User Manual

ManualsBrandsCanon ManualscameraAdvanced Authentication CAC/PIV

Locks/Unlocks

Device

Provides two-factor

authentication and

integrates with

CAC/PIV server to

validate credentials.

Embedded Solution

Installs directly

on the device.

Requires no server

or middleware.

Supports several

protocols,

including Active

Directory, LDAP,

and Kerberos.

Simpliﬁes User

Experience

Easy-to-use log-in

process and menu

prompts enhance

user productivity.

Facilitates Access

Control

Canon Access

Management

System (AMS)

enables

administrators to

easily conﬁgure

role-based access

and granular-level

feature controls.

Enables Easy

Implementation

Conﬁgures via

Web interface

from anywhere

on the network.

Allow users to

self-register cards.

Integrates with

Authorized Send

for CAC/PIV

Allows credential

sharing between

applications for

authorized users

to improve

efﬁciency.

Federal agencies—both civilian and military (DoD)—require enhanced user authentication, data security, and

information assurance to help comply with the requirements of the Homeland Security Presidential Directive 12

(HSPD-12). Employees must verify their identity and security classiﬁcations using secure and reliable forms of

identiﬁcation, such as Common Access Card (CAC) and Personal Identity Veriﬁcation (PIV). And with networked

multifunction printers (MFPs) being deployed on a greater scale in these locations, Canon developed Advanced

Authentication CAC/PIV—an easy-to-use, two-factor embedded authentication solution to lock and unlock Canon

devices. This serverless solution ensures that all device functions are locked down until users insert their

government-issued Common Access Card/Personal Identity Veriﬁcation into the card reader and enter their

PIN. Only those authenticated individuals are granted access to the device.

For additional control over use of the device, Advanced Authentication CAC/PIV works with Canon’s Access

Management System (AMS) to facilitate role-based access control. After users insert their CAC/PIV to unlock

the device, the Main Menu presents the user with access only to the device functions they have been granted

permission to use. For example, some users may be permitted to copy and send documents from the device,

while others may only have copy privileges.

Canon provides a variety of control capabilities that Federal agencies can use to enhance their security and

increase productivity.

Does your agency

need to comply

with HSPD-12 or

integrate to a CAC/

PIV server to validate

user credentials?

Do you need to

prevent leaks and

restrict access to

your device?

Do you want to

simplify user log-in,

track device usage,

and increase

productivity?

Common Access Card/Personal Identity Veriﬁcation Solutions

ADVANCED AUTHENTICATION CAC/PIV

Secure, embedded solution

that validates credentials

before allowing access

to Canon multifunction

device functions.

Summary of content (2 pages)

PAGE 1
Common Access Card/Personal Identity Verification Solutions ADVANCED AUTHENTICATION CAC/PIV Secure, embedded solution that validates credentials before allowing access to Canon multifunction device functions.
PAGE 2
User inserts CAC/PIV in reader. User enters PIN. System authenticates user on the CAC/PIV Server to validate their credentials. After successful authentication, device functions are available for use. And with Canon’s AMS installed, users may only have access to specific functions on the device. SUPPORTED COMMON ACCESS CARD/PERSONAL IDENTITY VERIFICATION TYPES SUPPORTED CARD READERS Type Name Applet Type Platform End-State PIV Card PIV End-State + CAC v2 Oberthur ID One v5.