JP6409901B2 - Information processing apparatus, authentication method, program, and authentication system - Google Patents

Description

  The present invention relates to an information processing apparatus, an authentication method, a program, and an authentication system.

  In recent years, in an organization such as a company, an image forming apparatus (including a multifunction machine having a FAX function, a scanner function, a copy function, etc.) and a plurality of computer terminals are connected on a network and the image forming apparatus may be shared. Many are seen. In such an environment, it is necessary to maintain the confidentiality of the image data handled on the network. Further, since the image forming apparatus is shared and used by a plurality of users, it is desired to improve the use efficiency.

  For example, in the invention described in Japanese Patent Application Laid-Open No. 2004-222141 (Patent Document 1), at least a user name, a password, distribution information, and a user of the destination are included in each of the destinations distributed via the network in the network scanner device. Destination information storage means for setting and registering destination information consisting of other destinations that can be used, and user authentication based on the combination of the user name and password of the destination information storage means, and successful authentication by the user authentication A network scanner device that is permitted to be used only for the Internet is disclosed.

  However, in the invention disclosed in Patent Document 1, in order to transfer the image data of the read original document to the destination, when the transfer destination terminal is shared by a plurality of users, the image data is viewed by other people. there is a possibility.

  In the invention disclosed in Patent Document 1, the use of the network scanner device is permitted to all users who have been authenticated. Recent image forming apparatuses have a FAX function, a copy function, and the like in addition to the scanner function. If the free use of the image forming apparatus is permitted, the image forming apparatus may be used for an unexpected purpose. There is.

  The present invention has been made in view of such problems, and provides an information processing apparatus, an authentication method, a program, and an authentication system capable of maintaining the confidentiality of information. It is intended.

  The present invention employs the following configuration in order to achieve the above object.

The present invention is a management apparatus that is connected to an image forming apparatus via a network and controls user authentication processing of a user who uses the image forming apparatus, and identifies user identification information for identifying a user and a recording medium a user information storage unit that serial association with the recording medium identification information, the憶, receiving means for receiving the recording medium identification information which is pre-Symbol image forming apparatus has been recorded on the recording medium read, the recording was received Authentication control means for executing user authentication processing using medium identification information, wherein the authentication control means stores the received recording medium identification information in the user information storage unit, and in cooperation with the information holding device when the setting for performing the user authentication process is, it transmits the user identification information associated with the recording medium identification information to the user information holding device, prior to By receiving the authentication result of the user authentication process performed by the user information holding device, and performs the user authentication process.

  A method for causing the computer to execute each of the above means as a procedure, a program for causing the computer to execute each of the above means as functions, and a computer-readable storage medium storing the program can also be used.

  According to the present invention, since the use function of the image forming apparatus is restricted for each user, the security of management related to user information is enhanced, and the confidentiality of information can be maintained.

1 is a system configuration diagram of an image forming apparatus management system 10 in a first embodiment. FIG. 2 is a functional block diagram of an image forming apparatus 17 in the first embodiment. It is a functional block diagram of the management server 11 in 1st embodiment. It is a functional block diagram of the print server 16 in the first embodiment. 4 is a flowchart illustrating user authentication processing in the image forming apparatus management system 10. It is a flowchart explaining operation | movement of the personal menu process in the image forming apparatus 17 of 1st embodiment. It is a figure explaining the state of the display operation apparatus 172 when a personal menu process is selected. It is a system configuration | structure figure of 10 A of image forming apparatus management systems of 2nd embodiment of this invention. It is a functional block diagram of management server 11A of 2nd embodiment. It is a functional block diagram of AD server 13A of 2nd embodiment. It is a functional lineblock diagram of print server 16A of a second embodiment. FIG. 11 is a functional configuration diagram of an image forming apparatus 17A of a second embodiment. It is a functional block diagram of the management terminal 18 of 2nd embodiment. It is a figure explaining an IC card. It is a figure which shows an example of the setting screen which sets the kind of area | region which reads information. It is a figure which shows the example by which the area | region setting information generation screen which produces | generates the area | region setting information of IC card A was displayed. 14 is a flowchart for explaining the operation of the plug-in 180 in the image forming apparatus 17A. The figure which shows the example of the list | wrist of the area | region setting information displayed on the display operation apparatus. It is a flowchart explaining the login process in 2nd embodiment. It is a figure which shows an example of the display screen in 17 A of image forming apparatuses of 2nd embodiment. It is a flowchart explaining registration and deletion of user information in management server 11A of a 2nd embodiment. FIG. 10 is a system configuration diagram of an image forming apparatus management system 20 according to a third embodiment. It is a figure explaining the structure of the image forming apparatus 17a, the operation terminal 21, and the IC card reader 174a. FIG. 10 is a system configuration diagram of an image forming apparatus management system 30 according to a fourth embodiment. It is a figure explaining the structure of the laser printer 17b, the control terminal 31, the setting terminal 32, and the IC card reader 174b. FIG. 4 is a diagram for explaining a state of an LED indicating a state of the image forming apparatus management system 30 in the display unit 313. It is a figure explaining the state of LED which shows the state of the 2nd print server when multiple print servers 16 are connected in a 4th embodiment. It is a figure explaining the recording medium with which the program which implement | achieves each function of the management servers 11 and 11A demonstrated in each embodiment was recorded. It is a figure explaining the recording medium with which the program which implement | achieves each function of the image forming apparatuses 17, 17A, and 17a demonstrated by each embodiment was recorded.

The management apparatus and the image forming apparatus management system of the present invention acquire use restriction information related to use of the image forming apparatus corresponding to the acquired user identification information, and execute processing in the image forming apparatus based on the use restriction information. Is.
(First embodiment)
A first embodiment of the present invention will be described below with reference to the drawings.

  FIG. 1 is a system configuration diagram of an image forming apparatus management system 10 according to the first embodiment of the present invention. The image forming apparatus management system 10 has a configuration in which a management server 11, an Active Directory server (hereinafter referred to as an AD server) 13, a user terminal 15, a print server 16, and an image forming apparatus 17 are connected via a network.

  In the image forming apparatus management system 10, user identification information acquired by the image forming apparatus 17 is transmitted to the management server 11. The management server 11 acquires use restriction information in the image forming apparatus 17 for each user based on the user identification information. Then, the management server 11 transmits the acquired use restriction information to the image forming apparatus 17. The image forming apparatus 17 receives the use restriction information and performs control related to the use of the image forming apparatus 17 for each user.

  The management server 11 is a management device that manages user information and controls related to use of the image forming apparatus 17. Details of the management server 11 will be described later. The AD server 13 holds user ID information for identifying the user of the image forming apparatus 17. Here, the user ID information held in the AD server 13 may be registered in advance by the administrator or the user of the image forming apparatus management system 10 using the user terminal 15 or the like.

  The management server 11 selects whether or not to perform user authentication processing based on the user ID information held in the AD server 13 in the user authentication processing for permitting the user to use the image forming apparatus 17 according to the setting of the management server 11. Is possible.

  The user terminal 15 selects a document to be printed in the image forming apparatus 17 and performs a print instruction, and is a computer having a CPU, a memory, and the like. In the user terminal 15, various setting conditions of the management server 11 can be changed using a browser. The print server 16 temporarily holds a print job, which is a print processing command transmitted from the user terminal 15 and executed by the image forming apparatus 17. Details of the print server 16 will be described later.

  The image forming apparatus 17 is a multi function peripheral capable of realizing a FAX function, a scanner function, a copy function, a print function, and the like. The image forming apparatus 17 has an IC card reader, and the IC card reader acquires IC card identification information that is information unique to the IC card.

  Details of the image forming apparatus 17, the management server 11, and the print server 16 will be described below with reference to FIGS.

  FIG. 2 is a functional block diagram of the image forming apparatus 17 in the present embodiment. The image forming apparatus 17 includes a control unit 171, a display operation device 172, a recording device 173, an IC card reader 174, an information format conversion unit 175, a communication unit 176, an execution processing history storage unit 177, an individual information storage unit 178, and a password generation unit. 179.

  The control unit 171 performs execution of processes for realizing various functions such as the above-described FAX function, scanner function, copy function, and print function, and controls these processes. The display operation device 172 operates the image forming device 17 and is, for example, a numeric keypad or an operation panel. The display operation device 172 is preferably provided with a display unit that displays the state of the image forming device 17, a column of processing executed by the image forming device 17, and the like so that the user can view it.

  The recording device 173 records setting values of the image forming device 17, image data read by the image forming device 17, electronic documents, and the like. The IC card reader 174 acquires IC card identification information unique to the IC card recorded on the IC card owned by the user. In this embodiment, the IC card reader 174 is a non-contact type IC card reader that can acquire IC card information without contacting the IC card. However, the IC card information is acquired by contacting the IC card. It may be a contact type IC card reader. In this embodiment, the IC card reader 174 is included in the image forming apparatus 17. However, the IC card reader 174 may be connected to the outside of the image forming apparatus 17 by an appropriate connection method.

  The information format conversion unit 175 performs conversion control of the format of the IC card identification information acquired by the IC card reader 174. For example, the IC card used in the present embodiment is a Felica (registered trademark) card, and the IC card identification information acquired from the IC card reader 174 is information in a format corresponding to Felica (registered trademark). The IC card identification information used in the processing executed in the present embodiment is IC card identification information having a Felica (registered trademark) card format.

  Here, for example, when the IC card used is not a Felica (registered trademark) card, the format of the IC card identification information of the used IC card is different from the IC card identification information possessed by the Felica (registered trademark) card. It is possible. In such a case, the information format conversion unit 175 converts a format of the IC card identification information acquired from the IC card into, for example, a format similar to the IC card identification information of the Felica (registered trademark) card. It may be executable.

  The communication unit 176 communicates with the management device 11 and the user terminal 15. The execution process history storage unit 177 records a history of processes executed in the image forming apparatus 17. The execution process history storage unit 177 may be provided in the recording device 173. In the execution process history storage unit 177, the history of the process executed in the image forming apparatus 17 is recorded in association with, for example, the user identification information and the type of process, and is executed with the user identification information and the type of process. The history of processing can be searched. The search result may be displayed on the display unit provided in the display operation device 172 so that the user can browse.

  The execution process history storage unit 177 stores, for example, a print function execution history, a user ID of a user who uses the image forming apparatus 17, a name given to the image forming apparatus 17, a time when a process to be executed is received, a process Is stored, and information such as the number of pages of the electronic document or image data processed by the image forming apparatus 17 is stored.

  Here, the execution process history stored in the execution process history storage unit 177 is periodically uploaded to the management server 11 via the communication unit 176 and held in the management server 11.

  The individual information storage unit 178 stores individual information for each user. This individual information is, for example, setting information for each user in the image forming apparatus 17, an address book, image data processed by the image forming apparatus 17, processed electronic data, and the like. The individual information is information corresponding to the user identification information, and is read when the “personal menu” described later is selected in the image forming apparatus 17. When the “personal menu” is selected in the image forming apparatus 17 and the individual information is read, the control unit 171 executes processing in the image forming apparatus 17 based on the individual information. The individual information storage unit 178 may be provided in the recording device 173.

  The password generation unit 179 generates a password according to a specific algorithm based on the user identification information, and the password once generated here is stored in the individual information storage unit 178.

  In the image forming apparatus 17, for example, an information format conversion unit 175, an execution processing history storage unit 177, an individual information storage unit 178, and a password generation unit 179 are recording media in which applications that realize the functions of the respective units can be detached from the image forming apparatus 17. May be recorded. In this case, the image forming apparatus 17 is preferably provided with a recording medium reading unit that reads the recording medium, and the image forming apparatus 17 reads and executes the application recorded on the recording medium, thereby executing the above-described units. This function may be realized. Further, this recording medium may be, for example, an SD (Secure Digital) memory card.

  FIG. 3 is a functional block diagram of the management server 11 in the present embodiment. The management server 11 includes a user information storage device 120, a control unit 111, a use restriction information acquisition unit 112, a display device 113, and a communication unit 114.

  In the user information storage device 120, IC card identification information 121, user ID information 122, and use restriction information 123 are stored in advance as user information. The IC card identification information 121 is obtained in advance from the IC card identification information acquired by the IC card reader 174. The user ID information 122 is information linked to the IC card identification information 121, and is extracted by the control unit 111 based on the IC card identification information 121. In the present embodiment, the user identification information indicates information in which the IC card identification information 121 and the user ID information 122 corresponding to the IC card identification information 121 are combined.

  The use restriction information 123 indicates functions or setting conditions that can be used by the user in the image forming apparatus 17, and is information corresponding to the user ID information 122. Specifically, the use restriction information includes, for example, whether or not the scan function of the image forming apparatus 17 can be used, whether or not the FAX function can be used, whether or not the monochrome printing function can be used, and whether or not the color printing function can be used. In the image forming apparatus 17 according to the present embodiment, for example, the user A is permitted to use the scan function, the FAX function, the monochrome printing function, and the color printing function based on the use restriction information, and the user B is allowed to use the scanning function. In other words, it is possible to perform control such as permitting use of only the print function. These pieces of information held in the user information storage device 120 are registered in advance by, for example, an administrator of the image forming apparatus management system 10 or a user.

  The control unit 111 is responsible for controlling processing executed in the management server 11. The usage restriction information acquisition unit 112 acquires the usage restriction information 123 held in the user information storage device 120. The display device 113 displays information related to the state of the image forming apparatus management system 10, such as the state of the management server 11 and the state of other devices connected to the management server 11. The display device 113 may be, for example, a liquid crystal panel provided in the management server 11 or a liquid crystal display connected to the outside of the management server 11 by an appropriate means. The communication unit 114 communicates with the print server 16 and the image forming apparatus 17.

  FIG. 4 is a functional block diagram of the print server 16 in the present embodiment. The print server 16 includes a print command holding unit 161, a print control unit 162, and a communication unit 163. The print command holding unit 161 temporarily holds a print job that is a print processing command transmitted from the user terminal 15. When the user issues a print instruction at the user terminal 15 or the image forming apparatus 17, the print control unit 162 transmits the print job held in the print command holding unit 161 to the image forming apparatus 17, and the image forming apparatus 17. The print job is executed at. The communication unit 163 performs communication between the management server 11 and the image forming apparatus 17.

  In the print server 16 of this embodiment, for example, when a plurality of image forming apparatuses are connected to the image forming apparatus management system 10, the image forming apparatus that is the transmission destination of the print job held in the print command holding unit 161. Can be selected. For example, when another process is being executed by one image forming apparatus among a plurality of image forming apparatuses, the print control unit 162 avoids this image forming apparatus, selects another image forming apparatus, and selects this image. A print job can be executed promptly in the forming apparatus.

  In addition, up to four print servers 16 can be connected to one image forming apparatus. By connecting a plurality of print servers in this way, a large number of print jobs can be held in the print server. Further, as described above, the print server according to the present embodiment can select an image forming apparatus that is ready to execute a print job and execute the print job, thereby increasing the load on the image forming apparatus. A print job that is held without being executed can be promptly executed. For example, even when one of a plurality of print servers fails, the print server can be repaired, repaired, or inspected without stopping the operation of the entire image forming apparatus management system by operating another print server. It can be carried out.

  Next, user authentication processing in the image forming apparatus management system 10 will be described with reference to FIG. FIG. 5 is a flowchart for explaining user authentication processing in the image forming apparatus management system 10.

  The image forming apparatus 17 acquires the IC card identification information from the IC card reader 174 and transmits the IC card identification information acquired by the communication unit 176 to the management server 11. When the management server 11 receives the IC card identification information from the communication unit 114, the control unit 111 searches for the IC card identification information 121 in the user information storage device 120 based on the IC card identification information. Then, it is determined whether the corresponding IC card identification information is held in the IC card identification information 121 (S51).

  When the acquired IC card identification information is held in the IC card identification information 121, the control unit 111 next extracts the user ID corresponding to the acquired IC card identification information from the user ID information 122. Then, it is determined whether or not the management server 11 is set to perform user authentication processing using the AD server 13 (S52).

  In S52, when it is set to perform the user authentication process using the AD server 13, the control unit 111 accesses the AD server 13 and is extracted in the user ID information held in the AD server 13. It is confirmed whether the user ID exists (S53).

  Here, if the corresponding user ID exists in the AD server 13, the control unit 111 authenticates the user (S54). In S52, when the management server 11 is not set to perform user authentication processing using the AD server 13, the control unit 111 is the time when the user information corresponding to the user information storage device 120 is held in S51. It is determined that the user has been authenticated.

  In S53, when the user ID existence confirmation process by the AD server 13 results in an error, the control unit 111 performs the operation of the image forming apparatus 17 on the user ID based on the use restriction information 123 corresponding to the corresponding user ID. It is determined whether or not the use is permitted (S55). Here, when the user ID is permitted to be used, the control unit 111 assumes that the user is authenticated. When the user ID is not permitted to be used, the control unit 111 determines that the login process has failed and ends the user authentication process (S56).

  When the user authentication process is performed in S <b> 54, in the management server 11, the control unit 111 acquires use restriction information corresponding to the authenticated user from the use restriction information 123 by the use restriction information obtaining unit 112. Then, the control unit 111 transmits the acquired use restriction information to the image forming apparatus 17 by the communication unit 114.

  In the image forming apparatus 17, the control unit 171 receives the use restriction information and controls the processing of the image forming apparatus 17 so as to realize only the functions that can be used by the authenticated user.

  Next, personal menu processing executed by the image forming apparatus 17 described above will be described with reference to FIGS. The “personal menu” in the present embodiment is a name of a function that can be used only by a user whose user ID and password are registered in advance in the image forming apparatus 17. Functions that can be executed in the “personal menu” include, for example, access to image data and electronic documents stored for each user in the image forming apparatus 17, browsing, use of individual user address books, browsing of individual mail documents Etc. Further, when the personal menu is selected, the user can customize the display on the display unit provided in the display operation device 172 and the setting state of the image forming device 17 individually. Further, the personal menu processing here refers to processing executed by the image forming apparatus 17 when this personal menu is selected.

  FIG. 6 is a flowchart for explaining the operation of the personal menu process in the image forming apparatus 17 of the present embodiment. FIG. 7 is a diagram for explaining the state of the display operation device 172 when the personal menu process is selected. FIG. 7A shows the state of the display operation device 172 before login to the personal menu. (B) shows the state of the display operation device 172 after login to the personal menu.

  In the image forming apparatus 17, when the user places the IC card on the IC card reader 174, the user authentication process described with reference to FIG. 5 is executed (S61). Here, the image forming apparatus 17 is in a state where it cannot be operated by the display operation device 172 until user authentication is performed (hereinafter, this state is referred to as a hard key lock).

  When the user is authenticated in S61 and the user is permitted to use the image forming apparatus 17, the control unit 171 releases the hard key lock state (S62). Then, based on the user usage restriction information transmitted from the management server 11, the control unit 171 transitions the state of the image forming apparatus 17 to a state in which a function usable by the user can be executed (S63).

  When the execution of the “personal menu” process is selected by the user (S64), the control unit 171 displays “personal” on the display unit provided in the display operation device 172 as shown in FIG. It is displayed that “menu” has been selected (S65). The “it function” in FIGS. 6 and 7 is a generic name for the function of directly transmitting and receiving information via the network in the image forming apparatus. In this embodiment, the function that can be realized by the personal menu processing is also the “it function”. To be included.

  Next, the control unit 171 of the image forming apparatus 17 performs login processing to the personal menu (S66). In the image forming apparatus 17, a password is generated by the password generation unit 179 based on the user ID extracted by the IC card identification information in S 61. At this time, the image forming apparatus 17 holds a user ID registered in advance by the user and a password generated by the password generation unit 179 based on the user ID.

  The control unit 171 determines whether or not the stored user ID and password match the user ID acquired in S61 and the password generated from the user ID (S67).

  If the corresponding user ID is not held in the image forming apparatus 17 in S67, the control unit 171 determines that the user is not newly registered, displays the user registration screen on the display operation device 172, and displays the user registration screen. The process proceeds to the registration process (S68).

  If the password is invalid in S67, the control unit 171 locks the hard keys other than the on-demand key of the display operation device 172 (S69). Here, the on-demand key is one of the operation units arranged in the display operation device 172, and is used to issue a print instruction to a print job already held in the image forming device 17. This is the operation key.

  The password fraud that occurs in the image forming apparatus 17 is an initial password required for logging in to the personal name menu. When the user changes the password generated by the password generation unit 179 to a password unique to the user. Occur. Therefore, the control unit 171 displays a touch panel screen or the like on which the password can be input on the display / operation device 172, and displays that it is necessary to input the changed password (S70). In S70, when the correct password is input by the user, the control unit 171 releases the hard key lock state according to the use restriction information (S71), and is registered in the image forming apparatus 17 again and registered in advance. The process returns to the process of determining whether the ID, the changed password, the user ID acquired in S61 and the password input in S70 match.

  If the login process results in an error for some reason in S67, the control unit 171 erases that the “personal menu” displayed on the display operation device 172 in S65 has been selected (S72). Then, the control unit 171 displays on the display / operation device 172 that an error has occurred in the login process to the personal menu (S73).

  Thereafter, the control unit 171 controls the image forming apparatus 17 to realize a function that can be used in a state where the user is not logged in to the personal menu based on the use restriction information.

  In S67, when the user ID and the password held in the image forming apparatus 17 match the user ID acquired in S61 and the password generated from the user ID, the control unit 171 displays the personal menu of the user. It is assumed that the login is successful, and the individual information corresponding to the user ID is acquired from the individual information storage unit 178. Then, based on the individual information, the control unit 171 restricts setting conditions related to the use of the image forming apparatus 17 (S74).

  Next, the control unit 171 enables the operation keys used when the personal menu function of the display operation device 172 is used (S75), and the “personal menu” displayed on the display operation device 172 in S65 is selected. The fact is deleted (S76). Then, the control unit 171 displays on the display / operation device 172 that the user can view the password information generated by the password generation unit 179 (S77). Thereby, the login process to the personal menu in the image forming apparatus 17 is completed, and the personal menu for each user is displayed on the display operation apparatus 172 as shown in FIG.

  In the present embodiment, in the image forming apparatus 17, a user name corresponding to the registered user ID may be registered, or the user name may be displayed on a screen immediately after the user login is completed.

  If the execution of the “personal menu” process is not selected by the user in S64, the control unit 171 controls the image forming apparatus 17 based on the use restriction information acquired from the management server 11 in S61 (S79). As a result, the user can use the image forming apparatus 17.

  In addition, the password information that can be viewed by the user displayed on the display operation device 172 in S77 is the initial password generated by the password generation unit 179, or when the initial password is changed to the user's own password. Information related to setting change. In the present embodiment, it may be possible to change from the screen of the display operation device 172 in S77 to a setting screen for changing a password, and if the user has already changed the password, the initial password is changed again. You may change to a screen that can be notified to the user. Further, when the password is notified to the user, the displayed password may be automatically deleted when a predetermined time has elapsed after the password is displayed on the display operation device 172.

  As described above, in the first embodiment of the present invention, the user identification information is managed by the management server, and the usable functions of the image forming apparatus are limited based on the user identification information. As for the user information held in the user information, the security of the management of the user information is strengthened, and the confidentiality of the information can be maintained.

  In addition, since only the restrictions that can be used for each user are used, useless processing is not executed in the image forming apparatus, and usage efficiency is high. In addition, since the user ID is acquired by the non-contact type IC card, it is not necessary to input the user ID every time the user logs in, and the operability can be improved. In addition, since the password generation unit that generates the password from the user ID does not need to be retained, it is possible to prevent the password from leaking even if the information related to the user identification information leaks.

  Further, according to this embodiment, it is possible to cope with a case where the type of IC card is changed and the format of the IC card identification information is changed.

  In addition, according to the present embodiment, the processing executed by the image forming apparatus is classified and recorded for each user identification information or for each type of processing executed. Easy to grasp.

Furthermore, in this embodiment, since the state of the entire image forming apparatus management system can be displayed so that the user can browse, it is easy to grasp the operation of the entire system and the state of each connected device. .
(Second embodiment)
A second embodiment of the present invention will be described below with reference to the drawings. The second embodiment is an improvement of the first embodiment. In the description of the second embodiment, the same reference numerals as those used in the description of the first embodiment are given to those having the same functional configuration as the first embodiment, and the description thereof is omitted.

  FIG. 8 is a system configuration diagram of an image forming apparatus management system 10A according to the second embodiment of the present invention. The image forming apparatus management system 10A includes a management server 11A, an AD server 13A, a user terminal 15, a print server 16A, an image forming apparatus (MFP) 17A, and a management terminal 18 that controls the management server 11A connected via a network. Composed.

  Hereinafter, each device constituting the image forming apparatus management system 10A of the present embodiment will be described.

  FIG. 9 is a functional configuration diagram of the management server 11A of the second embodiment.

  The management server 11A can be realized, for example, by installing a program for the management server 11A in a general computer having an arithmetic processing unit and a storage device. Each unit included in the management server 11A described below indicates a function realized by this program.

  The management server 11A includes a user information management unit 130, a print job deletion instruction unit 140, a print order change unit 150, and a user information update file acquisition unit 160 in addition to the units included in the management server 11 of the first embodiment.

  The user information management unit 130 includes a user information registration unit 132, a user information deletion unit 133, and a user information update unit 134.

  The user information registration unit 132 registers user information in the user information rating device 120. The user information deletion unit 133 deletes user information from the user information storage device 120. The user information update unit 134 updates user information stored in the user information storage device 120 based on user information update information described later.

  The print job deletion instruction unit 140 generates a print job deletion instruction for deleting the print jobs stored in the print server 16A at once. The print order change instruction unit 150 generates an execution order change instruction for changing the execution order of print jobs stored in the print server 16A.

  The user information update file acquisition unit 160 acquires an update file for updating user information stored in the user information storage device 120. The update file may be created by another device connected to the management server 11A via a network, for example. In this case, the management server 11A can obtain the update file by downloading it. The update file may be created by a general computer not connected to the management server 11A, for example, and recorded on a recording medium. In this case, the management server 11A can acquire the update file by reading the update file from the recording medium.

  Next, the AD server 13A of this embodiment will be described with reference to FIG. FIG. 10 is a functional configuration diagram of the AD server 13A of the second embodiment.

  The AD server 13A includes an authentication information storage unit 135 and an authentication processing unit 138. The authentication information storage unit 135 is associated with the IC card identification information 121, the user identification information 136 that is a set of user ID information 122 corresponding to the IC card identification information 121, and the user ID information 122. Password 137 is stored. The user identification information 136 is registered and stored in advance by, for example, a system administrator. The authentication processing unit 138 performs authentication processing for determining whether the user identification information stored in the authentication information storage unit 135 is valid and authenticating the user.

  Next, the print server 16A of this embodiment will be described with reference to FIG. FIG. 11 is a functional configuration diagram of the print server 16A according to the second embodiment.

  The print server 16A includes a print job deletion unit 164 and a print order change unit 165 in addition to the units included in the print server 16 of the first embodiment. In response to the print job deletion instruction from the management server 11A, the print job deletion unit 164 collectively deletes the print jobs held in the print command holding unit 161. In response to a print order change instruction from the management server 11A, the print order change unit 165 changes the execution order of the print jobs held in the print command holding unit 161.

  Next, the image forming apparatus 17A of the present embodiment will be described with reference to FIG. FIG. 12 is a functional configuration diagram of the image forming apparatus 17A of the second embodiment.

  The image forming apparatus 17A of the present embodiment can read information recorded in an arbitrarily set area when reading information from the IC card. The image forming apparatus 17A includes an arithmetic processing device and a storage device, and realizes the functions of each unit described below by causing the arithmetic processing device to execute a program for the image forming device 17A.

  The image forming apparatus 17 </ b> A includes an area setting information acquisition unit 181, an area setting unit 182, and a card reader control unit 183 in addition to the units included in the image forming apparatus 17 of the first embodiment.

  In the present embodiment, the area setting information acquisition unit 181, the area setting unit 182, the card reader control unit 183, and the information format conversion unit 175 included in the image forming apparatus 17 </ b> A constitute a plug-in 180. The plug-in 180 may be downloaded from, for example, a device connected to the image forming device 17A via a network. The plug-in 180 may be recorded on a recording medium such as a USB memory. The image forming apparatus 17A is preferably provided with, for example, a USB memory stick insertion slot. In the image forming apparatus 17A, the function of the plug-in 180 may be realized by reading and starting the plug-in 180 recorded on the recording medium.

  Below, each part which comprises the plug-in 180 is demonstrated. The area setting information acquisition unit 181 acquires area setting information generated by the management terminal 18 described later. The region setting unit 182 performs region setting based on the region setting information acquired by the region setting information acquisition unit 181. Specifically, the area setting unit 182 stores the acquired area setting information in the area setting information storage unit 184 of the recording device 173.

  The card reader control unit 183 controls reading of information by the IC card reader 174. The IC card reader 174 reads the information of the set area by referring to the area setting information storage unit 184 when reading the information of the IC card.

  The information format conversion unit 175 is as described in the first embodiment. That is, the information format read from the IC card reader 174 is converted into an information format that can be handled by the image forming apparatus management system 10A of the present embodiment.

  With this configuration, the image forming apparatus 17A of the present embodiment can support a plurality of types of IC cards in which information is recorded according to different standards. Although the image forming apparatus 17A according to the present embodiment acquires the area setting information from the management terminal 18, the present invention is not limited to this. The area setting information may be recorded on a recording medium as in the plug-in 180, for example. The area setting information acquisition unit 181 may acquire area setting information recorded from a recording medium.

  Next, the management terminal 18 of this embodiment will be described with reference to FIG. FIG. 13 is a functional configuration diagram of the management terminal 18 according to the second embodiment.

  The management terminal 18 can be realized by installing a program for the management terminal 18 in a general computer having an arithmetic processing unit and a storage device. Each unit of the management terminal 18 indicates a function realized by a program.

  The management terminal 18 includes a display device 190, a control unit 191, a storage device 192, an area setting information generation unit 193, and a communication unit 194.

  The display device 190 is a liquid crystal display or the like, for example, and displays the processing result in the management terminal 18 and the like. The control unit 191 controls various processes executed by the management terminal 18. The storage device 192 stores calculation results from the calculation processing device, setting information of the management terminal 18, and the like. The area setting information generation unit 193 generates area setting information. The processing of the region setting information generation unit 193 will be described in detail later with reference to the drawings. The communication unit 194 communicates with each device connected to the management terminal 18 via a network.

  The region setting information generation processing in the region information setting unit 193 will be described below with reference to the drawings.

  FIG. 14 is a diagram for explaining an IC card. FIG. 14A is a diagram for explaining an information recording format of the IC card A, and FIG. 14B is a diagram showing information recorded on the IC card A.

  In the IC card A, information is recorded in a format as shown in FIG. In the example shown in FIG. 14A, the IC card identification information is recorded at the head, the employee number information is in block 1, the IC card A issuance information is in block 2, and the IC card A is in block 3. Issuance date information, and in block 4, information on the expiration date of the IC card A is recorded.

  The format shown in FIG. 14A differs for each IC card standard, and is determined in advance by an issuer that issues the IC card. In addition, the format of information recorded on the IC card is different for each IC card standard. For example, in the case of a Felica (registered trademark) card, information is recorded in the information format of the Felica (registered trademark) card in a format dedicated to the Felica (registered trademark) card. For example, in the case of an eLWISE card, information is recorded in an eLWISE card information format in a format dedicated to the eLWISE card.

  FIG. 14B shows the location of each information area recorded on the IC card A. For example, it can be seen that block 1, which is an area where employee numbers are recorded, starts from address 0 and ends at address 9.

  In the management terminal 18 of the present embodiment, the area setting information is generated using the format information of the IC card A as shown in FIG. Note that the format information of the IC card A is provided in advance by an IC card issuer.

  The area setting information generation unit 193 included in the management terminal 18 is a function realized by an area setting program. In the management terminal 18, when the generation of the area setting information is instructed by the user operating the management terminal 18, the area setting program is activated.

  In the area setting program, an area for reading information from the IC card A can be set. The area setting program causes the display device 190 of the management terminal 18 to display a setting screen for setting the reading information area. FIG. 15 shows an example of a setting screen for setting the type of area from which information is read. In the area setting program according to the present embodiment, as shown in FIG. 15, as the types of areas for reading information from the IC card A, a card identification information recording area, an arbitrary area in the IC card A, an area in accordance with the standard format, Either can be selected and set.

  In this embodiment, four patterns of area setting information can be set for one type of IC card. The IC card type indicates the type of IC card standard.

  When the IC card identification information is selected as the information reading area on the setting screen of FIG. 15, the area setting program sets the information reading area as the first area recorded on the IC card A. The recording area of the IC card identification information may be set in advance by a system administrator or the like. In the area setting program of the present embodiment, when IC card identification information is selected as an area from which information is read, an area from which information is read based on this setting is an area in which IC card identification information is recorded.

  In the setting screen of FIG. 15, when an area according to the standard format is selected as an area for reading information, the area setting program sets an area for reading information as an area according to the standard format. The standard format is provided in advance from the IC card A issuer to the system administrator, and is set in the management terminal 18. Specifically, in accordance with a standard format, for example, information indicating an area where IC card identification information is recorded, information indicating an area where an employee number is recorded, and the like are stored in the management terminal 18 as format information. Yes. The area setting program sets an area for reading information based on the format information stored in the management terminal 18.

  Next, a case will be described in which an arbitrary area in the IC card A is selected as the type of area for reading information from the IC card A on the setting screen of FIG.

  The area setting of the IC card A will be described below with reference to FIG. FIG. 16 is a diagram illustrating an example in which an area setting information generation screen for generating area setting information of the IC card A is displayed. FIG. 16 shows an area setting information generation screen for reading information recorded in the IC card.

  The area setting information generation screen includes a block designation unit 190A for designating a block from which information is read, a position designation unit 190B for designating a position in the designated block, and an information list unit 190C for displaying items of information to be read. Is provided. In the example shown in FIG. 16, block 1 and block 3 of the IC card A are designated in the block designation unit 190A. Further, all data of block 1 and block 3 are designated in the position designation unit 190B. Therefore, in the present embodiment, area setting information indicating that all data recorded in the block 1 and the block 3 of the IC card is acquired is generated.

  In the information list section 190C, the employee number that is all data recorded in the block 1 and the expiration date that is all data recorded in the block 3 are displayed as items of information acquired by the area setting information. . Therefore, according to the area setting program of this embodiment, it is possible to specify the block and the position of the information in the block while confirming the information items to be read on the area setting information generation screen. For this reason, for example, when the area setting information is generated by a system administrator or the like, the area setting information can be generated by a simple operation.

  The area setting information generated in the management terminal 18 is provided to the image forming apparatus 17A via, for example, a network. The area setting information may be recorded on a recording medium such as a USB memory in the management terminal 18. The image forming apparatus 17A reads the area setting information recorded on the recording medium and acquires the area setting information. In this embodiment, the area setting program is installed in the management terminal 18, but the present invention is not limited to this. The area setting program may be installed in the user terminal 15, for example. The area setting program may be installed in a general computer that is not connected to the image forming apparatus 17A, and the generated area setting information may be recorded on a recording medium and provided to the image forming apparatus 17A.

  Next, the operation of the plug-in 180 in the image forming apparatus 17A of the present embodiment will be described. In the image forming apparatus 17A, information based on the area setting information can be read from the IC card by operating the program lag-in 180. FIG. 17 is a flowchart for explaining the operation of the plug-in 180 in the image forming apparatus 17A.

  When the plug-in 180 is selected as a plan-in to be executed in step S170, the plug-in 180 starts processing. The plug-in selection will be described below.

  In addition to the plug-in 180, the image forming apparatus 17A of the present embodiment has a plurality of types of plug-ins for controlling reading of information from the IC card. The system administrator can select a plug-in to be executed by the image forming apparatus 17A. The selection of the plug-in is performed by an administrator tool for managing the image forming apparatus management system 10A, for example. The administrator tool may be included in the management terminal 18 or may be included in the image forming apparatus 17A.

  Other plug-ins possessed by the image forming apparatus 17A include, for example, an SSFC plug-in that conforms to the SSFC (Shared Security Formats Cooperation) standard and an eLWISE plug-in that conforms to the eLWISE card standard. For example, when the SSFC (registered trademark) plug-in is selected, the SSFC (registered trademark) pipeline is executed, and the image forming apparatus 17A reads information from the IC card according to the SSFC (registered trademark) standard format. Note that the plug-in 180 of the present embodiment may be applied as, for example, a Felica (registered trademark) plug-in that conforms to the Felica (registered trademark) standard.

  FIG. 18 is a diagram illustrating an example of a plug-in selection screen executed by the image forming apparatus 17A. This selection screen may be displayed on a display device included in the management terminal 18 that controls the management server 11A, or may be displayed on the display operation device 172 of the image forming apparatus 17A. When the plug-in 180 is selected on the selection screen illustrated in FIG. 18, the image forming apparatus 17 </ b> A according to the present embodiment causes the plug-in 180 to be executed using the selection instruction as an execution instruction.

  Image forming apparatus 17A proceeds to step S171 following step S170. When the plug-in 180 is executed in the image forming apparatus 17A, the area setting information acquisition unit 181 acquires area setting information. The area setting information acquisition unit 181 may acquire area setting information from the management terminal 18 via a network, or may acquire area setting information recorded on a recording medium. Progressing to step S172 following step S171, the region setting unit 182 sets the acquired region setting information in the image forming apparatus 17A. That is, the region setting unit 182 stores the selected region setting information in the region setting information storage unit 184. Here, the setting of the area setting information in the image forming apparatus 17A is completed.

  Progressing to step S173 following step S172, when the IC card A is inserted into the IC card reader 174, the IC card reader 174 is recorded in the set area of the IC card A based on the control of the card reader control unit 183. Read information. The card reader control unit 183 refers to the region setting information stored in the region setting information storage unit 184, and controls reading of information of the IC card reader 174 based on the referenced region setting information. Note that the IC card reader 174 may acquire the format information of the IC card A when the IC card A is inserted.

  In the area setting program of this embodiment, four patterns of area setting information can be generated for one type of IC card. Therefore, the image forming apparatus 17A may acquire and set area setting information of a plurality of patterns. When a plurality of patterns of area setting information are set in the image forming apparatus 17A, the card reader control unit 183 determines whether each area setting information corresponds to the format of the IC card A in order from the area setting information acquired first. Is determined. The card reader control unit 183 controls reading of information by the IC card reader 174 based on the area setting information determined to correspond to the format of the IC card.

  Progressing to step S174 following step S173, when the information is read by the IC card reader 174, the information format conversion unit 175 converts the read information into a predetermined information format. The predetermined format is a format of information handled by the image forming apparatus management system 10A of the present embodiment, and is a format of information that can be processed by the image forming apparatus 17A. For example, when the image forming apparatus 17A has a specification corresponding to the information in the format of the Felica (registered trademark) card, and the information read from the IC card reader 174 is in the format of the eLWISE card, the information format conversion unit 175 The read information format is converted to a Felica (registered trademark) card format. If the information read by the IC card reader 174 is information in a format that can be processed by the image forming apparatus 17A, the information format conversion unit 175 may not perform the information format conversion processing.

  Progressing to step S175 following step S174, the image forming apparatus 17A transmits information whose format has been changed by the information format conversion unit 175 to the management server 11A. The management server 11A executes a user login process using the information transmitted from the image forming apparatus 17A.

  As described above, in the image forming apparatus 17A of the present embodiment, it is possible to set an area for reading information in the IC card and read information recorded in the set area. Therefore, in the image forming apparatus 17A, information to be read from the IC card can be set according to the use environment of the image forming apparatus management system 10A. In the image forming apparatus 17A of the present embodiment, the read information format can be converted into a format that can be processed by the image forming apparatus 17A. Therefore, according to the image forming apparatus 17A of the present embodiment, it is possible to cope with a plurality of types of IC card readers having different standards. For this reason, the versatility of the image forming apparatus 17A can be improved.

  Next, the login process of this embodiment will be described. In the image forming apparatus management system 10A of the present embodiment, for example, even when the user forgets the IC card, it is possible to log in by inputting user ID information and a password.

  FIG. 19 is a flowchart for explaining login processing in the second embodiment.

The display operation device 172 of the image forming apparatus 17A is provided with an instruction button 172A for instructing to display a keyboard screen on the standby screen before the login process is started.
FIG. 20 is a diagram illustrating an example of a display screen in the image forming apparatus 17A of the second embodiment, and FIG. 20A illustrates an example of a standby screen displayed on the display operation device 172. FIG. 20B shows an example of a keyboard screen displayed on the display operation device 172. As shown in FIG. 20A, in the image forming apparatus 17A of the present embodiment, a keyboard input instruction button 172A is provided on the standby screen.

  When a keyboard input instruction is given by the keyboard input instruction button 172A in step S191, the image forming apparatus 17A proceeds to step S192, and displays a keyboard screen as shown in FIG.

  Progressing to step S193 following step S192, the image forming apparatus 17A acquires the user ID information and the password input from the keyboard screen. Progressing to step S194 following step S193, the user ID information and password obtained by the AD server 13A are authenticated. The image forming apparatus 17A transmits the acquired user ID information and password to the AD server 13A via the management server 11A. In the AD server 13A, the information stored in the authentication information storage unit 135 and the authentication processing unit 138 determine whether the acquired user ID information and password are valid. The AD server 13A authenticates the user when the acquired user ID information and password are valid.

  When the user is authenticated in step S195, the process proceeds to step S196, and the management server 11A permits the user to log in and ends the login process.

  If the user is not authenticated in step S195, the process proceeds to step S197, and an authentication error message is displayed on the display operation device 172 of the image forming apparatus 17A. Progressing from step S197 to step S198, the image forming apparatus 17A acquires authentication error history information, and stores it in the execution history information storage unit 177. The authentication error history information may be stored in the management server 11A.

  As described above, in the image forming apparatus 17A of the present embodiment, even if the IC card is not possessed, the login process can be performed by inputting the user ID information and the password with the keyboard. Therefore, in the present embodiment, for example, even when the user forgets the IC card, the image forming apparatus 17A can be used based on the use restriction information of the user without issuing a temporary IC card.

  In the image forming apparatus management system 10A of the present embodiment, up to four AD servers 13A can be installed. According to such a configuration, for example, even when one AD server 13A malfunctions, the other AD server 13A can handle it. In the present embodiment, whether or not to display the instruction button 172A on the display operation device 172 of the image forming apparatus 17A may be set in advance by the system administrator. In the image forming apparatus management system 10A, when the instruction button 172A is set to be displayed, the AD server 13A authenticates the user identification information input from the keyboard screen.

  Next, management of user information in the management server 11A of this embodiment will be described.

  In the management server 11A of the present embodiment, user information stored in the user information storage device 120 can be registered, deleted, and updated.

  FIG. 21 is a flowchart for describing registration and deletion of user information in the management server 11A of the second embodiment.

  When the IC card reader 174 reads the IC card identification information 121 in the image forming apparatus 17A, the management server 11A proceeds to step S211 and acquires the IC card identification information from the image forming apparatus 17A.

  Proceeding to step S212 following step S211, the management server 11A performs authentication processing of the acquired IC card identification information 121 based on the acquired IC card identification information 121 information and the user information stored in the user information storage device 120. . When the IC card identification information 121 is not authenticated in S212, the management server 11A transmits the IC card identification information to the AD server 13A. In step S213, the authentication processing unit 138 of the AD server 13A performs authentication processing of the acquired IC card identification information 121 based on the acquired IC card identification information and the user identification information 135.

  When the IC card identification information 121 acquired by the AD server 13A is not authenticated in step S213, the AD server 13A transmits an authentication error message to the image forming apparatus 17A via the management server 11A. In step S214, an authentication error message is displayed on the display operation device 172 of the image forming apparatus 17A.

  In step S213, when the IC card identification information 121 acquired by the AD server 13A is authenticated, the management server 11A receives a message indicating that the user is authenticated from the AD server 13A. The management server 11A receives this message, proceeds to step S215, and logs in the user.

  Proceeding to step S216 following step S215, the management server 11A registers the user identification information 136 corresponding to the IC card identification information 121 authenticated by the AD server 13A in the user information storage unit 120 by the user information registration unit 132. .

  Specifically, the user information registration unit 132 receives the message indicating that the IC card identification information 121 is authenticated in the AD server 13A, and the user ID information 122 corresponding to the IC card identification information 121 authenticated from the AD server 13A. To get. Then, the user information registration unit 132 associates the usage restriction information with the IC card identification information 121 and the user ID information 122 (user identification information 136) and stores them in the user information storage device 120. The use restriction information associated with the user identification information 136 is information stored in the user information storage device 120 in advance as an initial setting. In the present embodiment, when the use restriction information is in an initial setting state, all the functions of the image forming apparatus 17A can be used.

  Thus, in this embodiment, when the IC card identification information 121 is not authenticated by the management server 11A and is authenticated by the AD server 13A, it is assumed that the user is authenticated. Then, the management server 11A acquires the user ID information 122 corresponding to the IC card identification information 121 from the AD server 13A, registers the user ID information 122 in association with the initial use restriction information, and registers it in the user information storage device 120 of the management server 11A.

  Therefore, the system administrator only has to register the user identification information 136 only in the AD server 13A when registering new user information of the image forming apparatus management system 10A. Therefore, the image forming apparatus management system 10A according to the present embodiment does not need to register user identification information in both the AD server 13A and the management server 11A, and can reduce the burden on the system administrator.

  When the management server 11A authenticates the IC card identification information 121 in step S212, the management server 11A sends the IC card identification information 121, and the user identification information 136 including the IC card identification information 121 and the user ID information 122 to the AD server. Send to 13A. Proceeding to step S217 following step S212, the AD server 13A performs an authentication process of the user identification information 136. When the AD server 13A authenticates the user identification information 136, the process proceeds to step S218, and the management server 11A logs in the user.

  If the AD server 13A does not authenticate the user identification information 136 in step S217, the process advances to step S219, and the management server 11A invalidates the IC card identification information 121 and transmits an authentication error message to the image forming apparatus 17A. Progressing to step S220 following step S219, the user information deletion unit 133 in the management server 11A, from the user information storage device 120, the IC card identification information 121 not authenticated by the AD server 13A, and the corresponding user ID information 122 and usage restriction information are deleted.

  Therefore, according to this embodiment, when invalid user information is stored in the management server 11A, it can be automatically deleted.

  In the present embodiment, the user information update unit 134 can update user information including registration and deletion of the user information described above.

  The user information registration and deletion process described with reference to FIG. 21 is executed only when the IC card identification information of the user to be registered and deleted is acquired. On the other hand, the user information update unit 134 periodically updates the user information stored in the user information storage device 120.

  In the management server 11A, the update file acquisition unit 160 periodically acquires an update file for updating user information created in advance. When the update file is acquired, the user information update unit 134 rewrites and updates the user information stored in the user information storage device 120 based on the update file.

  Here, the update file will be described.

  The update file mainly includes information regarding IC card identification information and user ID information. The update file information is information corresponding to the user identification information 136 stored in the AD server 13A. The AD server 13A periodically writes out the user identification information 136 stored in the AD server 13A as a file of a predetermined format and provides it to the management server 11A. The predetermined format indicates a format that can be processed by the management server 11A. In the present embodiment, the file is, for example, a CSV file.

  The management server 11A acquires an update file periodically provided from the AD server 13A, and updates user information based on the acquired update file. In the management server 11A, the user information in the user information storage device 120 can be associated with the information in the AD server 13A by this update process. The update of the user information in the management server 11A includes the update of usage restriction information.

  For example, when new user identification information 136 has been added to the update file, the user information update unit 134 associates the initial use restriction information with the newly added user identification information 136 and stores the user information storage device 120. To store. When the user identification information 136 has been deleted from the update file, the user information update unit 134 deletes the usage restriction information corresponding to the deleted user identification information from the user information storage device 120.

  As described above, in the management server 11A of the present embodiment, user information can be periodically updated in correspondence with the AD server 13A. Therefore, it is not necessary to perform double information management, that is, management of the user identification information 136 in the AD server 13A and management of user information in the management server 11A. For this reason, the burden of information management on the system administrator can be reduced.

  Further, the management server 11A according to the present embodiment can collectively delete print jobs stored in the print server 16A.

  In the management server 11A, the print job deletion instruction unit 140 generates a print job deletion instruction and transmits it to the print server 16A. In response to this instruction, the print server 16A deletes the print job held in the print command holding unit 161 by the print job deleting unit 164.

  In the management server 11A, a print job deletion instruction may be periodically generated and transmitted to the print server 16A. The print job deletion instruction unit 140 generates a print job deletion instruction every period preset by the system administrator, and transmits the print job deletion instruction to the print server 16A. The print job deletion instruction generated here may be batch deletion of print jobs. In this case, the print server 16A deletes all the print jobs held in the print command holding unit 161 at a time each time a print job deletion instruction is received.

  In the management server 11A, for example, a print job deletion instruction for deleting a print job accumulated for a predetermined period set by a system administrator may be generated. For example, it is assumed that the system administrator has set to delete print jobs accumulated for 8 days from 10 days ago to 2 days ago. In this case, the print job deletion instruction unit 140 transmits a print job deletion instruction and period information set by the system administrator to the print server 16A. The print server 16A deletes the print job accumulated during the period set according to the period information.

  Note that the print job deletion instruction unit 140 may cause the display device 113 of the management server 11 </ b> A to display a setting screen that prompts the user to set period information or issue a print job deletion instruction. The system administrator can generate a print job deletion instruction by setting a period according to the setting screen and issuing a print job deletion instruction.

  As described above, according to the present embodiment, it is possible to prevent an enormous amount of data from being stored in the print server 16A, and to reduce the capacity of the print server 16A.

  In the management server 11A of this embodiment, the print order change instruction unit 150 can change the execution order of print jobs stored in the print server 16A.

  In the present embodiment, for example, in the print server 16A, when the print job is received and the date and time when the print job is received is set to be executed in order of newest, the setting of the print server 16A is changed by the print order change instruction unit 150. Can do. In the management server 11A, the print order change instruction unit 150 generates an instruction to change the setting to execute the print job in the order of the date and time when the print job was received. The management server 11A transmits the generated print order change instruction to the print server 16A. In response to this print order change instruction, the print server 16A changes the setting of the print job execution order.

  Note that the print order change instruction unit 150 may display a setting screen for prompting the user to change the print order on the display device 113 of the management server 11A. The system administrator can generate a print order change instruction by setting the print order according to the setting screen.

As described above, in this embodiment, the execution order of the print jobs can be changed, so that the print server 16A can execute the print jobs in an appropriate order according to the operation of the image forming apparatus management system 10A.
(Third embodiment)
A third embodiment of the present invention will be described with reference to FIG. FIG. 22 is a system configuration diagram of the image forming apparatus management system 20 according to the third embodiment of the present invention. Among the components of the image forming apparatus management system 20 of the third embodiment shown in FIG. 22, those having the same functions and configurations as those of the first embodiment are given the same reference numerals as in FIG. Is omitted. In the following, only the parts different from the first embodiment in FIG. 22 will be described.

  In the image forming apparatus management system 20 of the third embodiment, the parts corresponding to the image forming apparatus 17A of the second embodiment are the image forming apparatus 17a, the operation terminal 21 for operating the image forming apparatus 17a, and the operation terminal 21. An IC card reader 174a connected to the outside is used. FIG. 23 is a diagram illustrating the configuration of the image forming apparatus 17a, the operation terminal 21, and the IC card reader 174a.

  The image forming apparatus 17 a and the IC card reader 174 a are connected to the operation terminal 21, and the operation terminal 21 is connected to a network constituting the image forming apparatus management system 20. In this embodiment, the image forming apparatus 17a is serially connected to the operation terminal 21 by RS232C or the like. The IC card reader 174a is connected to the operation terminal 21 by USB or the like.

  The image forming apparatus 17a includes a control unit 171a, a display operation device 172a, a recording device 173a, and a communication unit 176a. The control unit 171a is responsible for executing processes for realizing a print function, a scan function, a copy function, and the like that can be realized by the image forming apparatus 17a, or for controlling these processes. The display operation device 172a is for operating the image forming device 17a and is, for example, a numeric keypad or an operation panel. In the recording device 173a, setting values and the like of the image forming device 17a are recorded. The communication unit 176a communicates with the operation terminal 21.

  The operation terminal 21 is a computer, for example, and includes a control unit 211, a communication unit 212, a recording device 213, a display unit 214, an operation unit 215, and a plug-in 180. The control unit 211 controls execution of processes for realizing the functions of the operation terminal 21 or control of these processes. The communication unit 212 communicates with the image forming apparatus 17a, the IC card reader 174a, and each device connected to the network. The plug-in 180 is as described in the second embodiment. The operation terminal 21 of this embodiment may include the area setting information generation unit 193 described in the second embodiment. That is, an area setting program may be installed in the operation terminal 21.

  The recording device 213 stores the setting value of the operation terminal 21, and may temporarily record a calculated value that is a result of processing executed by the control unit 211. The recording device 213 includes information related to system settings of the image forming apparatus management system 20, IC card identification information, and a user ID, in case the operation terminal 21 becomes unable to communicate with the management server 11 and the print server 16. User identification information, use restriction information corresponding to the user identification information, information indicating a history of users who have used the image forming apparatus 17a, and the like are recorded. These pieces of information are periodically transmitted to the management server 11. .

  The display unit 214 displays the result of processing executed on the operation terminal 21 and the state of the image forming apparatus 17a. The display unit 214 may be a liquid crystal display connected to the outside of the operation terminal 21, for example. . The operation unit 215 is for operating the operation terminal 215 and may be, for example, a keyboard or a mouse connected to the outside of the operation terminal 21. Since the IC card reader 174a has the same function as that of the second embodiment, description thereof is omitted.

  The user authentication process in the third embodiment will be described below. First, the IC card identification information held by the user is acquired by the IC card reader 174a. The control unit 211 of the operation terminal 21 acquires the IC card identification information from the IC card reader 174a. Then, the IC card identification information acquired by the communication unit 212 is transmitted to the management server 11. Based on the IC card identification information, the management server 11 extracts a user ID corresponding to the IC card identification information, and acquires use restriction information corresponding to the extracted user ID.

  Then, the management server 11 transmits the acquired use restriction information to the operation terminal 21 through the communication unit 114. The operation terminal 21 acquires the use restriction information via the communication unit 212, and controls the image forming apparatus 17a based on the use restriction information.

  In the third embodiment of the present invention, the image forming apparatus is managed by the operation terminal 21 and the management server 11 that operate the image forming apparatus 17a as described above.

In this embodiment, an application that realizes the functions of the plug-in 180, the execution processing history storage unit 177, the individual information storage unit 178, and the password generation unit 179 described in the first embodiment is read by the operation terminal 21. It may be recorded on a possible recording medium. In this case, the operation terminal 21 has a recording medium reading unit (not shown), and can read the recording medium to have the functions of the above-described units. In this case, the operation terminal 21 controls the image forming apparatus 17a by performing processing by the above units according to functions that can be realized by the image forming apparatus 17a.
(Fourth embodiment)
A fourth embodiment of the present invention will be described with reference to FIG. FIG. 24 is a system configuration diagram of an image forming apparatus management system 30 according to the fourth embodiment of the present invention. In the constituent elements of the image forming apparatus management system 30 of the fourth embodiment shown in FIG. 24, those having the same functions and configurations as those of the first embodiment are given the same reference numerals as those in FIG. Is omitted. In the following, only the parts different from the first embodiment in FIG. 24 will be described.

  In the image forming apparatus management system 30 according to the fourth embodiment, a part corresponding to the image forming apparatus 17 according to the first embodiment includes a laser printer 17b that is an image forming apparatus, a control terminal 31 that controls the laser printer 17b, and a control. The terminal 31 is configured by a setting terminal 32 and an IC card reader 174b connected to the outside of the control terminal. FIG. 25 is a diagram illustrating the configuration of the laser printer 17b, the control terminal 31, the setting terminal 32, and the IC card reader 174b.

  The laser printer 17b is an image forming apparatus having a printer function. The control terminal 31 includes a control unit 311, a communication unit 312, a display unit 313, a recording device 314, and a plug-in 180. The control unit 311 manages processing for realizing the functions of the control terminal 31 or controls these processing. The communication unit 312 performs communication with each device configuring the image forming apparatus management system 30 and communication with the laser printer 17b. The display unit 313 displays the overall system state in the image forming apparatus management system 30 and the communication state between the control terminal 31 and each device. The plug-in 180 is as described in the second embodiment. Moreover, the control terminal 31 of this embodiment may be provided with the area | region setting information generation part 193 demonstrated in 2nd embodiment. That is, the area setting program may be installed in the control terminal 31.

  The display unit 313 is an LED (Light Emitting Diode) that is a light emitting element of three colors. The system state of the image forming apparatus management system 30 according to the present embodiment, the control terminal 31 and the management server are combined by combining these three colors of LEDs. 11 and the communication status with the print server 16 and the status of the management server 11 and the print server 16 are displayed to the user. Details of this display method will be described later.

  The recording device 314 records setting values of the control terminal 31 and the like. The recording device 314 also includes information related to system settings of the image forming apparatus management system 30, IC card identification information, and user ID in case the control terminal 31 becomes unable to communicate with the management server 11 and the print server 16. , User restriction information corresponding to the user identification information, information indicating a history of users who have used the laser printer 17b, and the like are recorded. These pieces of information are periodically transmitted to the management server 11. The

  The IC card reader 174b has the same function as the IC card reader 174a of the second embodiment, and is connected to the control terminal 31 by USB or the like. The setting terminal 32 performs various settings in the control terminal 31 and is, for example, a computer. The setting terminal 32 is connected to the control terminal 31 by a cross cable or the like.

  Below, the user authentication process in this embodiment is demonstrated. First, the IC card identification information of the IC card held by the user is acquired by the IC card reader 174b. The control unit 311 of the control terminal 31 acquires the IC card identification information from the IC card reader 174b. Then, the IC card identification information acquired by the communication unit 312 is transmitted to the management server 11. Based on the IC card identification information, the management server 11 extracts the user ID linked to the IC card identification information, and obtains usage restriction information corresponding to the extracted user ID.

  Then, the management server 11 transmits the acquired use restriction information to the control terminal 31 through the communication unit 114. The control terminal 31 acquires the use restriction information via the communication unit 312 and controls the laser printer 17b based on the use restriction information.

  For example, when the user who has been authenticated by the use restriction information is restricted from using the laser printer 17b, the control unit 311 sets the operation key provided in the laser printer 17b to a hard key lock state, which is a disabled state. To do. If the user authenticated by the usage restriction information is permitted to use the laser printer 17b, the control unit 311 sets the hard key lock state of the laser printer 17b to the released state. In this way, the user can execute print processing using the operation key of the laser printer 17b.

  In the present embodiment, the control terminal 31 and the management server 11 limit and manage the use of the laser printer 17b, which is an image forming apparatus, as described above. By adopting such a configuration, the present invention can be applied not only to an expensive image forming apparatus but also to management of a laser printer or the like that is cheaper and can be easily obtained by a user. The effect which it plays with can be acquired.

  Next, a display method performed by the display unit 313 in the present embodiment will be described with reference to FIGS.

  FIG. 26 is a diagram for explaining a display method that indicates the state of the image forming apparatus management system 30 in the display unit 313. FIG. 27 is a diagram for explaining a display method indicating the state of the second print server when a plurality of print servers 16 are connected in the fourth embodiment. In FIG. 26 and FIG. 27, the horizontal direction indicates the passage of time, and one square is converted to one second, and the display unit 313 is displayed in a state in which one second has passed every time one square is shifted to the left on the paper surface. It was.

  The display unit 313 of the control terminal 31 has LEDs of three colors, green, red, and yellow. In the present embodiment, the LED 1 is a green LED and indicates the power state of the control terminal 31. LED1 is lit when the power of the control terminal 31 is ON. LED 2 is a red LED and mainly indicates the state of the device of the control terminal 31. LED 3 is a yellow LED, and mainly indicates the state of the devices of the management server 11 and the print server 16 and the communication state between the control terminal 31, the management server 11, and the print server 16. The blinking method of LED2 and LED3 will be described below with reference to FIG.

  FIG. 26A is a diagram showing a state where the display unit 313 shows an abnormality in the communication state of the service within the control terminal 31. The service referred to here means data transmission / reception within the control terminal 31. When there is an abnormality in the communication state of the service within the control terminal 31, LED 2 blinks once every 5 seconds on the display unit 313. That is, after LED 2 is lit for 1 second, a rest period in which none of the LEDs is lit continues for 4 seconds. And it returns to blinking of LED2. In this way, the display unit 313 notifies the user of communication abnormality of the service within the control terminal 31.

  FIG. 26B is a diagram showing a disk capacity warning of the local disk of the control terminal 31 on the display unit 313. When the remaining capacity of the disk capacity of the control terminal 31 becomes less than or equal to a predetermined value, the LED 2 blinks twice every second, and then the rest period continues for 4 seconds. Then, the LED 2 returns to blinking every second. In this way, the display unit 313 notifies the user of a disk capacity warning of the local disk of the control terminal 31.

  FIG. 26C is a diagram showing an abnormality of the device of the IC card reader 174b in the display portion 313. In this case, LED 2 blinks three times every second, and then the rest period continues for 4 seconds. Then, the LED 2 returns to blinking every second. In this way, the display unit 313 notifies the user of the abnormality of the device of the IC card reader 174b.

  FIG. 26D is a diagram showing an abnormality in the device state of the control terminal 31 on the display unit 313. An abnormality in the device state of the control terminal 31 means a state in which data communication cannot be performed due to a failure of the control terminal 31 or the like. In this case, the LED 3 blinks once every 5 seconds. That is, after the LED 3 is lit for 1 second, a rest period in which none of the LEDs is lit continues for 4 seconds. In this way, the display unit 313 notifies the user of an abnormality in the device state of the control terminal 31.

  FIG. 26E is a diagram showing an abnormality in the communication state with the print server 16 on the display unit 313. In this case, the LED 3 blinks twice every second, and then the rest period continues for 4 seconds. Then, the LED 3 returns to blinking every second. In this way, the display unit 313 notifies the user of an abnormality in the communication state between the print server 16 and the control terminal 31.

  FIG. 26F is a diagram showing an abnormality in the communication state with the management server 11 on the display unit 313. In this case, the LED 3 blinks three times every second, and then the rest period continues for 4 seconds. Then, the LED 3 returns to blinking every second. In this way, the display unit 313 notifies the user of an abnormality in the communication state between the management server 11 and the control terminal 31.

  FIG. 26G is a diagram showing an internal error of the control terminal 31 on the display unit 313. The internal error means, for example, a case where the process executed in the control terminal 31 cannot be executed for some reason. In this case, LED2 and LED3 repeat blinking every second at the same timing. In this way, the display unit 313 notifies the user of an internal error abnormality of the control terminal 31.

  FIG. 26H is a diagram showing an abnormality in the communication state of the service in the print server 16 on the display unit 313. In this case, the LED 3 blinks 4 times per second, and then the rest period continues for 4 seconds. Then, the LED 3 returns to blinking every second. In this way, the display unit 313 notifies the user of an abnormality in the communication state of the service in the print server 16.

  FIG. 26I is a diagram showing a disk capacity warning of the print server 16 on the display unit 313. When the remaining capacity of the disk capacity in the print server 16 falls below a predetermined value, the LED 3 blinks five times every second, and then the pause period continues for 4 seconds. Then, the LED 3 returns to blinking every second. In this way, the display unit 313 notifies the user of a disk capacity warning of the print server 16.

  FIG. 26J is a diagram showing a database capacity warning of the print server 16 on the display unit 313. The database of the print server 16 means, for example, a data storage area in which various data are stored in the print server 16. In this case, when the remaining capacity of the database in the print server 16 falls below a predetermined value, the LED 3 blinks six times every second, and then the rest period continues for 4 seconds. Then, the LED 3 returns to blinking every second. In this way, the display unit 313 notifies the user of a database capacity warning of the print server 16.

  FIG. 26K is a diagram showing an abnormality in the communication state of the service in the management server 11 on the display unit 313. In this case, the LED 3 blinks 7 times every second, and then the rest period continues for 4 seconds. Then, the LED 3 returns to blinking every second. In this way, the display unit 313 notifies the user of an abnormality in the communication state of the service in the management server 11.

  FIG. 26L is a diagram showing a disk capacity warning of the management server 11 on the display unit 313. When the remaining capacity of the disk capacity in the management server 11 falls below a predetermined value, the LED 3 blinks 8 times every second, and then the rest period continues for 4 seconds. Then, the LED 3 returns to blinking every second. In this way, the display unit 313 notifies the user of a disk capacity warning of the management server 11.

  FIG. 26M is a diagram showing a database capacity warning of the management server 11 on the display unit 313. The database of the management server 11 means, for example, a data storage area in which various data are stored in the management server 11. When the remaining capacity of the database in the management server 11 becomes less than a predetermined value, in this case, the LED 3 blinks nine times every second, and then the pause period continues for 4 seconds. Then, the LED 3 returns to blinking every second. In this way, the display unit 313 notifies the user of a database capacity warning of the management server 11.

  In this way, the display unit 313 of the control terminal 31 allows the user to grasp the device status of the control terminal 31, the management server 11 and the print server 16, and the communication status of the control terminal 31, the management server 11 and the print server 16. Is displayed.

  In the image forming apparatus management system 30 of the present embodiment, a plurality of print servers 16 can be provided. A method of displaying information related to the second print server (not shown) in this case will be described with reference to FIG. In FIG. 27, the mark “!” Indicates that the LED lighting time is fast blinking with less than 1 second. For example, “●! ●” means that the LED blinks twice with a lighting time of less than 1 second.

  FIG. 27A is a diagram showing an abnormality in the communication state between the second print server and the control terminal 31 on the display unit 313. In this case, the LED 3 blinks twice every second, and blinking with a lighting time of less than 1 second is repeated twice during the subsequent 4 seconds. After that, the LED 3 returns to blinking every second. In this way, the display unit 313 notifies the user of an abnormality in the communication state with the second print server.

  FIG. 27B is a diagram showing an abnormality in the communication state of the service in the second print server on the display unit 313. In this case, the LED 3 blinks four times every second, and blinks with a lighting time of less than one second twice during the subsequent four seconds. After that, the LED 3 returns to blinking every second. In this way, the display unit 313 notifies the user of an abnormality in the communication state of the service in the second print server.

  FIG. 27C is a diagram showing a disk capacity warning of the second print server on the display unit 313. In this case, when the remaining capacity of the disk capacity in the second print server falls below the predetermined value, LED3 blinks five times every second, and blinks for less than one second during the subsequent four seconds. Repeat twice. After that, the LED 3 returns to blinking every second. In this way, the display unit 313 notifies the user of a disk capacity warning of the second print server.

  FIG. 27D is a diagram showing a database capacity warning of the second print server on the display unit 313. The database of the second print server means, for example, a data storage area in which various data are stored in the print server. In this case, when the remaining capacity of the disk capacity in the second print server falls below the predetermined value, LED 3 blinks 6 times per second, and blinks for less than 1 second during the subsequent 4 seconds. Repeat twice. After that, the LED 3 returns to blinking every second. In this way, the display unit 313 notifies the user of a database capacity warning of the second print server.

  In this way, even when a plurality of print servers are connected, the control terminal 31 of the present embodiment indicates the device status of the plurality of print servers and the communication status with the control terminal 31 on the display unit 313. The information can be displayed so that the user can grasp the information.

  In addition, the procedure for realizing the functions of the management servers 11 and 11A in each embodiment described above may be recorded on a recording medium as a computer-readable image forming apparatus management program.

  FIG. 28 is a diagram for explaining a recording medium on which a program for realizing each function of the management servers 11 and 11A described in each embodiment is recorded. The functions recorded in the present embodiment can be realized by the program recorded in the recording medium 410 being read and executed by the computer 500.

  For example, the computer 500 includes a CPU 510, a hard disk 520, a memory 530, a display unit 540, an input unit 550, a communication unit 560, and a recording medium reading unit 570. The CPU 510 is an arithmetic processing unit, and executes arithmetic operations and processes executed in the computer 500. The hard disk 520 is a storage means for storing data, and stores an application that operates on the computer 500, data created by this application, and the like. The memory 530 stores various setting values related to the computer 500, calculation results in the CPU 510, and the like.

  The display unit 540 is a display or the like, and displays data created in the computer 500 so that the user can view it. The input unit 550 is, for example, a keyboard or a mouse, and various data are input by a user operation. The communication unit 560 is a network control unit, for example, and is used for the computer 500 to communicate with an external device. The recording medium reading unit 570 reads data and programs recorded on various recording media, and is, for example, a floppy (registered trademark) disk driver.

  The recording medium 410 records an image forming apparatus management program 400 that realizes each function of the present embodiment. The image forming apparatus management program 400 is read by the recording medium reading unit 570 and executed by the CPU 510. The recording medium 410 may be, for example, a floppy (registered trademark) disk or a CD-ROM (Compact Disk Read Only Memory), and may be any medium that can be read by the computer 500. The image forming apparatus management program 400 may be received by the communication unit 560 via a network and stored in the hard disk 520 or the like.

  In addition, the procedure for realizing the functions of the image forming apparatuses 17, 17A, and 17a in the embodiments described above may be recorded on a recording medium as a computer-readable image forming program.

  FIG. 29 is a diagram illustrating a recording medium on which a program for realizing each function of the image forming apparatuses 17, 17A, and 17a described in each embodiment is recorded. Each function described in the present embodiment can be realized by the program recorded in the recording medium 710 being read and executed by the image forming apparatus 600.

  For example, the image forming apparatus 600 includes a CPU 610, a hard disk 620, a memory 630, a display operation unit 640, a scanner unit 650, a communication unit 660, a recording medium reading unit 670, and a plotter unit 680. The CPU 610 is an arithmetic processing device, and executes arithmetic operations and processes executed in the image forming apparatus 600. The hard disk 620 is a storage unit for storing data, and stores an application operating on the image forming apparatus 600, data created by the application, and the like. The memory 630 stores various setting values related to the image forming apparatus 600, calculation results in the CPU 610, and the like.

  The display operation unit 640 is an operation panel having a display unit, and displays the operation of the image forming apparatus 600, the apparatus state, the progress of processing, and the like. The scanner unit 650 includes a scanner and a scanner engine, and scans a paper document to obtain image data. The communication unit 660 is a network control unit, for example, and is used for the image forming apparatus 600 to communicate with an external apparatus. The recording medium reading unit 670 reads data and programs recorded on various recording media, and is, for example, a floppy (registered trademark) disk driver. The plotter unit 680 includes a plotter and a plotter engine, and prints out image data.

  The recording medium 710 records an image forming program 700 that realizes each function of the present embodiment. The image forming program 700 is read by the recording medium reading unit 670 and executed by the CPU 610. The recording medium 710 may be, for example, a floppy (registered trademark) disk or a CD-ROM (Compact Disk Read Only Memory), and may be any medium that can be read by the image forming apparatus 600. The image forming program 700 may be received by the communication unit 660 via a network and stored in the hard disk 620 or the like.

  As mentioned above, although this invention has been demonstrated based on each embodiment, this invention is not limited to the requirements shown in the said embodiment. With respect to these points, the gist of the present invention can be changed without departing from the scope of the present invention, and can be appropriately determined according to the application form.

10, 20, 30 Image forming apparatus management system 11, 11A Management server 13 AD server 15 User terminal 16, 16A Print server 17, 17A, 17a Image forming apparatus 17b Laser printer 21 Operation terminal 31 Control terminal 111, 171, 211, 311 Control unit 130 User information management unit 140 Print job deletion instruction unit 150 Print order change instruction unit 160 Update file acquisition unit 174, 174a, 174b IC card reader 180 Plug-in 193 Area setting information generation unit

JP 2004-222141 A

Claims (9)

A management device that is connected to an image forming apparatus via a network and controls user authentication processing of a user who uses the image forming apparatus,
And user identification information identifying the user, and recording medium identification information for identifying the recording medium, and the user information storage unit to memorize in association with,
Receiving means for receiving the recording medium identification information recorded before type recording medium on which an image forming apparatus has read,
Using the recording medium identification information received has an authentication control means for executing a user authentication process, the,
The authentication control means includes
Received the recording medium identification information is stored in the user information storage unit, and, when the setting for performing user authentication processing in cooperation with the user information holding device is, correspondence to the recording medium identification information A management apparatus that executes the user authentication process by transmitting the received user identification information to the user information holding apparatus and receiving an authentication result of a user authentication process executed by the user information holding apparatus. When the authentication control unit is configured to perform user authentication processing in cooperation with the user information holding device, the user identification information specified from the recording medium identification information received by the receiving unit is the user based on whether the confirmation result exists in the information holding device, the management apparatus according to claim 1, wherein determining the authentication success or failure of the user.   When the authentication control means is set to perform user authentication processing without cooperating with the user information holding device, the user information storage unit and the received recording medium are not used without using the user information holding device. The management device according to claim 1, wherein authentication success or failure of the user is determined based on identification information. A management method by a management apparatus that connects to an image forming apparatus via a network and controls user authentication processing of a user who uses the image forming apparatus,
And user identification information identifying the user, a storage procedure for storing the User chromatography The information storage unit in association with each other, and recording medium identification information for identifying the recording medium,
A receiving step of receiving the recording medium identification information recorded before type recording medium on which an image forming apparatus has read,
An authentication control procedure for executing a user authentication process using the received recording medium identification information,
The authentication control procedure includes:
Received the recording medium identification information is stored in the user information storage unit, and, when the setting for performing user authentication processing in cooperation with the user information holding device is, correspondence to the recording medium identification information The user authentication information is transmitted to the user information holding device, and the user authentication processing is executed by receiving the authentication result of the user authentication processing executed by the user information holding device . The authentication control procedure includes:
The case in which it is in a user information holding device Cooperation with performing user authentication processing set, the user identification information specified from the recording medium identification information received by the receiving procedure, exist in the user information holding device The management method according to claim 4, further comprising a step of determining whether or not the user has been authenticated based on a confirmation result of whether or not to do so. The authentication control procedure includes:
If it is set to perform user authentication processing without linking with the user information holding device, the user information holding device is not used and the user information storage unit and the received recording medium identification information are used. The management method according to claim 4, further comprising a procedure for determining success or failure of authentication of the user. A management program that is executed by a management device that is connected to an image forming apparatus via a network and controls user authentication processing of a user who uses the image forming apparatus,
In the management device,
And user identification information identifying the user, and recording medium identification information for identifying the recording medium, a storage process of storing the User chromatography The information storage unit in association with,
A receiving process of receiving the recording medium identification information recorded before type recording medium on which an image forming apparatus has read,
An authentication control process for executing a user authentication process is executed using the received recording medium identification information,
The authentication control process includes:
Received the recording medium identification information is stored in the user information storage unit, and, when the setting for performing user authentication processing in cooperation with the user information holding device is, correspondence to the recording medium identification information A management program for transmitting the received user identification information to the user information holding device and executing the user authentication processing by receiving an authentication result of the user authentication processing executed by the user information holding device . The authentication control process includes:
The case had cooperation with the user information holding device a setting for performing user authentication process, the user identification information specified from the recording medium identification information received by the receiving process, exists in the user information holding device The management program according to claim 7, further comprising: determining whether or not the user has been authenticated based on a confirmation result of whether or not to do so. The authentication control process includes:
If it is set to perform user authentication processing without linking with the user information holding device, the user information holding device is not used and the user information storage unit and the received recording medium identification information are used. The management program according to claim 7, further comprising a process for determining whether or not the user is authenticated.

Images