Authentication tab

Use settings on this tab to globally enable authentication for the Unified Client component at the domain level.

Authentication requires MFP users to provide valid credentials to send documents to the workflow server. The authentication settings are configured for the server, and they can be enabled or disabled for any group of MFPs.

Option Description
Authentication Type

Specifies the authentication method to be used by the component.

  • None — No authentication method is used.
  • LDAP — Uses LDAP authentication.
  • Custom Script — The administrator has full control over the prompts presented to the user and validation of user entries.
  • Microsoft Entra — Uses Microsoft Entra authentication.
Domain

Specify the name for the default domains separated by semicolon (;) to be used to authenticate users when Windows is selected as the Authentication Type.

Do not use the fully qualified Domain Name Server (DNS) domain name. Do not use top level domain qualifiers such as .com, .net or .org. For example, if the user is listed as mydomain/user1 or user1@mydomain.domain.com, then in a User Principal Name (UPN) format, the domain should be "mydomain", not "mydomain.domain.com".

Custom Script

The administrator defines prompts that are displayed to the user. An event is sent to the server when a user logs in. The administrator must provide the .NET plug-in DLL that responds to the event.

  • Script File Path — Specifies the path to the VB.NET script that contains the code to authenticate the user. You can click the browse button ( ...) to locate the script file.

  • Edit Script Code — Click this button to open a script editor window with basic script code. For details on the script editor window and the object model used to authenticate users, click the help button in the script editor.

Prompts Click this button to open the Authentication Prompts dialog box and configure the prompts that will be displayed to the user. For more information, see Authentication Prompts dialog box.
User Info Lookup

Specify the method to retrieve additional information about the authenticated user:

  • None —  No additional information is retrieved.

  • LDAP — Uses LDAP to retrieve additional information.

  • Microsoft Entra ID —  Uses Microsoft Entra ID to retrieve additional information.

LDAP

You can configure an LDAP search to retrieve additional information about the authenticated user, such as their email and full name. To enable this feature, select LDAP. Click the Configure button to open the LDAP Lookup Settings dialog box to configure settings for the LDAP server.

When Windows is selected as the Authentication Type, the email address is retrieved automatically as part of the authentication, so an LDAP search is not required if you only need the email address.

For more information, see LDAP Lookup Settings dialog box.