked if you want to send a test E-mail to ensure a connection has been established with your E-mail server. Do one of the following: If you want to test the connectivity, enter an E-mail address and click Submit. Go to step j. If you want to send a test E-mail, click Send Test E-mail. If you do not want to test the connectivity, uncheck both test E-mail check boxes and then click Submit.
Configuration for LDAP using a Web Browser Synchronize with SNTP server 2 If the LDAP server supports Kerberos Authentication, and if you choose Kerberos for the Authentication, you must configure the SNTP protocol (network time server), or you must set the date, time and time zone correctly on the control panel for Kerberos Authentication. The time must match the time on the server used for the Kerberos Authentication.
Configuration for LDAP using a Web Browser Primary SNTP Server Port, Secondary SNTP Server Port Enter the Port number (1 to 65535). The Secondary SNTP server port is used as a backup to the Primary SNTP server port. If the Primary port is unavailable, the machine will contact the Secondary SNTP port. If you have a Primary SNTP port, but no Secondary SNTP port, simply leave this field blank. Synchronization Interval Enter the number of hours between server synchronization attempts (1 to 168 hours).
3 Machine operation 3 After you configure the LDAP settings, you can use the LDAP search to find fax numbers or E-mail addresses for the following features. Fax sending 1 I-Fax sending 1 3 Scan to E-mail server 1 Not available for DCP-8250DN LDAP operation using the control panel for MFC-8510DN, MFC-8520DN, MFC-8710DW, MFC-8810DW and MFC-8910DW Fax or I-Fax sending 3 3 Note • For more information on Fax sending: uu Basic User's Guide and Advanced User's Guide.
Machine operation f Enter the initial characters for your search by using the dial pad. Note You can enter up to 15 characters. g Press a or OK. The LDAP search result will be shown on the LCD before the local address book search result with c. If there is no match on the server or the local address book, the LCD will show No Contact Found for 2 seconds. h Press a or b to scroll until you find the name you are looking for.
Machine operation Scan to E-mail server 3 Note • For information on PDF/A, Secure PDF and Signed PDF, see PDF file format uu page 28. • If you choose Secure PDF, the machine will ask you to enter a 4 digit password using numbers 0-9 before it starts scanning. • If you choose Signed PDF, you must install and then configure a certificate to your machine using Web Based Management. For the details on the certificate installation, see Digital Certificate Installation uu page 19. a b c Load your document.
Machine operation g Press a or b to choose PDF, PDF/A, Secure PDF, Signed PDF, JPEG or XPS. Press OK and go to step i. h Press a or b to choose PDF, PDF/A, Secure PDF, Signed PDF, JPEG or TIFF. Press OK and go to step j. i Press a to choose the file size you want. Press OK and go to step j. j k The LCD prompts you to enter an address. Press a to search. 3 Enter the initial characters for your search by using the dial pad. Note You can enter up to 15 characters. l Press a or OK.
Machine operation LDAP operation using the control panel for DCP-8250DN and MFC-8950DW(T) Fax or I-Fax sending (For MFC-8950DW(T)) 3 3 3 Note • For more information on Fax sending: uu Basic User's Guide and Advanced User's Guide. • For more information on I-Fax: uu Network User's Guide. a b c d Press Fax. Load your document. Set the scanner glass size, fax resolution or contrast if you want to change them.
Machine operation h Press OK. The LDAP search result will be shown on the LCD with before the local address book search result. If there is no match on the server or the local address book, the LCD will show Results cannot be found. for about 60 seconds. i Press a or b to scroll until you find the name you are looking for and then press the name. To confirm the details of the name, press Detail.
Machine operation Scan to E-mail server 3 Note • For information on PDF/A, Secure PDF and Signed PDF, see PDF file format uu page 28. • If you choose Secure PDF, the machine will ask you to enter a 4 digit password using numbers 0-9 before it starts scanning. • If you choose Signed PDF, you must install and then configure a certificate to your machine using Web Based Management. For the details on the certificate installation, see Digital Certificate Installation uu page 19.
4 Digital Certificate for Signed PDF 4 Configure certificate for Signed PDF 4 If you choose Signed PDF, you must configure a certificate to your machine using Web Based Management. To use Signed PDF, you must install a certificate to your machine and your computer. a b Start your web browser. Type “http://machine’s IP address/” into your browser's address bar (where “machine’s IP address” is the IP address of the machine or the print server name). For example: http://192.168.1.
Digital Certificate for Signed PDF Supported Certificates 4 The Brother machine supports the following certificates. Self-signed certificate This print server issues its own certificate. Using this certificate, you can easily use the SSL/TLS communication without having a certificate from a CA. (See Creating a self-signed certificate uu page 20.) Certificate from a CA There are two methods for installing a certificate from a CA.
Digital Certificate for Signed PDF Digital Certificate Installation 4 Signed PDF requires a digital certificate to be installed on both the machine and device which is sending data to the machine, e.g. a computer. In order to configure the certificate, the user needs to log onto the machine remotely through a web browser using its IP address. a b Start your web browser.
Digital Certificate for Signed PDF Creating a self-signed certificate a b 4 Click Create Self-Signed Certificate. Enter a Common Name and a Valid Date. Note • The length of the Common Name can be up to 64 characters. The node name is displayed by default. • A warning will pop-up if you use the IPPS or HTTPS protocol and enter a different name in the URL than the Common Name that was used for the self-signed certificate.
Digital Certificate for Signed PDF Creating a Certificate Signing Request (CSR) 4 A Certificate Signing Request (CSR) is a request sent to a CA in order to authenticate the credentials contained within the certificate. Note We recommend that the Root Certificate from the CA be installed on your computer before creating the CSR. a b Click Create CSR. 4 Enter a Common Name and your information, such as Organization.
Digital Certificate for Signed PDF c You can choose the Public Key Algorithm and Digest Algorithm settings from the pull-down list. The default settings are RSA(2048bit) for Public Key Algorithm and SHA256 for Digest Algorithm. d Click Submit. The following screen will appear. 4 e After a few moments, you will be presented with the certificate, which can be saved into a small file or copied and pasted directly into an online CSR form offered by a Certificate Authority.
Digital Certificate for Signed PDF How to install the certificate to your machine 4 When you receive the certificate from a CA, follow the steps below to install it into the print server. Note Only a certificate issued with this machine’s CSR can be installed. When you want to create another CSR, make sure that the certificate is installed before creating another CSR. Create another CSR after installing the certificate to the machine. Otherwise the CSR you have made before installing will be invalid.
Digital Certificate for Signed PDF Import and export the certificate and private key 4 You can store the certificate and private key on the machine and manage them by importing and exporting. How to import the self-signed certificate, the certificate issued by a CA, and the private key a b c d Click Import Certificate and Private Key on the Certificate page. 4 Specify the file that you want to import. Enter the password if the file is encrypted, and then click Submit.
Digital Certificate for Signed PDF Import and export a CA certificate 4 You can store a CA certificate on the machine by importing and exporting. How to import a CA certificate a b Click CA Certificate on the Security page. Click Import CA Certificate and choose the certificate. Click Submit. How to export a CA certificate a b c d 4 4 Click CA Certificate on the Security page. Choose the certificate you want to export and click Export. Click Submit. Click Save to choose the destination folder.
5 Troubleshooting 5 Overview 5 This chapter explains how to resolve typical network problems you may encounter when using the Brother machine. If, after reading this chapter, you are unable to resolve your problem, please visit the Brother Solutions Center at: (http://solutions.brother.com/). Please go to the Brother Solutions Center at (http://solutions.brother.com/) and click Manuals on your model page to download the other manuals.
Troubleshooting Error messages when using the LDAP operation Error Message Cause No LDAP Server The Brother machine cannot connect to the LDAP server. However, the LDAP server configuration of the machine is correct. Action Make sure your access point (for wireless), router or hub are turned on and its link button is blinking. Make sure your local area network is running correctly. Contact your network administrator for the information on the current network problems.
Troubleshooting Network terms and PDF file format 5 Network terms 5 LDAP The Lightweight Directory Access Protocol (LDAP) allows the Brother machine to search for information such as fax numbers and E-mail addresses from an LDAP server. SNTP The Simple Network Time Protocol is used to synchronize computer clocks on a TCP/IP network. You can configure the SNTP settings using Web Based Management (web browser).