JP2016028477A - Information processing device, method for controlling the same, and program - Google Patents

Abstract

PROBLEM TO BE SOLVED: To improve convenience by reducing the number of times a user enters authentication information in a device configured such that accesses to a job and a resource can be restricted according to a logged-in user.SOLUTION: An image processing device 1004 determines whether execution of a selected function is permitted on the basis of setting information in which user type information 8001 containing real-name users and anonymous users is registered. When execution of a function selected by an anonymous user is inhibited, the image processing device displays a login screen asking for authentication by a user having the authority.SELECTED DRAWING: Figure 10

Description

  The present invention relates to an information processing apparatus such as a multifunction peripheral, a control method thereof, and a program for realizing the control method.

  In recent image processing apparatuses such as multifunction peripherals, there are many apparatuses configured to perform user authentication and restrict access to jobs and resources according to a logged-in user. In such an image processing apparatus, when a certain user performs an operation during login and execution authority for the operation is insufficient, an authentication screen is often displayed to prompt login by a different authorized user. .

  As such user session management, when logging in as a different user, all the information related to the user (for example, the user profile such as the user name and the user's mail address, and the user authority) is completely switched (hereinafter referred to as the user session management). There is a background art example 1). In this case, immediately before logging in as a different user, the user who has previously logged in is configured to be automatically logged out (see, for example, Patent Document 1).

  As other user session management, the user profile such as the user name and the user's email address is not switched among the already logged-in user information, and only the user authority is re-evaluated (hereinafter, Background Art Example 2). It is. As a re-evaluation method in this case, the authority of the user who has logged in later is often added to the user authority of logging in first.

Japanese Patent Laid-Open No. 11-25040

  FIG. 16 is a timing chart showing the user session management of the background art example 1 described above.

  An item 4001 in the figure represents a user profile such as a user name and a user's mail address that are actually applied in the user session. An item 4002 represents user authority. An item 4003 represents login user information stored in association with a user session by the image forming apparatus in order to determine the contents of the items 4001 and 4002. FIG. 17 is a tabular diagram showing the user profiles and user authority settings of user A and user B used in FIG.

  According to Background Art Example 1, user information is input on the login screen at time t401 and the user A logs in. User A is permitted to perform color copying according to the setting information shown in FIG. 17, and can execute color copying.

  Next, an attempt is made to execute the network management function at time t402. However, since user A is prohibited from performing the network management function, authentication with an authorized user is required. Here, by inputting the authentication information of the user B, the user A logs in as the administrator with the user B. At this time, the user profile 4001 is changed to the user B as 4021 and the user authority 4002 is changed to the user B authority as 4022.

  Next, when color copy is executed again at time t403, since user B is prohibited from performing color copy, authentication by a user with authority is required, and authentication information of user A needs to be input again. Be forced.

  Thus, Background Art Example 1 adopts a configuration in which a logged-in user is logged out when a new user logs in. In this configuration, since all information related to the user is switched, there is a case where a function that can be used as a certain user cannot be used when logging in as a different user. In order to be able to use a function that is no longer available, the user must log in again. As a result, there is a problem in that it is inconvenient because the user is asked to log in many times.

  FIG. 18 is a timing chart showing user session management according to Background Art Example 2.

  Reference numerals 6001 to 6003 in the figure represent the same meanings as reference numerals 4001 to 4003 in FIG. In the example of FIG. 18, user A and user B user profiles and user authority settings are the same as in the example of FIG.

  At time t601, user information is input on the login screen, and the user A logs in. User A is permitted to perform color copying as an available function according to the setting information in the example of FIG. 17, and can execute color copying.

  At the next time t602, the network management function is to be executed. However, since the user A is prohibited from performing the network management function, authentication with an authorized user is required. Here, by inputting the authentication information of the user B, the user A logs in as the administrator with the user B. At this time, the user profile 6001 remains the user A (see 6021 in FIG. 18), but the user authority 6002 is changed to allow all items that are permitted to the user A and the user B (6022 in FIG. 18). reference).

  If color copying is to be executed again at the next time t603, since the authority of the user A is valid, it can be executed again without displaying the authentication screen.

  As described above, in the background art example 2, in the case where permission is given by either the user who has logged in first or the user who has logged in later, the authority is re-evaluated so as to be permitted. For this reason, even if a function that can be used as a certain user is logged in as a different user, the function is not lost and convenience is improved.

  However, it is intuitive for the user whether the user profile such as the user name or the user's e-mail address remains the user profile of the previously logged-in user or switches to the user profile of the logged-in user later. Hateful.

  For example, it is assumed that there is an image processing apparatus that has an e-mail transmission function and automatically sets the log-in user's e-mail address as the sender address of the e-mail. When it is necessary to change a certain management setting item while logging in to the image processing apparatus as user A, and after changing the setting by logging in again as user B who is the administrator, It is difficult to determine which user B is automatically set. As a similar problem, user data that is charged as an unintended user print job, the sender name of the fax becomes an unintended name, personal data such as routine work and address book is not intended And so on.

  In view of the above-described conventional problems, an object of the present invention is to provide the following information processing apparatus, its control method, and program. In other words, in an apparatus configured to be able to restrict access to jobs and resources according to the logged-in user, the number of user authentication information inputs is reduced and convenience is improved.

  In addition, the user can easily determine whether the operation for executing the function is performed based on the user profile of the logged-in user.

  In order to achieve the above object, an information processing apparatus according to claim 1, in an information processing apparatus having a plurality of functions, performs personal authentication for authenticating an individual operator based on input of authentication information that can identify an individual. An authentication unit to perform, a selection unit to select one of the plurality of functions, an execution unit to execute the function selected by the selection unit, and before the execution unit executes the selected function, Setting means for setting each of the plurality of functions as to whether the selected function requires personal authentication by the authentication means or can be executed without personal authentication by the authentication means; And

  ADVANTAGE OF THE INVENTION According to this invention, the frequency | count of a user's authentication information input operation can be reduced and the convenience can be improved. In addition, the user can easily determine whether a predetermined function is executed based on user information regarding which user among the users who have logged in multiple times.

1 is a schematic diagram illustrating a configuration of a system in which an image processing apparatus according to an embodiment is used. It is a block diagram which shows the hardware constitutions of the image processing apparatus in FIG. It is a block diagram which shows the software structure of the image processing apparatus in FIG. It is a timing chart which shows user session management of a 1st embodiment. It is a figure which shows a login screen. It is a figure which shows the menu screen used in 1st Embodiment. It is a figure which shows the login screen displayed at the time of lack of authority used in 1st Embodiment. It is a figure which shows an execution user selection screen. It is a flowchart which shows the characteristic process which concerns on 1st Embodiment. It is a timing chart which shows user session management concerning a 2nd embodiment. FIG. 11 is a table format diagram showing settings of user profiles and user authority used in FIG. 10. It is a menu screen used in 2nd Embodiment. It is a figure which shows the login screen displayed at the time of lack of authority used in 2nd Embodiment. It is a figure which shows the error screen used by 2nd Embodiment. It is a flowchart which shows the process which concerns on 2nd Embodiment. 12 is a timing chart showing user session management in Background Art Example 1. It is a table format figure which shows the setting of the user profile and user authority which are used for FIG. 12 is a timing chart showing user session management in Background Art Example 2.

  Hereinafter, embodiments of the present invention will be described with reference to the drawings.

[First Embodiment]
<System configuration>
FIG. 1 is a schematic diagram showing a configuration of a system in which an image processing apparatus according to an embodiment of the present invention is used.

  This system includes a server PC (personal computer) 1000, a user information server device 1001, a ticket issuing server device 1002, a client PC 1003, and an image processing device 1004 (information processing device) connected on a network. Yes. This system is a print management system that restricts access to a user who uses a device and restricts job execution such as the number of prints. The user here includes an individual user, a department, an organization, and the like.

  In the server PC 1000, a system administrator utility operates to set and manage the system. In particular, the function restriction information (hereinafter referred to as ACE) of the user information server apparatus 1001 can be set. The user information server apparatus 1001 includes a user restriction such as a user ID and a password, and a function restriction information list (hereinafter referred to as an ACL) that is a set of ACEs indicating which functions are permitted for each user or each device in the system. ) Is held.

  The ticket issuing server device 1002 issues a ticket describing information about usable functions based on the ACL stored in the user information server device 1001. It is assumed that the client PC 1003 requires a login in order to clarify which user is using the client PC when the printer driver operates and the client PC is used.

  The image processing apparatus 1004 is, for example, a multi-function copying machine. The image processing apparatus 1004 not only has a function of copying a paper document but also a function of printing print data sent from an external printer driver, reads a paper document, and transmits the image data to an external file server or mail address. It also has a function (SEND function). Furthermore, it also has a function (remote copy function, facsimile function) etc. for transmitting data to other image processing apparatuses and printing with the destination image processing apparatus.

  ACT is an abbreviation for Access Control Token. The ACT 1005 describes information about functions that can be executed by the user in the image processing apparatus 1004 and function restriction information to the image processing apparatus 1004. The ACT 1005 is data having a role of transmitting such information from the server to the device. .

  The server PC 1000, the user information server device 1001, the ticket issuing server device 1002, and the client PC 1003 are connected by Ethernet (not shown), but are merely examples of the system. . The server PC 1000 other than the image processing apparatus 1004, the user information server apparatus 1001, the ticket issuing server apparatus 1002, and the client PC 1003 may all be configured by the same computer. Further, the server PC 1000, the user information server device 1001, the ticket issuing server device 1002, and the client PC 1003 may be mounted on the image processing device 1004, and only the image processing device 1004 may be configured.

<Hardware configuration of image processing apparatus>
FIG. 2 is a block diagram showing a hardware configuration of the image processing apparatus 1004 in FIG.

  The controller unit 2000 is connected to a scanner 2070 that is an image input device and a printer 2095 that is an image output device. On the other hand, the controller unit 2000 is connected to a network 1008 and a public line 1009 to input and output image information and device information. A CPU 2001 is a controller that controls the entire system. A RAM 2002 is a system work memory for the operation of the CPU 2001, and is also an image memory for temporarily storing image data. A ROM 2003 is a boot ROM, and stores a system boot program. An HDD 2004 is a hard disk drive that stores system software, applications, and image data.

  The operation unit I / F 2006 is an interface unit with the operation unit 2012 having a touch panel, and outputs image data to be displayed on the operation unit 2012 to the operation unit 2012. Also, it plays a role of transmitting information input by the user of the system from the operation unit 2012 to the CPU 2001. A network I / F 2010 is connected to the network 1008 and inputs / outputs information. The MODEM 2050 is connected to the public line 1009 and inputs / outputs information.

  The SRAM 2100 is a non-volatile recording medium that can operate at high speed. The RTC 2110 is a real-time clock, and performs a process of continuously counting the current time even when the controller unit 2000 is not powered on. The above devices are arranged on the system bus 2007.

  An Image Bus I / F 2005 is a bus bridge that connects a system bus 2007 and an image bus 2008 that transfers image data at high speed, and converts a data structure. The image bus 2008 is configured by a PCI bus or IEEE1394. The following devices are arranged on the image bus 2008.

  A RIP 2060 is a raster image processor, which develops a PDL code into a bitmap image. A device I / F unit 2020 connects an image input / output device such as a scanner 2070 and a printer 2095 to the controller unit 2000, and performs synchronous / asynchronous conversion of image data. A scanner image processing unit 2080 corrects, processes, and edits input image data. A printer image processing unit 2090 performs printer correction, resolution conversion, and the like on print output image data. The image rotation unit 2030 rotates image data. The image compression unit 2040 performs compression / decompression processing.

<Software configuration of image processing apparatus>
FIG. 3 is a block diagram showing a software configuration of the image processing apparatus 1004 in FIG.

  This software is installed in the controller unit 2000 built in the image processing apparatus 1004. Software built in the image processing apparatus 1004 and processed by the controller unit 2000 is implemented as so-called firmware, and is executed by the CPU 2001.

  The real-time OS 3001 is a real-time operating system, and provides various resource management services and frameworks optimized for controlling an embedded system for software operating on the system.

  The controller platform 3002 includes a file system 3003, a job / device control 3004, and a counter 3005. A file system 3003 is a mechanism for storing data constructed on a storage device such as the HDD 2004 or the RAM 2002. The job / device control 3004 controls the hardware of the image processing apparatus 1004, and jobs that use basic functions (printing, scanning, communication, image conversion, etc.) provided mainly by the hardware of the image processing apparatus 1004. Control. The counter 3005 manages the expiration date for each application and the print and scan counter values stored in the SRAM 2100.

  A system service 3006 is a module for monitoring the operating status of the image processing apparatus 1004 and downloading software and licenses from the software distribution server 1006 via the network 1008.

  The application platform 3007 is middleware for making the mechanisms of the real-time OS 3001 and the controller platform 3002 available from the system application 3008 and the addable application 3012. The system application 3008 includes application management 3009, user session management 3010, and access management 3011.

  The application management 3009 is a management module for installing, uninstalling, starting, and stopping the application 3012. The user session management 3010 is a module that independently manages user information related to a user who has logged in multiple times for each login. That is, it is a module that manages user profiles and user rights in accordance with user login / logout. The access management 3011 is a security module for permitting or prohibiting access to various jobs and resources based on the user authority of the user session management 3010.

  The application 3012 is application software that realizes various business models using the functions provided by the application platform 3007.

<User session management according to the first embodiment>
Next, user session management according to the first embodiment will be described with reference to FIG.

  FIG. 4 is a timing chart illustrating user session management according to the first embodiment.

  The user session management of this embodiment is executed by the CPU 2001 of the image processing apparatus 1004 as functions of the user session management 3010 and the access management 3011. Reference numerals 7001 to 7003 in FIG. 4 represent the same meanings as reference numerals 4001 to 4003 in FIG. The user profiles and user authority settings for user A and user B are the same as those shown in FIG.

  When the user inputs user information on the login screen (FIG. 5) at time t701 and logs in as user A, a menu screen (FIG. 6) is displayed on the operation unit 2012. A login user display area 9005 is arranged at the bottom of the main menu 9000. At this point, it is displayed that the function is being executed as the user A. The user A is permitted the color copy function according to the setting information in FIG. 17 and can execute the color copy function 9001.

  After completing the execution of the color copy function, the user selects 9002 to return to the menu, returns to the main menu 9000, and tries to execute the network management function 9003 at time t702. At this time, the access management 3011 determines that the user A is prohibited from executing the network management function. In response to this, the user session management 3010 displays a login screen (FIG. 7) for requesting user authentication with an authorized user.

  Here, the user logs in as the user B repeatedly by inputting the authentication information of the user B. At this time, the user session management 3010 changes the user profile 7001 to the user B as 7021 and the user authority 7002 to the user B authority as 7022. However, the information related to the user A is not discarded or changed, and is kept in the login user information 7003. In addition, the display of the login user display area 9005 is changed as follows. That is, it displays that the network management function is being executed as user B among users A and B who have logged in multiple times.

  After completing the execution of the network management function, the user selects 9002 to return to the menu, returns to the main menu 9000, and tries to execute the color copy function 9001 again at time t703. At this time, the access management 3011 determines that only the user A is permitted as a logged-in user. In response to this, the user session management 3010 sets the user profile 7001 to user A as 7023 and the user authority 7002 to 7024 based on the information related to the user A held in the login user information 7003. Change to A authority. In addition, the display of the login user display area 9005 is changed again as follows. That is, it displays that the network management function is being executed as the user A among the users A and B who have logged in multiple times.

  After completing the execution of the color copy function, the user selects 9002 to return to the menu, returns to the main menu 9000, and tries to execute the fax function 9004 at time t704. At this time, the access management 3011 determines that both the logged-in user A and user B are permitted. In response to this, the user session management 3010 displays an execution user selection screen (9060 in FIG. 8). It is assumed that the user selects, for example, user B as an execution user who is an executioner who executes the fax function 9004. In this case, the user session management 3010 performs the following processing based on the information related to the user B held in the login user information 7003. That is, the user profile 7001 is changed to the user B as 7025, and the user authority 7002 is changed to the user B authority as 7026 again. In addition, the display of the login user display area 9005 is changed again as follows. That is, it displays that the network management function is being executed as user B among users A and B who have logged in multiple times.

  On the other hand, when user A is selected as the user who executes the fax function 9004, none of the contents of the user profile 7001 and user authority 7002 and the display of the login user display area 9005 are changed.

<Characteristic processing according to the first embodiment>
Next, characteristic processing according to the first embodiment will be described with reference to FIG.

  FIG. 9 is a flowchart showing characteristic processing according to the first embodiment. This process is a process of automatically determining execution user information when selecting a function or according to user selection, and is executed by the CPU 2001 of the image processing apparatus 1004 as functions of the user session management 3010 and the access management 3011.

  When the user selects a function in step S121, the access management 3011 checks whether there are a plurality of logged-in users who are permitted to execute the selected function in the next step S122. If the number of users is not plural, the user session management 3010 automatically selects the only user permitted in step S123 as the execution user. Then, the process proceeds to next Step S126.

  If there are a plurality of logged-in users who are permitted to execute the selected function, the user session management 3010 displays an execution user selection screen (FIG. 8) in step S124. In step S125, the result selected by the user is received, and based on this, the execution user of the selected function is determined. Then, the process proceeds to next Step S126.

  From the above, the processing of the flow from step S122 to step S126 through step S123 is basically the following processing. That is, even if there are a plurality of logged-in users, if there is only one user who is permitted to execute the selected function, the user is not prompted to re-select from the list of logged-in users. The user is automatically selected as the execution user of the selected function.

  Next, the user session management 3010 determines whether or not the execution user determined by the above procedure in step S126 is the same as the current execution user. If they are the same, the process directly proceeds to step S129, and the application 3012 executes the selected function. If they are not the same, the user session management 3010 changes the user profile to the determined execution user in step S127, and further changes the user authority to the determined execution user in step S128. In step S129, the selected function is executed.

<Advantages of First Embodiment>
According to the present embodiment, in an apparatus configured to be able to restrict access to jobs and resources in accordance with the logged-in user, the number of user authentication information input operations is reduced, and convenience is improved. be able to.

  In addition, a login user display area is provided to display as which user the predetermined function is executed as a logged-in user. Thereby, the user can easily determine which of the logged-in users the operation for executing the function is performed based on the user profile.

[Second Embodiment]
Next, a second embodiment of the present invention will be described.

  The basic configuration of the second embodiment is the same as that described in FIGS. 1, 2, and 3 in the first embodiment. Hereinafter, a characteristic part of the second embodiment will be described.

<User session management according to the second embodiment>
FIG. 10 is a timing chart showing user session management according to the second embodiment of the present invention.

  The user session management of the present embodiment is executed by the CPU 2001 of the image processing apparatus 1004 as functions of the user session management 3010 and the access management 3011. Reference numerals 5001 to 5003 in FIG. 10 represent the same meanings as reference numerals 4001 to 4003 in FIG.

  FIG. 11 is a tabular diagram showing the user profiles and user authority settings for user A and user B used in FIG.

  The example shown in FIG. 11 is different from the example of FIG. 17 used in the first embodiment, and user type information 8001 indicating the user type (type) is registered as a user profile. The user type includes, for example, an anonymous user and a real name user. An anonymous user is a special user that is used by an unspecified number of people, and does not have user-specific elements such as user name information and mail addresses regarding the user's name. The real name user is a user having these user specifying elements.

  When the user inputs user information on the login screen (FIG. 5) and logs in as an anonymous user at time t801, a menu screen (FIG. 12) is displayed on the operation unit 2012. A login user display area 9015 is arranged at the bottom of the menu 9010, and it is displayed that the function is executed as an anonymous user at this point. The anonymous user is permitted the color copy function according to the setting information of FIG. 11 and can execute the color copy function 9011. Note that login by an anonymous user may be automatically performed when the image processing apparatus 1004 is activated.

  After completing the execution of the color copy function, the user selects 9012 to return to the menu, returns to the main menu 9010, and tries to execute the network management function 9013 at time t802. At this time, the access management 3011 determines that the anonymous user is prohibited from the network management function. Then, the user session management 3010 displays a login screen (9070 in FIG. 13) for requesting authentication by an authorized user. Here, the user logs in as the user B repeatedly by inputting the authentication information of the user B. At this time, the user session management 3010 changes the user profile 5001 to the user B as indicated by 5021 in FIG. 10, and changes the user authority 5002 to the items permitted for the anonymous user and the user B as indicated by 5022 in FIG. Change all permissions. At the same time, the login user display area 9015 is changed to display that the user B is being executed.

  After completing the execution of the network management function, the user selects 9012 to return to the menu, returns to the main menu 9010, and tries to execute the color copy function again at time t803. At this time, the access management 3011 determines that the color copy function is permitted with reference to the user authority 5002 shown in 5022 of FIG. As a result, it is possible to execute the color copy function without displaying the authentication screen again, and it is displayed that the login user display area 9015 is being executed as user B without being changed.

  After the execution of the color copy function again, the user selects 9012 to return to the menu, returns to the main menu 9010, and executes the fax function 9014 at time t804. At this time, the access management 3011 refers to the user authority indicated by 5022 in FIG. 10 and determines that the fax function 9014 is not permitted. At this time, the user session management 3010 displays an error screen (FIG. 14) notifying that the user cannot be changed. This is because the second embodiment prohibits further authentication when logging in as a real name user, and the user profile 5001 and the user authority 5002 are not changed.

  In addition, when entering user information on the login screen (FIG. 5), when logging in as user A who is a real name user and trying to execute the network management function 9013, an error screen notifying that the user cannot be changed (FIG. 14) is displayed.

<Characteristic Processing According to Second Embodiment>
Next, characteristic processing according to the second embodiment will be described with reference to FIG.

  FIG. 15 is a flowchart illustrating processing according to the second embodiment. This process is a process for determining whether to authenticate again according to the logged-in user type when the authority is insufficient, and is executed in the CPU 2001 of the image processing apparatus 1004 as functions of the user session management 3010 and the access management 3011. .

  When the user selects a function in step S131, the access management 3011 determines in step S132 whether the logged-in user is permitted to execute the selected function. If it is determined that it is permitted, the process proceeds to step S141, and the application 3012 executes the selected function. On the other hand, if it is determined that the user is not permitted, the user session management 3010 determines whether the logged-in user is an anonymous user in step S133. If it is not an anonymous user, the process proceeds to step S134, and an error screen (FIG. 14) is displayed.

  On the other hand, if it is determined that the logged-in user is an anonymous user, the process advances to step S135 to display a login screen (for example, 9070 in FIG. 13), and receives authentication information input from the user in step S136. In step S137, it is determined whether the received authentication information is correct. If the authentication information is not correct, the process returns to step S135, and the steps S135 and S137 are repeated. On the other hand, if the received authentication information is correct, the access management 3011 determines whether execution of the selected function is permitted for the authentication information received in step S138. If not permitted, the process returns to step S135 and the procedure from step S135 to step S138 is repeated.

  On the other hand, when execution of the selected function is permitted, the user session management 3010 overwrites the user profile with the newly logged-in user in step S139. In step S140, the user authority information is merged, and in step S141, the selected function is executed.

<Advantages of Second Embodiment>
Even when an anonymous user and a real name user are combined as a logged-in user, the same advantage as the first embodiment is obtained.

  The object of the present invention can also be achieved by executing the following processing. That is, a storage medium storing software program codes for realizing the functions of the above-described embodiments is supplied to a system or apparatus, and a computer (or CPU, MPU, etc.) of the system or apparatus is stored in the storage medium. This is a process of reading the program code.

  In this case, the program code itself read from the storage medium realizes the functions of the above-described embodiments, and the program code and the storage medium storing the program code constitute the present invention.

  Moreover, the following can be used as a storage medium for supplying the program code. For example, floppy (registered trademark) disk, hard disk, magneto-optical disk, CD-ROM, CD-R, CD-RW, DVD-ROM, DVD-RAM, DVD-RW, DVD + RW, magnetic tape, nonvolatile memory card, ROM or the like. Alternatively, the program code may be downloaded via a network.

  Further, the present invention includes a case where the function of the above-described embodiment is realized by executing the program code read by the computer. In addition, an OS (operating system) running on the computer performs part or all of the actual processing based on an instruction of the program code, and the functions of the above-described embodiments are realized by the processing. Is also included.

  Furthermore, a case where the functions of the above-described embodiment are realized by the following processing is also included in the present invention. That is, the program code read from the storage medium is written in a memory provided in a function expansion board inserted into the computer or a function expansion unit connected to the computer. Thereafter, based on the instruction of the program code, the CPU or the like provided in the function expansion board or function expansion unit performs part or all of the actual processing.

1003 Client PC
1004 Image processing apparatus 2001 CPU
2002 RAM
2003 ROM
2012 Operation unit

Claims (10)

In an information processing apparatus having a plurality of functions,
An authentication means for performing personal authentication for authenticating an operator based on input of authentication information for identifying an individual;
Selecting means for selecting one of the plurality of functions;
Execution means for executing the function selected by the selection means;
Whether the selected function requires personal authentication by the authentication means or can be executed without personal authentication by the authentication means before the execution means executes the selected function. Setting means for setting each of the functions of
An information processing apparatus comprising: Further comprising request means for requesting input of the authentication information based on the selection of the function set to require personal authentication by the authentication means by the selection means;
The requesting unit does not request input of the authentication information based on selection of a function set to be executable without personal authentication by the authentication unit by the selection unit. The information processing apparatus according to 1.   The information processing apparatus according to claim 1, wherein the authentication information is a user name or an e-mail address assigned to an individual operator.   The information processing apparatus according to claim 1, wherein one of the plurality of functions is a copy function.   The information processing apparatus according to claim 1, wherein one of the plurality of functions is a fax function.   The information processing apparatus according to claim 1, wherein one of the plurality of functions is a mail transmission function.   The information processing apparatus according to claim 1, wherein one of the plurality of functions is a network management function.   8. The apparatus according to claim 1, further comprising a determination unit that determines whether or not the individual operator authenticated by the authentication unit is permitted to use the function selected by the selection unit. The information processing apparatus according to item 1. In a control method of an information processing apparatus having a plurality of functions,
An authentication process for performing personal authentication for authenticating an operator based on input of authentication information that can identify an individual;
A selection step of selecting one of the plurality of functions;
An execution step of executing the function selected in the selection step;
Whether the selected function requires personal authentication in the authentication step or can be executed without personal authentication in the authentication step before the selected function is executed in the execution step. A setting process for setting each of a plurality of functions;
A method for controlling an information processing apparatus, comprising: A program for causing a computer to execute a control method for an information processing apparatus having a plurality of functions, wherein the control method for the method processing apparatus includes:
An authentication process for performing personal authentication for authenticating an operator based on input of authentication information that can identify an individual;
A selection step of selecting one of the plurality of functions;
An execution step of executing the function selected in the selection step;
Whether the selected function requires personal authentication in the authentication step or can be executed without personal authentication in the authentication step before the selected function is executed in the execution step. A setting process for setting each of a plurality of functions;
The program characterized by having.

Images