JP2016126478A - Device management system, control method thereof, and program - Google Patents

Abstract

PROBLEM TO BE SOLVED: To provide a device management system for managing a state of using a device.SOLUTION: When a device does not satisfy a predetermined use condition, a device management system restricts the use or some functions of the device, stores in advance a confirmation password generated by a management server, for requesting the management server for a release password for releasing the restricted state, outputs the generated confirmation password in response to an instruction from a user, and releases the restricted state by use of the release password for releasing the state received from the management server.SELECTED DRAWING: Figure 4

Description

  The present invention relates to a device management system, and a control method and program technology thereof.

  There is a business that takes inventory of company IT assets (mainly personal computers for personal use by employees) once a half year. For example, employees visually check business computers that are IT resources, and perform inventory by manually entering and registering the presence or absence of each business computer in the IT resource management system.

  Further, in order to further automate the manual input work, if it is a business personal computer connected to an in-house network environment, for example, as in Patent Document 1, information existing in the company is used using an IT asset management system. Inventory information (information such as model number and performance of personal computer, server, network device, peripheral device, installation location, introduction time, usage history, etc.) that is an inventory of assets that summarize the data of devices and their parts. Therefore, a mechanism for confirming whether or not a personal computer really exists is generally used.

  However, for business PCs that are used without being connected to the internal network environment, it is not possible to automatically collect inventory using the IT resource management system described above. In the situation where the above-mentioned IT resource management system cannot be used to check whether or not there exists, it is necessary for the employee to check visually, and automation is difficult.

  Therefore, at the present time, for business PCs that are not connected to the in-house network environment, employees manually collect inventory information and send the collected inventory information as an e-mail attachment. Information is collected.

  At that time, it is possible to continue to use an unconnected business computer without sending the collected inventory information attached to an e-mail. If the information is not sent via the Internet or if the sending of the inventory information is delayed, there will be a management problem such that it is not possible to confirm the existence of a business PC that is not connected to the in-house network environment within that period.

  It is also assumed that business PCs will be used inappropriately while presence confirmation is not possible, and for IT resource managers, use of business PCs that have not been confirmed will be temporarily prohibited until they can be confirmed. There is a need to do it.

JP 2002-56193 A

  An object of the present invention is to provide a mechanism in which a device that does not satisfy a predetermined use condition can restrict use or a part of functions of the device until the administrator can authenticate the device.

  The present invention provides a device management system for managing a usage status of a device, and the device restricts use or partial function of the device when the device does not satisfy a predetermined usage condition; A first storage means for storing a confirmation password generated by the management server for requesting the management server to notify the management server of a release password that can release the state restricted by the restriction means; The state is canceled using a confirmation password output unit that outputs the generated confirmation password from the first storage unit according to an instruction and a cancellation password that can be released from the management server. Limiting release means for performing, the management server, the release password to be notified to the device, A second storage unit that uniquely stores the confirmation password stored in the first storage unit, a confirmation password reception unit that receives the output confirmation password, and a second storage unit. Authentication means for authenticating the accepted confirmation password based on the registered confirmation password, and the authentication means uniquely associated with the accepted confirmation password when authenticated by the authentication means And a release password output means for outputting the registered release password to notify the device.

  The management server further includes an installer creating unit that creates an installer for installing the generated confirmation password in the device, and the created installer is executed in the device, whereby the first The confirmation password is stored in the storage means.

  In addition, the management server includes a MAC address receiving unit that receives a MAC address of the device to be installed, and an installer created by the installer creating unit by associating the received MAC address with the generated confirmation password And a registration means for registering the content in the storage.

  The release password output by the confirmation password output unit is output together with the MAC address of the device received by the MAC address reception unit.

In addition, the device further includes periodic execution means for automatically determining whether or not the device satisfies the predetermined use condition every predetermined period.
Further, the predetermined use condition includes a condition as to whether or not the device is used without being connected to the management server.

  According to the present invention, a device that does not satisfy a predetermined use condition can be provided with a mechanism that can restrict the use of the device or a part of functions until the administrator can authenticate.

It is a figure which shows the system configuration | structure of the whole asset management system of this invention. It is a figure which shows an example of the various information table which is a database respectively stored in the asset management server and client terminal of this invention. It is a figure which shows an example of the screen which the asset management server of this invention displays. It is a figure which shows an example of the screen which the client terminal of this invention displays. It is a figure which shows an example of the content of the mail transmitted to the asset management server from the client terminal of this invention. Moreover, it is a figure which shows an example of the content of the mail which the client terminal of this invention receives from an asset management server. It is a figure which shows an example of the flowchart of the program performed in the asset management server of this invention. It is a figure which shows an example of the flowchart of the program performed in the asset management system of this invention. It is a figure which shows an example of the flowchart of the program performed in the asset management system of this invention. It is a figure which shows an example of the flowchart of the program performed in the asset management system of this invention. It is a figure which shows the hardware constitutions of the client terminal and asset management server of this invention.

  Referring to FIG.

FIG. 1 is a system configuration diagram showing an example of the configuration of an asset management system (device management system) according to the present invention. The asset management system manages the usage status of various devices (electronic devices).
Note that the device that manages the usage status by the asset management system may be another electronic device such as a smartphone, an image forming apparatus, or a printing apparatus such as a printer.

FIG. 1 shows that an offline (not connected to the asset management server 101) client terminal 104 and an online (connected to the asset management server 101) client terminal 100 and the asset management server 101 are connected via a local area network (LAN). It becomes the composition which is done. Further, the client terminal 104 or the client terminal 100 has an inventory execution management DB 105 and a password management DB 106, and the asset management server 101 has an asset management DB 102 and a password management DB 103.
FIG. 2 will be described.

  FIG. 2-B is a diagram showing a data configuration of the password management DB 103. A release password 3001 to be notified to the device is stored in a manner uniquely associated with the confirmation password 2004 stored in the first storage unit (second storage unit). Registration is performed by the management server in S609.

FIG. 2-D is a diagram showing a data configuration of the password management DB 106. The confirmation password 2004 generated by the management server in S606 for requesting the management server to notify the management server of a release password that can be released from the state restricted by the restriction unit is stored (first storage unit).
FIG. 6 will be described.

FIG. 6 shows that a dedicated installer needs to be created in the asset management server 101 in advance and installed in the client terminal 104 or the client terminal 100 in order to use the present invention. It is a figure which shows the flow of.
In step S600, the asset management server 101 displays an installer creation screen (FIG. 3-A).

In step S601, it is determined whether the creation button 303 in the installer creation screen (FIG. 3-A) has been pressed. When the creation button 303 is pressed, step S602, which is the next process, is executed.
In step S602, it is determined whether or not a value is entered in the MAC address input field 301 in the installer creation screen (FIG. 3-A).
That is, here, the MAC address of the device, which is a unique value for each device, is received (MAC address receiving means).
In step S611, if it is determined in step S602 that the MAC address has not been input, the error POPUP screen 1 (FIG. 3-B) is displayed.

  In step S603, the password management DB 103 is searched using the value input in the MAC address input field 301 on the installer creation screen (FIG. 3-A) as a key.

In step S604, the password management DB 103 is searched using the value input in the MAC address input field 301 on the installer creation screen (FIG. 3-A) as a key to determine whether or not the MAC address value already exists.
In step S612, if the MAC address value already exists as a result of the determination in S604, the error POPUP screen 2 (FIG. 3-C) is displayed.
In step S605, a time variable is prepared, and a default value “0” is registered.
In step S606, a confirmation password and a cancellation password are automatically generated for the time variable using random numbers (alphanumeric characters and the number of digits are also random).
In step S607, “1” is added to the time variable.

  In step S608, it is determined whether or not the time variable has become “25”. If the time variable is not “25”, the process is repeated from the process of step S606. If the time variable is “25”, the next step, step S609, is executed.

  In step S609, the values input in the MAC address input field 301 on the installer creation screen (FIG. 3-A) are fixed, and a plurality of “time variables” 2002 and a plurality of “confirmation passwords” automatically generated in step S606 are displayed. ], A plurality of 2004 “cancellation passwords” 3001 are associated and newly registered in the password management DB 103.

  That is, here, the MAC address value accepted in S602 is registered in the installer created by the installer creation means in S610 in association with the confirmation password automatically generated in S606 (registration means).

In step S610, a script for installing the inventory management DB 105 and the password management DB 106 in the client terminal 104 or the client terminal 100 for the value input in the MAC address input field 301 on the installer creation screen (FIG. 3-A). Create an installer that includes
That is, here, an installer for installing the confirmation password generated in S606 on the device is created (installer creating means).
By creating the installer, the process in FIG. 6 is temporarily terminated.

Thereafter, the device created in S610 is obtained by the device corresponding to the MAC address value, and the created installer is executed on the device, whereby the confirmation password can be stored in the first storage unit.
FIG. 7 will be described.

  FIG. 7 is a diagram showing a processing flow when the client terminal 100 and the asset management server 101 are connected online or when the client terminal 104 and the asset management server 101 are offline and not connected.

The periodic execution unit of the device automatically executes the operation program every predetermined period (for example, one month) to determine whether or not the device satisfies a predetermined use condition.
In step S700, the client terminal 100 automatically displays a stocktaking screen (FIG. 4-A).

In step S <b> 701, an echo request is automatically transmitted from the client terminal 100 connected online to the asset management server 101 to the asset management server 101.
In step S702, the asset management server 101 receives the echo request transmitted from the client terminal 100.

In step S703, the echo request is received, and the asset management server 101 transmits a response message to the transmitted client terminal 100.
In step S704, the client terminal 100 receives the response message transmitted from the asset management server 101.
In step S705, it is determined whether a response message has been received from the asset management server 101.
In other words, the predetermined use condition includes a condition as to whether or not the device is used without being connected to the management server.

  The predetermined usage conditions are not limited to whether or not the device is used without being connected to the management server, and other conditions for limiting the use when the predetermined usage conditions are not satisfied. There may be.

In step S706, the process is performed when the response message is received in step S705. The client terminal 100 transmits the inventory information to the asset management server 101.
In step S707, the asset management server 101 receives the inventory information transmitted from the client terminal 100.
In step S708, the asset management server 101 searches the asset management DB 102 using the MAC address included in the inventory information as a key.
In step S709, the asset management server 101 determines whether the target MAC address exists as a result of the search in step S708.

  In step S710, the asset management server 101 performs processing when it is determined that the target MAC address does not exist as a result of the determination in step S709. The asset management server 101 stores the MAC address in the inventory data and the last update date in the asset management DB 102. New registration is performed with the target MAC address and inventory execution date and time.

In step S711, the asset management server 101 performs processing when the target MAC address exists as a result of the determination in step S709. Asset management is performed at the last update date and time in the inventory data using the MAC address in the inventory data as a key. The inventory execution date and time of the DB 102 is updated.
In step S <b> 712, the asset management server 101 transmits the inventory execution date and time as inventory completion information to the client terminal 100.
In step S713, the client terminal 100 receives the inventory completion information transmitted from the asset management server 101.
In step S714, the client terminal 100 overwrites and updates the reception date / time of the received inventory completion information with the inventory execution date / time of the inventory execution management DB 105.
Up to the above is the processing of the client terminal 100 connected online with the asset management server 101, and existence confirmation can be performed without any problem.

On the other hand, since the client terminal 104 and the asset management server 101 are not connected online, even if the echo request in step S701 is transmitted, the response message cannot be received. In step S705, the response message is received NG. End up.
In step S715, the client terminal 104 acquires the current date and time.
In step S716, the client terminal 104 acquires the inventory execution date and time and the inventory cycle registered in the inventory execution management DB 105.
In step S717, the client terminal 104 compares the result of adding the inventory execution date and time and the inventory cycle with the current date and determines which is greater.

  In step S718, the client terminal 104 performs processing when the result of adding the inventory execution date and the inventory cycle in step S717 is less than or equal to the current date and time, and hides the inventory execution screen (FIG. 4-A).

  In step S719, the client terminal 104 performs processing when the result of adding the inventory execution date and the inventory cycle is larger than the current date and time, and displays an inventory non-execution warning screen (FIG. 4-B).

In other words, this is a case where the device does not satisfy the predetermined use condition (cannot confirm existence due to unconnection), and restricts the use or partial function of the device (restriction means).
In step S720, the client terminal 104 determines whether the confirmation password generation button 402 on the inventory non-execution warning screen (FIG. 4-B) has been pressed.

  In step S721, the client terminal 104 performs processing when the confirmation password generation button 402 is pressed in step S720, and the corresponding confirmation is made from the password management DB 106 using the MAC address of the client terminal 104 and the time portion of the current time as keys. Get password for use.

In step S722, the client terminal 104 performs a process of outputting the confirmation password data in the output file. The contents of the confirmation password data in the output file are as shown in FIG.
That is, here, the confirmation password generated from the first storage means is output in accordance with an instruction from the user (confirmation password output means).

Here, the cancellation password output by the confirmation password output unit is output together with the MAC address of the device received by the MAC address reception unit in S602.
FIG. 8 will be described.
FIG. 8 is a diagram illustrating a flow of registering the cancellation password issued by the asset management server 101 and releasing the screen lock.
In step S723, the client terminal 104 displays a password input screen (FIG. 4-C).

  In step S724, the client terminal 104 determines whether the registration button 405 in the password input screen (FIG. 4-C) has been pressed. When the registration button 405 is pressed, the next process is executed. When the registration button 405 is not pressed, the password input screen (FIG. 4-C) remains displayed.

In other words, here, the restriction state is released using the password for releasing the restriction state notified to the other client terminals 100 by mail from the management server 101 (restriction release means).
In step S725, the client terminal 104 determines whether or not a value has been input to the cancellation password 404 in the password input screen (FIG. 4-C).

  In step S726, the client terminal 104 displays the error POPUP screen 2 (FIG. 4-D) and displays the password input screen (FIG. 4-C) again when the value is not registered in the processing of step S725. indicate.

  In step S <b> 727, the client terminal 104 acquires the corresponding release password from the password management DB 103 using the MAC address and time portion of the client terminal 104 as keys.

  In step S728, the client terminal 104 determines whether the value for the cancellation password 404 in the password input screen (FIG. 4-C) matches the cancellation password acquired in S727.

  In step S729, the client terminal 104 displays the error POPUP screen 2 (FIG. 4-E) and the password input screen (FIG. 4-C) again when it does not match in the process of step S728. To do.

In step S730, the client terminal 104 is a process in the case where there is a match in the process of step S728, and updates the inventory execution date and time of the inventory execution management DB 105 with the current date and time.
In step S731, the client terminal 104 hides the password input screen (FIG. 4-C).
The process of FIG. 8 which is the flow for releasing the screen lock is finished.
FIG. 9 will be described.

  In FIG. 9, a mailer (mail transmission / reception software) of the client terminal 100 connected online with the asset management server 101 requests the asset management server 101 to notify the asset management server 101, and the asset management server 101 manages the password for cancellation. It is a figure which shows the flow of a process until it receives from the server.

In step S800, the client terminal 100 attaches the output file in which the confirmation password created in step S722 is written to the mail, and transmits it to the asset management server 101.
In step S801, the asset management server 101 receives the output file transmitted from the client terminal 100 by mail.
In step S802, the asset management server 101 reads the output file attached to the mail received in step S801.
That is, here, the confirmation password output by the client terminal 104 is accepted (confirmation password acceptance means).
In step S803, the asset management server 101 determines whether the content of the output file read in step S801 is a correct configuration.
That is, here, the confirmation password received in S802 is authenticated based on the confirmation password registered in the second storage means (authentication means).

  In step S804, the asset management server 101 performs processing when it is determined in step S802 that the configuration is not correct, and automatically transmits a mail notifying that authentication has failed to the client terminal 100.

In step S805, the asset management server 101 performs processing when it is determined in step S802 that the configuration is correct. The password management DB 106 uses the “inventory time”, “MAC address”, and “confirmation password” in the confirmation password data as keys. Search for “Release Password”.
In step S806, the asset management server 101 determines whether the corresponding data has been acquired in step S805.

  In step S807, the asset management server 101 is a process performed when the corresponding data cannot be acquired in step S806. The asset management server 101 transmits an email notifying that authentication has failed to the client terminal 100.

  In step S808, the client terminal 100 receives the authentication failure mail transmitted from the asset management server 101. When the authentication failure mail is received, the lock release fails and the process ends.

In step S809, the asset management server 101 searches the asset management DB 102 using the MAC address portion 2003 in the read confirmation password data (FIG. 5-A) as a key.
In step S810, the asset management server 101 determines whether the target MAC address exists as a result of the search in step S809.

  In step S811, the asset management server 101 performs processing in the case where there is no presence in the determination in step S810, and the MAC address and inventory of the asset management DB 102 at the MAC address in the inventory information transmitted together with the output file and the last update date and time. Register the new date and time.

  In step S812, the asset management server 101 is a process in the case where it exists in the determination in step S810, and updates the inventory execution date / time of the asset management DB 102 with the last update date / time in the transmitted inventory data.

  In step S813, the asset management server 101 searches the password management DB 103 using the corresponding MAC address and inventory time as keys. The cancellation password acquired from the processing is automatically described in the mail, and is automatically transmitted to the client terminal 100 by mail.

When the authentication is performed by the authentication unit in S803, the registered cancellation password uniquely associated with the confirmation password received in S802 is output to notify the device (output the cancellation password). means).
In step S814, the cancellation password mail (FIG. 5-B) transmitted from the asset management server 101 is received.
The process of FIG. 9, which is a flow for receiving the release password, ends.

Thereafter, the restriction state can be released by inputting the password for cancellation notified here on the password input screen (FIG. 4-C) displayed on the client terminal 104, and for the administrator, the client terminal The existence confirmation of 104 is completed successfully.
FIG. 10 will be described.
FIG. 10 is a diagram illustrating a hardware configuration of the asset management server 101, the client terminal 104, and the client terminal 100.
In FIG. 10, reference numeral 401 denotes a CPU, which comprehensively controls each device and controller connected to the system bus 404.

  The ROM 403 or the external memory 411 includes a BIOS (Basic Input / Output System) or an operating system program (hereinafter referred to as an OS), which is a control program of the CPU 401, and functions necessary for realizing functions executed by each server or each personal computer. Various programs to be stored are stored.

Reference numeral 402 denotes a RAM that functions as a main memory, work area, and the like for the CPU 401. The CPU 401 implements various operations by loading a program or the like necessary for execution of processing from the ROM 403 or the external memory 411 to the RAM 402, and reading and executing the loaded program.
Reference numeral 405 denotes an input controller that controls input from a keyboard (KB) 409 or a pointing device such as a mouse (not shown).

  A video controller 406 controls display on the display unit 410. Note that the display unit 410 is not limited to a CRT, but may be another display such as a liquid crystal display. These are used by the administrator as needed. Further, the display unit may include a touch panel function in which the user specifies a target position in the display screen with a finger, a pen, or the like.

  Reference numeral 407 denotes a memory controller, which is a hard disk (HD), a flexible disk (FD), or a personal computer MCIA card slot for storing a boot program, various applications, font data, user files, editing files, various data, etc. via an adapter. Controls access to an external memory 411 such as a connected compact flash (registered trademark) memory.

  Reference numeral 408 denotes a communication I / F controller that is connected to and communicates with an external device via a network (communication line), and executes communication control processing in the network. For example, communication using TCP / IP is possible.

  Note that the CPU 401 enables display on the CRT, for example, by executing outline font rasterization processing on a display information area in the RAM 402. In addition, the CPU 401 enables a user instruction with a mouse cursor (not shown) on the CRT.

  Various programs to be described later for realizing the present invention are recorded in the external memory 411 and executed by the CPU 401 by being loaded into the RAM 403 as necessary. Further, a data file and a data table used when executing the program are also stored in the external memory 411, and detailed description thereof will be described later.

The program according to the present invention is a program that can be executed by the computer according to the flowcharts shown in FIGS. 6 to 9, and the storage medium according to the present invention stores the processing method as a program that can be executed by the computer in an external memory. Has been.

As described above, a recording medium that records a program that implements the functions of the above-described embodiments is supplied to a system or apparatus, and a computer (or CPU or MPU) of the system or apparatus stores the program stored in the recording medium. It goes without saying that the object of the present invention can also be achieved by executing reading.

In this case, the program itself read from the recording medium realizes the novel function of the present invention, and the recording medium storing the program constitutes the present invention.

As a recording medium for supplying the program, for example, a flexible disk, hard disk, optical disk, magneto-optical disk, CD-ROM, CD-R, DVD-ROM, magnetic tape, nonvolatile memory card, ROM, EEPROM, silicon A disk or the like can be used.

Further, by executing the program read by the computer, not only the functions of the above-described embodiments are realized, but also an OS (operating system) operating on the computer based on an instruction of the program is actually It goes without saying that a case where the function of the above-described embodiment is realized by performing part or all of the processing and the processing is included.

Furthermore, after the program read from the recording medium is written to the memory provided in the function expansion board inserted into the computer or the function expansion unit connected to the computer, the function expansion board is based on the instructions of the program code. It goes without saying that the case where the CPU or the like provided in the function expansion unit performs part or all of the actual processing and the functions of the above-described embodiments are realized by the processing.

The present invention may be applied to a system constituted by a plurality of devices or an apparatus constituted by one device. It goes without saying that the present invention can also be applied to a case where the invention is achieved by supplying a program to a system or apparatus. In this case, by reading a recording medium storing a program for achieving the present invention into the system or apparatus, the system or apparatus can enjoy the effects of the present invention.

Furthermore, by downloading and reading a program for achieving the present invention from a server, database, etc. on a network using a communication program, the system or apparatus can enjoy the effects of the present invention.
In addition, all the structures which combined each embodiment mentioned above and its modification are also included in this invention.

101 Asset management server 100 Client terminal (device in communication connection with asset management server)
104 Client terminal (device not connected to the asset management server)

Claims (8)

There is a device management system that manages device usage,
The device is
Restricting means for restricting the use or partial function of the device when the device does not satisfy a predetermined use condition;
First storage means for storing a confirmation password generated by the management server for requesting the management server to notify the management server of a release password that can be released from the state restricted by the restriction means;
A confirmation password output means for outputting the generated confirmation password from the first storage means according to an instruction from a user;
Limit release means for releasing the state using a release password that can release the state notified from the management server;
With
The management server
A second storage means for storing a release password to be notified to the device in association with a confirmation password stored in the first storage means;
A confirmation password receiving means for receiving the output confirmation password;
Authentication means for authenticating the accepted confirmation password based on the confirmation password registered in the second storage means;
When authenticated by the authentication means, a cancellation password output means for outputting the registered cancellation password uniquely associated with the received confirmation password to notify the device;
A device management system comprising: The management server
Further comprising installer creation means for creating an installer for installing the generated confirmation password in the device;
The device management system according to claim 1, wherein a password for confirmation is stored in the first storage unit by executing the created installer in the device. The management server
MAC address receiving means for receiving the MAC address of the device to be installed;
A registration unit that registers the received MAC address in the installer created by the installer creation unit in association with the generated confirmation password;
The device management system according to claim 2, further comprising:   4. The device management according to claim 1, wherein the release password output by the confirmation password output unit is output together with the MAC address of the device received by the MAC address reception unit. system. The device is
5. The apparatus according to claim 1, further comprising a periodic execution unit that automatically determines whether or not the device satisfies the predetermined use condition every predetermined period. Device management system.   The condition according to any one of claims 1 to 5, wherein the predetermined use condition includes a condition as to whether or not the device is used without being connected to the management server. The device management system described. There is a control method in a device management system for managing the usage status of devices,
The device is
When the device does not satisfy a predetermined use condition, the management server is requested to notify the management server of a release password that can release the state restricted by the restricting means for restricting the use or partial function of the device. And a first storage means for storing the confirmation password generated by the management server,
The limiting step of limiting by the limiting means of the device;
A confirmation password output step of outputting the generated confirmation password from the first storage means according to an instruction from a user by the confirmation password output means of the device;
A restriction releasing step for releasing the state by using a release password that can release the state notified from the management server by the device restriction releasing unit;
Including
The management server
A second storage means for storing the password for release notified to the device in association with the confirmation password stored in the first storage means;
A confirmation password accepting step for accepting the output confirmation password by the confirmation password accepting means of the management server;
An authentication step of authenticating the accepted confirmation password based on the confirmation password registered in the second storage means by the authentication means of the management server;
When authenticated in the authentication step by the release password output means of the management server, the registered release password uniquely associated with the accepted confirmation password is notified to the device A password output process for releasing the password to be output as much as possible;
The control method characterized by including. A program that can be read and executed by a device management system that manages the usage status of devices,
The device,
Restricting means for restricting the use or partial function of the device when the device does not satisfy a predetermined use condition;
First storage means for storing a confirmation password generated by the management server for requesting the management server to notify the management server of a release password that can be released from the state restricted by the restriction means;
A confirmation password output means for outputting the generated confirmation password from the first storage means according to an instruction from a user;
Limit release means for releasing the state using a release password that can release the state notified from the management server;
To function,
The management server
A second storage means for storing a release password to be notified to the device in association with a confirmation password stored in the first storage means;
A confirmation password receiving means for receiving the output confirmation password;
Authentication means for authenticating the accepted confirmation password based on the confirmation password registered in the second storage means;
When authenticated by the authentication means, a cancellation password output means for outputting the registered cancellation password uniquely associated with the received confirmation password to notify the device;
A program characterized by making it function.

Images