JP5617972B2 - Authentication information management system, image forming apparatus, authentication server, and processing method and program thereof - Google Patents

Description

  The present invention relates to an authentication server that manages authentication information, an image forming apparatus, an authentication information management system, and a method and program for managing authentication information.

  In recent years, when using a multi-function device, for the purpose of limiting the user, for example, an authentication information management device (IC card authentication) is used for authentication information read from the IC card by holding the IC card over the card reader of the multi-function device. Server), if authentication information has been registered, there is already a system that responds to the multifunction peripheral with a successful authentication and can use the multifunction peripheral.

  Such a system requires that the card information of the IC card (authentication information permitting the use of the multifunction device) be registered in advance in the authentication information management apparatus, which requires an administrator's trouble. To do.

  Therefore, Patent Document 1 describes a system in which a user who uses an IC card registers the IC card on the multifunction device if the card information is not registered at the time of IC card authentication.

JP 2008-181491 A

  The system of Patent Document 1 is a system for registering an IC card if no card information is registered at the time of IC card authentication, and only one card information can be registered for one user.

  However, at present, there are cases in which a plurality of IC cards for personal use and IC cards for internal departments are held in a company and used for business purposes.

  When switching from an old card to a new card (transition), there is a case where one user holds both an old card and a new card for a certain period.

  In the system of Patent Document 1, a plurality of IC cards cannot be registered for one user. If a new IC card is registered, the previous card cannot be used. Therefore, in such a case, there is a case where the system of Patent Document 1 is not suitable for business.

  In the system of Patent Document 1, there is only one card information for one user, and it is easy to maintain registered card information. However, when making it possible to use a plurality of IC cards, complicated operations such as deletion are required.

  When one user holds one IC card, one card is always used, so if one card is lost, the multifunction device cannot be used, so apply for the loss and get a new IC card. However, if one user holds a plurality of IC cards, the IC can be lost even if one IC card is lost, because other IC cards can be used to use the multifunction device. May not be applied.

  In this way, when one user holds a plurality of IC cards, the administrator makes a stocktaking request to the department head of each department, and the department head who receives this request sends all IC cards to the members of each department. It takes time and effort to report the inventory to the manager after asking if there is any.

  Furthermore, since the IC card is normally managed using the card manufacturing number (card number) stored in the IC card, if the IC card is lost, the IC card is lost. In addition, it is difficult for the user to know the card number of the IC card and to identify which IC card has been lost, and it has been particularly troublesome for the administrator to inventory the IC card.

  For this reason, companies have desired a mechanism for reducing the burden of managing this IC card.

An object of the present invention, by reading the serial憶媒body, by providing a mechanism which can easily delete the serial憶媒body registered for User chromatography The from the image forming apparatus is there.

The present invention is an authentication information management system including an authentication server and an image forming apparatus including a storage unit that stores user information for identifying a user and an authentication information group in association with each other. An apparatus includes an authentication information receiving unit that receives an authentication information group associated with user information from the authentication server, and a memory used for user authentication owned by the user among the authentication information group received by the authentication information receiving unit. An authentication information selection unit that selects authentication information that does not match the authentication information of the storage medium obtained by reading the medium, and a deletion request that includes the authentication information selected by the authentication information selection unit is transmitted to the authentication server A deletion request transmission unit, wherein the authentication server transmits an authentication information group associated with user information to the image forming apparatus; A deletion request receiving unit that receives a deletion request including the authentication information from the image forming apparatus; and a deletion unit that deletes the authentication information of the storage medium to be deleted from the storage unit according to the deletion request received by the deletion request receiving unit; It is characterized by providing.

According to the present invention, by reading the serial憶媒body, it is possible to easily remove the serial憶媒body registered for User chromatography The from the image forming apparatus

The system block diagram which shows an example of a structure of the authentication information management system 1 of this invention A block diagram showing a hardware configuration of an information processing apparatus applicable to the IC card authentication server 200 and the directory service server 300 Block diagram showing an example of a hardware configuration of a controller unit of the multifunction machine 100 Functional block diagram of MFP 100 and authentication server 600 (IC card authentication server 200, directory service server 300) Data configuration diagram showing an example of an IC card authentication table 5 in the authentication information management system 1 of the present invention The flowchart which shows an example of the user information management process in the authentication information management system 1 of this invention The figure which shows the user authentication screen 700 in the authentication information management system 1 of this invention. The flowchart which shows an example of the user authentication process of the IC card authentication server 200 in the authentication information management system 1 of this invention. 7 is a flowchart showing an example of a control procedure on the authentication information management screen of the multifunction peripheral 100 in the authentication information management system 1 of the present invention. The figure which shows the authentication information management screen 1000 in the authentication information management system 1 of this invention. The flowchart which shows an example of the control procedure at the time of card information registration in the authentication information management system 1 of this invention The figure which shows the card information reading screen 1200 at the time of card information registration in the authentication information management system 1 of this invention The figure which shows the card registration and card name input screen 1300 in the authentication information management system 1 of this invention The flowchart which shows an example of the control procedure at the time of card information deletion in the authentication information management system 1 of this invention The figure which shows the card information deletion screen 1500 in the authentication information management system 1 of this invention. The figure which shows the card information reading screen 1600 at the time of card information deletion in the authentication information management system 1 of this invention The flowchart which shows an example of the control procedure at the time of the password change in the authentication information management system 1 of this invention The figure which shows the password change screen 1800 in the authentication information management system 1 of this invention. The figure which shows the lost card information deletion screen 1900 in the authentication information management system 1 of this invention The flowchart which shows an example of the control procedure in the case of deletion of lost card information in the authentication information management system 1 of this invention The figure which shows the card inventory screen 2100 in the authentication information management system 1 of this invention The flowchart which shows an example of the control procedure in the case of card inventory in the authentication information management system 1 of this invention The flowchart which shows an example of the control procedure at the time of confirming the inventory notification in the authentication information management system 1 of this invention, and the card information which is not inventoried

  Hereinafter, embodiments of the present invention will be described in detail with reference to the drawings.

  FIG. 1 is a system configuration diagram showing an example of the configuration of the authentication information management system 1 of the present invention.

  In the authentication information management system 1 of the present embodiment, one or a plurality of multifunction peripherals 100, one or a plurality of IC card authentication servers 200, and one or a plurality of directory service servers 300 include a LAN (local area network) 400 or a WAN (wide). (Area network) 500 is connected.

  As will be described later, the IC card authentication server 200 and the directory service server 300 can be regarded as an authentication server 600 together.

  The multifunction peripheral 100 (image forming apparatus) has various functions such as printing. Also, the user information and the card information (authentication information) of the IC card are transmitted to the IC card authentication server 200 to make an authentication request. In the present embodiment, the card information of the IC card is key information that permits the use of the multifunction device 100. In this embodiment, an IC card is used for explanation. However, the present invention is not limited to an IC card, and any storage medium that can be used for user authentication owned by a user may be used.

  The IC card authentication server 200 stores an IC card authentication table (shown in FIG. 10 to be described later), and the IC card authentication server 200 responds to the authentication request by the IC card from the multifunction device 100 or the authentication request by the user name and password. Authentication processing is performed using the authentication table.

  The directory service server 300 includes hardware resources such as servers and clients existing on the network, user attributes (for example, Microsoft Windows (registered trademark) login user name and password), access rights, and the like. For example, a server equipped with an active directory (Active Directory (registered trademark)) function or an LDAP (Lightweight Directory Access Protocol) server.

  Hereinafter, a hardware configuration of an information processing apparatus applicable to the IC card authentication server 200 and the directory service server 300 illustrated in FIG. 1 will be described with reference to FIG.

  FIG. 2 is a block diagram showing a hardware configuration of an information processing apparatus applicable to the IC card authentication server 200 and the directory service server 300 shown in FIG.

  In FIG. 2, reference numeral 201 denotes a CPU that comprehensively controls each device and controller connected to the system bus 204. Further, the ROM 202 or the external memory 211 is necessary to realize a BIOS (Basic Input / Output System) or an operating system program (hereinafter referred to as an OS), which is a control program of the CPU 201, or a function executed by each server or each PC. Various programs to be described later are stored.

  A RAM 203 functions as a main memory, work area, and the like for the CPU 201. The CPU 201 implements various operations by loading a program or the like necessary for execution of processing from the ROM 202 or the external memory 211 into the RAM 203 and executing the loaded program.

  An input controller 205 controls input from a keyboard (KB) 209 or a pointing device such as a mouse (not shown). A video controller 206 controls display on a display device such as a CRT display (CRT) 210. In FIG. 2, although described as CRT 210, the display device is not limited to the CRT, but may be another display device such as a liquid crystal display. These are used by the administrator as needed.

  A memory controller 207 is provided in an external storage device (hard disk (HD)), a flexible disk (FD), or a PCMCIA card slot for storing a boot program, various applications, font data, user files, editing files, various data, and the like. Controls access to an external memory 211 such as a compact flash (registered trademark) memory connected via an adapter.

  A communication I / F controller 208 connects and communicates with an external device via a network (for example, the LAN 400 shown in FIG. 1), and executes communication control processing in the network. For example, communication using TCP / IP is possible.

  Note that the CPU 201 enables display on the CRT 210 by executing outline font rasterization processing on a display information area in the RAM 203, for example. In addition, the CPU 201 enables a user instruction with a mouse cursor (not shown) on the CRT 210.

  Various programs (for example, an authentication information management program) to be described later for realizing the present invention are recorded in the external memory 211 and are executed by the CPU 201 by being loaded into the RAM 203 as necessary. Furthermore, definition files and various information tables used when executing the program are also stored in the external memory 211, and a detailed description thereof will be described later.

  Next, the hardware configuration of the controller unit that controls the multifunction peripheral 100 as the information processing apparatus of the present invention will be described with reference to FIG.

  FIG. 3 is a block diagram illustrating an example of a hardware configuration of the controller unit of the multifunction peripheral 100 illustrated in FIG.

  In FIG. 3, reference numeral 316 denotes a controller unit which is connected to a scanner 314 functioning as an image input device and a printer 312 functioning as an image output device, while being connected to a LAN (for example, the LAN 400 shown in FIG. 1) or a public line (WAN). By connecting to (for example, PSTN or ISDN (registered trademark)), input / output of image data and device information is performed.

  In the controller unit 316, reference numeral 301 denotes a CPU, which is a processor that controls the entire system. A RAM 302 is a system work memory for the CPU 301 to operate, and is also a program memory for recording a program and an image memory for temporarily recording image data.

  A ROM 303 stores a system boot program and various control programs. An external storage device (hard disk drive (HDD)) 304 stores various programs (for example, an authentication information management program) for controlling the system, image data, and the like.

  An operation unit interface (operation unit I / F) 307 is an interface unit with the operation unit (UI) 308 and outputs image data to be displayed on the operation unit 308 to the operation unit 308. The operation unit I / F 307 serves to transmit information (for example, user information) input by the system user from the operation unit 308 to the CPU 301. Note that the operation unit 308 includes a display unit having a touch panel, and various instructions can be given by a user pressing (touching with a finger or the like) a button displayed on the display unit.

  A network interface (Network I / F) 305 is connected to a network (LAN) and inputs / outputs data. A modem (MODEM) 306 is connected to a public line (WAN) and inputs / outputs data such as FAX transmission / reception.

  Reference numeral 318 denotes an external interface (external I / F), which is an I / F unit that accepts external inputs such as USB, IEEE 1394, printer port, and RS-232C. In this embodiment, for reading an IC card required for authentication The card reader 319 is connected to the external I / F unit 318. The CPU 301 can control reading of information from the IC card by the card reader 319 via the external I / F 318, and can acquire information read from the IC card.

Note that the storage medium is not limited to an IC card, and any storage medium that allows the user to use the image forming apparatus may be used. In this case, individual key information (authentication information) for permitting the user to use the image forming apparatus is stored in the storage medium. This key information may be a production number of the storage medium or a user code given by the user within the company.
The above devices are arranged on the system bus 309.

  Reference numeral 320 denotes an image bus interface (IMAGE BUS I / F), which is a bus bridge that connects the system bus 309 and an image bus 315 that transfers image data at high speed and converts the data structure.

  The image bus 315 is configured by a PCI bus or IEEE1394. The following devices are arranged on the image bus 315.

  A raster image processor (RIP) 310 develops vector data such as a PDL code into a bitmap image. A printer interface (printer I / F) 311 connects the printer 312 and the controller unit 316, and performs synchronous / asynchronous conversion of image data. A scanner interface (scanner I / F) 313 connects the scanner 314 and the controller unit 316 and performs synchronous / asynchronous conversion of image data.

  An image processing unit 317 corrects, processes, and edits input image data, and prints

For example, printer correction and resolution conversion are performed on the output image data. In addition to this, the image processing unit 317 performs image data rotation and compression / decompression processing such as JPEG for multi-valued image data and JBIG, MMR, MH for binary image data.

  The scanner unit 314 illuminates an image on paper as a document and scans it with a CCD line sensor, thereby converting it into an electrical signal as raster image data. The original paper is set on the tray of the original feeder, and when the apparatus user gives a reading start instruction from the operation unit 308, the CPU 301 gives an instruction to the scanner 314, and the feeder feeds the original paper one by one to read the original image. I do.

  The printer unit 312 is a part that converts raster image data into an image on paper. The method is an electrophotographic method using a photosensitive drum or a photosensitive belt, and ink is ejected from a micro nozzle array directly on the paper. There is an inkjet method for printing an image, but any method may be used.

  The activation of the printing operation is started by an instruction from the CPU 301. The printer unit 312 has a plurality of paper feed stages so that different paper sizes or different paper orientations can be selected, and has a paper cassette corresponding thereto.

  The operation unit 308 has an LCD display unit, and a touch panel sheet is pasted on the LCD. The operation unit 308 displays an operation screen of the system. When a displayed key is pressed, the position information is displayed on the operation unit I / F 307. To the CPU 301 via The operation unit 308 includes, for example, a start key, a stop key, an ID key, a reset key, and the like as various operation keys.

  Here, the start key of the operation unit 308 is used when starting a document image reading operation. At the center of the start key, there are two color LEDs, green and red, which indicate whether or not the start key can be used. Further, the stop key of the operation unit 308 functions to stop the operation in operation. The ID key of the operation unit 308 is used when inputting the user ID of the user. The reset key is used when initializing settings from the operation unit.

  The card reader 319 reads information stored in an IC card (for example, Sony FeliCa (registered trademark)) under the control of the CPU 301, and reads the read information via the external I / F 318. The CPU 301 is notified.

  Next, a functional block diagram of the MFP 100 as the image forming apparatus of the present invention and the authentication server 600 (IC card authentication server 200, directory service server 300) shown in FIG. 4 will be described.

  In addition, the detailed control which each functional block processes is demonstrated with the flowchart mentioned later.

  The user authentication request unit 401 of the multifunction peripheral 100 acquires the user name, password, and user authentication (confirmation) destination user information input by the user operation from the operation unit 308. Also, the acquired user information is transmitted as an authentication request to the authentication server 600 via the network interface 305.

  The user authentication request unit 401 corresponds to processing in steps S601 to S602 described later.

  The user authentication unit 425 of the authentication server 600 searches the IC card authentication table (shown in FIG. 5 described later) according to the user information received from the multi-function device 100 via the communication I / F controller 208, and receives the received user information. It is determined whether or not the user name included in.

  Note that the user authentication unit 425 corresponds to processing in steps S603 to S604 and steps S801 to S807 described later.

  The user authentication result transmission unit 427 of the authentication server 600 transmits the authentication result determined by the user authentication unit 425 to the multifunction device 100.

  Note that the user authentication result transmission unit 427 corresponds to the processing in step S605 described later.

  The user authentication result acquisition unit 403 of the MFP 100 acquires the authentication result from the authentication server 600. When the authentication OK authentication result is acquired, the screen is shifted to a screen (shown in FIG. 10 described later) for registering or deleting the card information of the IC card and changing the user password.

  The user authentication result acquisition unit 403 corresponds to processing in steps S606 to S607 described later.

  The display unit 405 of the multifunction device 100 displays a screen (shown in FIG. 10 described later) for switching a mode for updating information on the operation unit 308 of the multifunction device 100. Specifically, on the screen, it is possible to switch to a mode for registering card information, a mode for deleting card information, and a mode for changing a password for user information.

  The display unit 405 corresponds to processing in steps S608 and S901 to S906 described later.

  The authentication information transmission unit 407 of the MFP 100 transmits the card information of the IC card acquired by the second authentication information acquisition unit 419 so as to be registered by the authentication server 600.

  Note that the authentication information transmission unit 407 corresponds to the processing in step S1103 described later.

  The authentication information deletion instruction unit 409 of the multifunction peripheral 100 instructs the authentication server 600 to delete one or more card information of the user authenticated by the user authentication unit 425.

  Note that the authentication information deletion instruction unit 409 corresponds to the processing in step S1408 described later.

  The first authentication information acquisition unit 411 of the multifunction peripheral 100 acquires all card information of the user authenticated by the user authentication unit 425 from the authentication server 600.

  Note that the first authentication information acquisition unit 411 corresponds to processing in step S1405, step S2105, and step S2205 described later.

  The authentication information list display unit 413 of the multifunction peripheral 100 displays a list of card information acquired by the first authentication information acquisition unit 411.

  Note that the authentication information list display unit 413 corresponds to processing in step S1406, step S2106, and step S2206 described later.

  The authentication information selection unit 415 of the multifunction peripheral 100 allows the user to select card information to be deleted by the authentication information deletion instruction unit 409 from the card information list displayed by the authentication information list display unit 413. In addition, the user can select the card information for which the inventory instruction unit 422 instructs the inventory.

  Note that the authentication information selection unit 415 corresponds to processing in step S1407, steps S2016 to S2107, and step S2207, which will be described later.

  The authentication information reading unit 417 of the multifunction device 100 reads the card information of the IC card held by the user over the card reader 319 or the like in order to perform card information registration processing or deletion processing.

  The second authentication information acquisition unit 419 of the multifunction peripheral 100 acquires card information (for example, a card number) read by the authentication information reading unit 417 such as the card reader 319. The acquired card information is transferred to the authentication information transmission unit 407, the authentication information determination unit 421, and the like.

  When acquiring card information, a notification screen (shown in FIGS. 12 and 16 described later) is displayed to notify the user to hold the IC card over the card reader 319.

  Note that the authentication information reading unit 417 and the second authentication information acquisition unit 419 correspond to the processing of S1101 and S1407 described later.

  The authentication information determination unit 421 of the multifunction device 100 determines whether the card information selected by the user by the authentication information selection unit 415 matches the card information acquired by the second authentication information acquisition unit 419.

  If they match, the authentication information deletion instruction unit 409 instructs the authentication server 600 to delete the card information selected by the user in the authentication information selection unit 415 as a deletion target.

  Note that the authentication information determination unit 421 corresponds to the processing in step S1407 described later.

  The authentication information name input unit 423 corresponds to FIG. 13 and accepts input of a card name input by the user on the screen of FIG.

  The print data output unit corresponds to step S2114 in FIG. 20, generates print data for the lost notification form, and controls output to the image processing unit 317 of the multifunction peripheral 100.

  In response to step S2206 in FIG. 22, the inventory instruction unit transmits an inventory request including card information selected by holding the IC card to the authentication server 600.

  In this embodiment, when the card information is deleted (when 1001 in FIG. 10 is pressed), first, all the card information of the user authenticated by the user authentication unit 425 is stored in the first authentication information acquisition unit 411. Get in. Then, the list of acquired card information is displayed on the authentication information list display unit 413. The card information to be deleted is selected by the authentication information selection unit 415 by the user. Next, the authentication information reading unit 417 causes the user to read the IC card corresponding to the card information to be deleted, and the second authentication information acquisition unit 419 acquires the read card information. Further, the authentication information determination unit 421 compares the card information selected by the user with the authentication information selection unit 415 with the card information acquired with the second authentication information acquisition unit 419. If the card information matches, the authentication information deletion instruction unit 409 transmits the matched card information to the IC card authentication server 200 to delete the card information from the IC card authentication table (shown in FIG. 5 described later). Let

  In the present embodiment, the card information is deleted by holding the IC card, but it is also possible to delete without holding the IC card.

  When the lost card information is deleted (when 1009 in FIG. 10 is pressed), all the card information of the user authenticated by the user authentication unit 425 is first acquired by the first authentication information acquisition unit 411. To do. Then, the list of acquired card information is displayed on the authentication information list display unit 413. An authentication information reading unit 417 reads an IC card owned by the user (an IC card that is not deleted) from among them, and the second authentication information acquisition unit 419 acquires the read card information. Further, the authentication information determination unit 421 compares the card information selected by the user with the authentication information selection unit 415 with the card information acquired with the second authentication information acquisition unit 419. When the card information matches, the authentication information selection unit 415 puts the matched card information into a non-selected state, and sets the card information that does not match into the selected state. The authentication information deletion instruction unit 409 transmits the card information in the selected state that does not match to the IC card authentication server 200 to delete the card information from the IC card authentication table (shown in FIG. 5 described later).

  Further, when IC card inventory is performed (when 1011 in FIG. 10 is pressed), first, all the card information of the user authenticated by the user authentication unit 425 is acquired by the first authentication information acquisition unit 411. Then, the list of acquired card information is displayed on the authentication information list display unit 413. The IC card to be inventoried by the user is read by the authentication information reading unit 417, and the read card information is acquired by the second authentication information acquiring unit 419. Further, the authentication information determination unit 421 compares the card information selected by the user with the authentication information selection unit 415 with the card information acquired with the second authentication information acquisition unit 419. If the card information matches, the authentication information selection unit 415 sets the matched card information to the selected state, and sets the card information that does not match to the unselected state. The authentication information deletion instructing unit 409 transmits the matched card information in the selected state to the IC card authentication server 200, whereby the target card information stored in the IC card authentication table (shown in FIG. 5 described later) is stored. The inventory flag is turned ON by the inventory unit 436. Thereafter, in order to delete the card information that could not be stocked, the authentication information deletion instruction unit 409 transmits the card information that could not be stocked to the IC card authentication server 200.

  The authentication information registration unit 429 of the authentication server 600 performs card information registration processing in an IC card authentication table (shown in FIG. 5 described later) in accordance with a registration command received from the multifunction device 100.

  The authentication information registration unit 429 corresponds to the processes of S1104 to S1113.

  The authentication information deletion unit 431 of the authentication server 600 performs card information deletion processing from the IC card authentication table (shown in FIG. 5 described later) in accordance with the deletion command received from the multi-function device 100.

  Note that the authentication information deletion unit 431 corresponds to processing in steps S1409 to S1411 described later.

  The key number determination unit 433 of the authentication server 600 compares the card number (key number) with respect to whether the card information of the card to be registered is already included in the user card information during the registration process in the authentication information registration unit 429. Judgment by

  If the key number determination unit 433 determines that a card having the same card number as the card number to be registered is included in the user card information, the validity information determination unit 435 And the validity information of the card having the same card number as the card to be registered in the user's card information are compared to determine whether they match.

  The processes of the key number determination unit 433 and the validity information determination unit 435 correspond to the processes of steps S1106 to S1107 and step S1110 described later.

  The inventory unit 436 corresponds to steps S2209 to S2211 in FIG. 22 and the processing in FIG. 23, and updates the IC card authentication table and notifies the user at the inventory time.

  Here, with reference to FIG. 5, an IC card authentication table used for permitting use of the multifunction device 100 and user authentication will be described.

  FIG. 5 is a data configuration diagram showing an example of the IC card authentication table 5 in the authentication information management system 1 of the present invention.

  As shown in FIG. 5, the IC card authentication table 5 includes a user name 501, an authentication domain name 502, card information 503, a mail address 504, an expiration date 505, valid / invalid 506, function restriction information 507, a department ID 508, a department. It consists of information such as a password 509. The card information 503 includes a card number 511, validity information 513, a card name 515, and a card inventory execution flag 516. A plurality of card information can be registered for one user. In other words, in the IC card authentication table, user names (user information for identifying users) and card numbers 511 (first authentication information included in a plurality of storage media) of a plurality of IC cards are associated with each other. It is remembered.

  The user name 501 is the name of the user who uses the multifunction device 100.

  The authentication domain name 502 indicates where the authentication destination server is on the network. The authentication destination is the IC card authentication server 200, the directory service server 300, or the like.

  The card information 503 is card information of an IC card that allows the user to use the multifunction device 100. In the present embodiment, the card information 503 of the IC card is authentication information that permits the use of the multifunction peripheral 100 (image forming apparatus). The card information 503 includes a card number 511, validity information 513, a card name 515, and a card inventory execution flag 516.

  The card number 511 is a string of numbers and characters for identifying individual cards.

  The validity information 513, the card name 515, and the card inventory execution flag 516 will be described later.

  The mail address 504 is a mail address owned by the user, and is used when a notification regarding the use of the multifunction device 100 is transmitted from the multifunction device 100 to the user.

  The expiration date 505 is an expiration date for use of the multifunction device 100 determined by the user. When the expiration date is exceeded, the user cannot use the multifunction device 100.

  Valid / invalid 506 is information indicating whether or not the user can use the multifunction device 100. When the multifunction peripheral 100 is not used, information indicating invalidity is written.

  The function restriction information 507 indicates the contents of restrictions on the use of the multifunction device 100 set for the user.

  For example, a 4-digit number string indicates the function restrictions, the first digit uses the copy function, the second digit uses the printer function, the third digit uses the scanner function, and the fourth digit uses the FAX function. The restriction content shall be indicated. For each digit, 0 = unusable, 1 = usable, etc. At this time, if the user can use only the copy function and the FAX function, the function restriction information is “1001”.

  The department ID 508 is an ID indicating the internal department to which the user belongs. The department password 509 is a password associated with the department ID 508.

  In this embodiment, among the items in the IC card authentication table 5, items other than the card information 503 are registered in advance by the administrator or during user management.

  An outline of the validity information 513, the card name 515, and the card inventory execution flag 516 in the card information 503 will be described below.

  The validity information 513 in the card information 503 is numerical information registered in the IC card. This information is used, for example, to distinguish a lost IC card from a reissued IC card when the IC card is lost.

  By adding one value from the validity information of the lost IC card and reissuing the IC card, it is possible to distinguish it from the lost IC card. It can prevent misuse of lost IC card and keep security.

  The card name 515 is displayed together when the card number of the IC card is displayed on a card information deletion screen (shown in FIG. 15 described later) or the like so that the user can easily discriminate. The card name can be set on a card registration / card name input screen (shown in FIG. 13 described later) at the time of card information registration.

  The card inventory execution flag 516 is a flag indicating whether or not the card inventory is executed (ON / OFF). When the card inventory execution date held in the IC card authentication server 200 is reached, the card inventory execution flag 516 of all card information is set to OFF, and the user is notified of the inventory execution request by e-mail.

  The user performs card information inventory on the card information inventory screen (shown in FIG. 21 described later) of the multifunction peripheral 100. The card inventory execution flag 516 of the card information for which inventory has been executed is set to ON.

  Hereinafter, description will be given of user information management processing, card information registration, card information deletion, and password change in the authentication information management system 1 of the present embodiment with reference to flowcharts and drawings of FIGS.

  First, a user information management process in the authentication information management system 1 of the present embodiment will be described with reference to FIG.

  FIG. 6 is a flowchart showing an example of user information management processing in the authentication information management system 1 of the present invention.

  This process is performed by the multifunction device 100 and the IC card authentication server 200.

  First, when a user presses a “user information management” button (not shown) provided in the multifunction peripheral 100, a user authentication screen is displayed.

  FIG. 7 is a diagram showing a user authentication screen 700 in the authentication information management system 1 of the present invention.

  The user authentication screen 700 includes a user name input unit 701, a password input unit 703, a user confirmation destination selection unit 705, an IC card authentication button 707, and a user confirmation button 709.

In addition, a message for inputting user information is displayed. For example, “Enter user name and password and press user confirmation button”.
The user name input unit 701 inputs a user name.

  The password input unit 703 inputs a password corresponding to the user name.

  The user confirmation destination selection unit 705 selects a server for user authentication. The user authentication destination includes an IC card authentication server 200, a directory service server 300, and the like.

  The IC card authentication button 707 is for displaying a screen (not shown) for holding the IC card over the user during the printing process.

  The user confirmation button 709 is for transmitting input contents to a server for user authentication.

  In step S601, the user name, password, and user authentication destination input by the user operation on the user authentication screen are acquired. User authentication destinations include an IC card authentication server 200, Windows (registered trademark) Active Directory (registered trademark), and a directory service server 300 such as an LDAP server.

  Note that the acquired user name, password, and user authentication destination are stored in the RAM 302 and used in the processing of steps S1103 and S1401 described later.

  In step S602, the multifunction peripheral 100 transmits the user name, password, and user authentication destination acquired in step S601 to the IC card authentication server 200 in response to a user operation.

  In step S603, the IC card authentication server 200 receives the user name, password, and user authentication destination.

  In step S604, the IC card authentication server 200 executes user authentication processing based on the information received in step S603.

  The user authentication process will be described later with reference to the flowchart of FIG.

  In the present invention, after a user presses a “user information management” button (not shown), a user name, a password, and a user authentication destination are input, and registration processing and deletion processing described later are executed. However, it is not limited to this. For example, the IC card is held over a card reader provided in the multi-function device 100, and the card number included in the IC card is transmitted to the IC card authentication server 200, and when authenticated, a registration process and a deletion process described later are executed. It is also possible to configure.

Further, in addition to the card manufacturing number, the user can arbitrarily store information in the IC card. For example, an employee number assigned by a company is embedded. In this case, it is also possible to perform authentication processing using this employee number (user information).

  In step S605, the IC card authentication server 200 transmits the user authentication result (authentication OK or authentication NG) in step S604 to the multi-function device 100.

  The multifunction device 100 receives the user authentication result in step S606.

  In step S607, the multifunction peripheral 100 determines the user authentication result received in step S606.

  If the authentication is OK, the multi-function device 100 displays an authentication information management screen (shown in FIG. 10 described later). (Step S608)

  If the authentication is NG, the multi-function device 100 displays an authentication failure screen (not shown). (Step S609)

  With reference to FIG. 8, the user authentication process of the IC card authentication server 200 in the authentication information management system 1 of the present embodiment will be described.

  FIG. 8 is a flowchart showing an example of user authentication processing of the IC card authentication server 200 in the authentication information management system 1 of the present invention.

  In step S801, the IC card authentication server 200 acquires and confirms the user authentication destination from the user name, password, and user authentication destination received in S603 described above.

  In the present embodiment, there are cases where the user authentication destination is “authentication service” and other cases (step S802).

  If the user authentication destination is “authentication service”, the IC card authentication server 200 executes authentication processing on the user information managed by the IC card authentication table 5. (Step S803)

  In other cases, authentication processing is executed for a designated authentication destination such as Windows (registered trademark) Active Directory (registered trademark) or LDAP server (directory service server 300). (Step S804)

  In the authentication process, it is confirmed whether the user information is correct, that is, whether the user name included in the user information exists in the authentication table of the authentication destination.

  In step S805, the IC card authentication server 200 acquires the result of the user authentication process performed in step S803 or step S804, that is, whether the user information is correct (whether the user name exists), Determine the authentication result.

  If the user information is correct, authentication OK is returned to the multi-function device 100 (step S806).

  If the user information is not correct, authentication NG is returned to the multi-function device 100 (step S807).

  With reference to FIG. 9, the control on the authentication information management screen of the multifunction peripheral 100 of the authentication information management system 1 of the present embodiment will be described.

  FIG. 9 is a flowchart illustrating an example of a control procedure on the authentication information management screen of the multifunction peripheral 100 in the authentication information management system 1 of the present invention.

  When the MFP 100 receives the authentication OK authentication result from the IC card authentication server 200 in step S606, the MFP 100 displays the authentication information management screen 1000 in step S608 and executes the control shown in the flowchart of FIG. To do.

  FIG. 10 is a diagram showing the authentication information management screen 1000 displayed in step S608 in the authentication information management system 1 of the present invention.

  The authentication information management screen 1000 shown in FIG. 10 has a card information registration button 1001, a card information deletion button 1003, a password change button 1005, an IC card authentication button 1007, a lost card information deletion button 1009, and a card inventory button 1011.

  A card information registration button 1001 is a button for moving to card information registration processing.

  The card information deletion button 1003 is a button for shifting to card information deletion processing.

  The password change button 1005 is a button for shifting to password change processing.

  The lost card information inventory button 1009 is a button for deleting the lost card information from the IC card authentication table 5 managed by the IC card authentication server 200 and moving to a process of outputting a lost receipt.

  The card inventory button 1011 is a button for shifting to a card inventory process.

  Note that the card inventory button 1011 is controlled to be displayed at a predetermined time (inventory implementation time as in step S2301 described later).

  The IC card authentication button 1007 is used to display a screen (not shown) for allowing the user to hold the IC card during the printing process.

  In step S901, the multi-function device 100 determines whether or not the card information registration 1001 is selected by a user operation on the authentication information management screen 1000 illustrated in FIG. When the card information registration 1001 is selected, the registration mode is entered.

  If the card information registration 1001 is selected, a card information registration screen (shown in FIG. 12 described later) is displayed in step S902.

  In step S903, the multi-function device 100 determines whether or not the card information deletion 1003 is selected by a user operation on the authentication information management screen 1000 illustrated in FIG. When the card information deletion 1003 is selected, the deletion mode is set.

  If the card information deletion 1003 is selected, a card information deletion screen (shown in FIG. 15 described later) is displayed in step S904.

  In step S905, the multi-function device 100 determines whether the password change 1005 is selected by a user operation on the authentication information management screen 1000 illustrated in FIG. When password change 1005 is selected, a password change mode is entered.

  If the password change 1005 is selected, a password change screen (shown in FIG. 18 described later) is displayed in step S906.

  In step S907, the multi-function device 100 determines whether the lost card information deletion 1009 is selected by a user operation on the authentication information management screen 1000 shown in FIG. When the lost card information deletion 1009 is selected, the lost card information deletion mode is set.

  If the lost card information deletion 1009 is selected, a lost card information deletion screen (shown in FIG. 19 described later) is displayed in step S908.

  In step S909, the multi-function device 100 determines whether the card inventory 1011 is selected by a user operation on the authentication information management screen 1000 illustrated in FIG. When the card inventory 1011 is selected, the card inventory mode is set.

  If the card inventory 1011 is selected, a card inventory screen (shown in FIG. 21 described later) is displayed in step S910.

  Note that card information registration, card information deletion, password change, lost card information deletion, and card inventory processing, which will be described later, are registered, deleted, and changed with respect to the IC card authentication table 5 provided in the IC card authentication server 200. Explain as you do.

  However, when the card information is managed by a directory service server 300 such as Windows (registered trademark) Active Directory (registered trademark) or an LDAP server, the Windows (registered trademark) Active Directory (registered trademark) is registered according to the user authentication destination. Trademark) and LDAP server information can be registered, deleted, and changed. In that case, it is possible to perform the process via the IC card authentication server 200 or to perform the process without using the IC card authentication server 200.

  That is, the IC card authentication server 200 and the directory service server 300 (Windows (registered trademark) Active Directory (registered trademark), LDAP server, etc.) can be considered as one authentication server 600 with the same casing.

  The configuration of the authentication server 600 can be arbitrarily configured according to user operations.

  Now, with reference to FIG. 11, processing when the card information registration screen is displayed in step S902 in the authentication information management system 1 of the present embodiment will be described.

  FIG. 11 is a flowchart showing an example of a control procedure when registering card information in the authentication information management system 1 of the present invention.

  When card information registration is selected in step S901 described above, a card information registration screen is displayed in step S902.

  FIG. 12 is a diagram showing a card information reading screen 1200 at the time of card information registration in the authentication information management system 1 of the present invention.

  On the card information reading screen 1200, a message is displayed to hold the IC card to be registered over the card reader 319. For example, a message such as “Register card information in the authentication service. Touch the card information registered in the card reader.” Is displayed.

  The card information reading screen 1200 includes a return button 1201 for displaying the previous screen and an OK button 1203 for confirming the card information of the IC card held over.

  In step S1101, when the IC card is held over the card reader 319 by a user operation in accordance with an instruction on the card information reading screen 1200, the multi-function device 100 acquires the card number and validity information read from the card reader 319.

  In step S1102, the multi-function device 100 displays a card registration / card name input screen for registering the card name with respect to the card number and validity information read in step S1101.

  FIG. 13 is a diagram showing a card registration / card name input screen 1300 in the authentication information management system 1 of the present invention.

  The card registration / card name input screen 1300 displays a message for registering card information of the IC card acquired in step S1101 and card information (card number). The message to be displayed is, for example, “Register card information to the authentication service. If you like, press the OK button”.

  Also, a card name (authentication information name) input unit 1301 for registering an arbitrary name in the IC card is provided. This card name is used for the user to identify the IC card.

  In addition, the card registration / card name input screen 1300 includes a return button 1303 for displaying the previous screen, and an OK button 1305 for confirming the registration contents and transmitting the registration contents to the IC card authentication server 200.

  In step S1103, in response to a user operation, the MFP 100 acquires the card information (card number, validity information, card name) input in step S1101 and the user information (user name) acquired in step S601 in step S1102. , The user authentication destination) is transmitted to the IC card authentication server 200.

  In step S1104, the IC card authentication server 200 receives the card information and user information transmitted in step S1103.

  In step S1105, the IC card authentication server 200 searches the IC card authentication table 5 for card information associated with the user information received in step S1104.

  In step S1106, the IC card authentication server 200 compares the card information received in step S1104 with the card information searched in step S1105.

  In step S1107, the IC card authentication server 200 determines that the card information having the same card number as the card information received in step S1104 exists in the card information searched in step S1105 based on the comparison result executed in step S1106. Performs the process of step S1110.

  If there is no card information with the same card number, the process of step S1108 is executed because new card information is added.

  In step S1108, the IC card authentication server 200 registers the card information received in step S1104 for the corresponding user in the IC card authentication table 5.

  If the corresponding user does not exist in the IC card authentication table 5 (that is, the user exists in the directory service server 300 such as Windows (registered trademark) Active Directory (registered trademark) or LDAP server), the IC card. It is also possible to register the user name and card information in the authentication table 5.

  In step S 1109, the registration result (registration OK) is transmitted to the multi-function device 100.

  On the other hand, if the card information having the same card number as the card information received in step S1104 exists in the card information searched in step S1105 based on the comparison result executed in step S1106, the branch in step S1107 is YES. The process proceeds to step S1110.

  If the IC card authentication server 200 determines in step S1110 that the validity information is the same for the card information having the same card number from the comparison result executed in step S1106, the card information of the same IC card has already been registered. In step S1113, a card information registration failure (registration NG) is transmitted to the multi-function device 100.

  If it is determined that the validity information is different for the card information of the same card number, it is determined that the card information is updated, and the card information update process (update of validity information, update of card name) is performed in step S1111. And update the existing card information (same card number) with the card information received in step S1104.

  Thereafter, the card information update result and the registration result (registration OK) are transmitted to the multi-function device 100 in step S1112.

  However, even if the card information of the same card number is different from the validity information, if the value of the validity information of the card information received in step S1104 is smaller than that before the IC card is reissued Since it is determined to be a card, the registration information is transmitted to the multi-function device 100 without updating the card information.

  The legitimacy information is information indicating reissuance, but the case where the card number matches even though it is reissued is a case where, for example, an employee number is arbitrarily placed in the card during operation. In the case where the employee number is used in the same manner as the card number, the card number of the IC card reissued due to loss or the like matches the IC card before reissuance, but the validity information does not match. Furthermore, when a card is reissued, the IC card is reissued by adding one value to the numerical value representing the validity information. Therefore, if the numerical value representing the validity information is smaller, the previous IC that has been lost, etc. Judged as a card. Therefore, even if an attempt is made to register a previous card that has been lost or the like by the above processing, the validity information is a small numerical value, so that registration is not performed. As a result, misuse of the lost IC card can be prevented and security can be maintained.

  The multifunction peripheral 100 receives the registration results transmitted in step S1109, step S1112, and step S1113 in step S1114.

  In step S1115, the multifunction peripheral 100 determines the registration result received in step S1114.

  If the card information registration failure (registration NG) is received, the process proceeds to step S1116. In step S1116, the multifunction peripheral 100 displays a card information registration failure screen (not shown).

  If the card information registration success (registration OK) is received, the process proceeds to step S1117.

  In step S1117, the multi-function device 100 determines whether the card information update result is received in step S1114.

  If the card information has been updated, a card information update success screen (not shown) is displayed (step S1119).

  If the card information has not been updated, the card information registration success screen (not shown) is displayed because the registration of new card information has been successful (step S1118).

  Next, processing when the card information deletion is selected in step S903 in the authentication information management system 1 of the present embodiment will be described with reference to FIG.

  FIG. 14 is a flowchart showing an example of a control procedure when deleting card information in the authentication information management system 1 of the present invention.

  When deletion of card information is selected in step S903 described above, the multi-function device 100 transmits a request for acquiring card information held by the user to the IC card authentication server 200 in step S1401. At this time, the user information (user name, user authentication destination) acquired in step S601 is transmitted.

  In the present invention, the screen shown in FIG. 15 is displayed and the selected card information is deleted as will be described later, but the IC card is deleted after the card information deletion 1003 button in FIG. 10 is pressed. Hold the card reader 319 and send the card number obtained from the card reader 319 to the IC card authentication server 200, and the IC card authentication server 200 deletes this card information (card number, card name, etc.). May be.

  In addition, since there is a case where one user is operating such as holding a common IC card in a department with a personal IC card, the card information (card number, card name, etc.) of a specific user is stored. In order to delete the user information, the user information acquired in step S601 may be transmitted to the IC card authentication server 200.

  As described above, after the button for deleting card information 1003 in FIG. 10 is pressed, the IC card is held over the card reader 319, and the card number obtained from the card reader 319 is transmitted to the IC card authentication server 200. When the authentication server 200 is configured to delete the card information (card number, card name, etc.), the notification (display notification screen) is made not to display the screen of FIG. 15 but to hold the card to be deleted. You may comprise.

  Further, the screen of FIG. 15 is displayed, and when the IC card is held over, the card information matching the card number of the IC card is automatically selected at 1501 of FIG. 15, and an OK button 1507 is displayed. It is also possible to configure the IC card authentication server 200 to issue a delete instruction when pressed.

  This saves the user from having to select card information on the screen of FIG. 15 described later, and allows the card information to be easily deleted.

  For example, even if the list is displayed in 1501 of FIG. 15 and it is not possible to determine which card the user is trying to delete corresponds to (forgetting), without the user selecting card information, Since it can be deleted by holding the IC card, it is particularly effective.

  In step S1402, the IC card authentication server 200 receives a card information acquisition request.

  Then, in step S1403, the IC card authentication server 200 searches for card information associated with the received user information (user name, user authentication destination).

  In step S1404, the IC card authentication server 200 transmits the card information searched in step S1403 to the multi function device 100.

  The card information includes a card number, validity information, and a card name.

  In step S1405, the MFP 100 receives the card information, and displays a list of the received card information in step S1406.

  FIG. 15 is a diagram showing a card information deletion screen 1500 in the authentication information management system 1 of the present invention, which is displayed by the multi-function device 100 in step S1406.

  The card information deletion screen 1500 displays a card information list display unit 1501 that displays a list of card information associated with user information in a selectable manner, an all selection button 1503 that instructs all selections of the displayed card information, and a previous screen. A return button 1505 for confirming, and an OK button 1507 for confirming the selected card information.

  In addition, a message for selecting and deleting the card information to be deleted from the card information displayed in the list is displayed. The message is, for example, “Delete card information registered in the authentication service. Select the card information you want to delete. Click the OK button if it is OK”.

  In the present invention, as shown in FIG. 15, a card information list display unit 1501 on the card information deletion screen 1500 displays a list of card information linked to user information in a selectable manner, and the selected card information is displayed with an OK button 1507. Although the deletion instruction is given by pressing the button, the present invention is not limited to this. For example, a configuration may be adopted in which a list of card information associated with user information is not displayed so as to be selectable when displayed on the card information list display unit 1501 (a list of card information is simply displayed). In this case, when the OK button 1507 is pressed, a deletion instruction is issued to the IC card authentication server 200 to delete all card information.

  Further, the card information list display unit 1501 is configured to display the card information of the card name and the card number, but may be configured to display either one of the card name or the card number.

  In step S1407, when selection of card information to be deleted from the list-displayed card information is executed by a user operation, the multi-function device 100 displays a card information reading screen 1600 at the time of card information deletion shown in FIG. .

  FIG. 16 is a diagram showing a card information reading screen 1600 when the card information is deleted in the authentication information management system 1 of the present invention, which is displayed by the multi-function device 100 in step S1407.

  The card information reading screen 1600 confirms the card information display unit 1601 that displays the card information selected in step S1407, the return button 1603 for displaying the previous screen, and the card information to be deleted. Has an OK button 1605 for transmitting to.

  Further, an IC card corresponding to the displayed card information is held over the card reader 319, and a message is displayed to delete the card information. The message is, for example, “Delete the following card information registered in the authentication service. Touch the card on the card reader.”

  When the IC card is held over by a user operation, the multi-function device 100 compares the selected card information with the read card information, and if it is the same card number, recognizes it as card information to be deleted.

  The operation of selecting the card information displayed in a list and holding the card over can be executed for one or a plurality of card information.

  Further, in this embodiment, after selecting on the card information deletion screen 1500, the IC card is held over and the card information with the matching card information is deleted, but the IC card is simply held over without being selected. It can also be configured to be deleted. In this case, the card information of the IC card read by the card reader 319 can be deleted by transmitting it to the IC card authentication server 200.

  Further, the IC card may be deleted only by selecting without holding the IC card. In this case, the selected card information is transmitted to the IC card authentication server 200.

  When the card information is deleted by a user operation (when the OK button 1605 is pressed in FIG. 16), the multifunction peripheral 100 determines in step S1408 the card information (card number, valid) designated as the deletion target in step S1407. And the user information (user name, user authentication destination) are transmitted to the IC card authentication server 200 as a card information deletion request.

  In step S1409, the IC card authentication server 200 receives the card information deletion request.

  Next, in step S1410, the IC card authentication server 200 deletes the card information to be deleted from the card information corresponding to the user name included in the card information deletion request from the IC card authentication table 5.

  In step S1411, the IC card authentication server 200 transmits the card information deletion result (deletion success, deletion failure) to the multi function device 100.

  In step S1412, the multi-function device 100 receives the card information deletion result.

  Subsequently, the multifunction peripheral 100 determines the card information deletion result in step S1413, and if the deletion is successful, displays a card information deletion success screen (not shown) (step S1414).

  If the deletion has failed due to a system failure or the like, a card information deletion failure screen (not shown) is displayed (step S1415).

  Next, the processing when the password change screen is displayed in step S906 in the authentication information management system 1 of the present embodiment will be described with reference to FIG.

  FIG. 17 is a flowchart showing an example of a control procedure when changing a password in the authentication information management system 1 of the present invention.

  When password change is selected in step S905 described above, a password change screen shown in FIG. 18 is displayed in step S906.

  FIG. 18 is a diagram showing a password change screen 1800 in the authentication information management system 1 of the present invention.

  The password change screen 1800 has a password input unit 1801 for inputting a password, a return button 1803 for returning to the previous screen, and an OK button 1805 for confirming the input contents and transmitting them to the IC card authentication server 200. The password input unit 1801 is provided with two input fields, and a confirmation input of the input password is possible.

  It also displays a message to change the password. The message is, for example, “Change the password registered in the authentication service. Enter the password twice and press the OK button”.

  In step S <b> 1701, the multifunction peripheral 100 acquires a new password input by a user operation via the password change screen 1800.

  In step S1702, the multi-function device 100 transmits the new password acquired in step S1701 and the user information (user name, user authentication destination) acquired in step S601 to the IC card authentication server 200.

  In step S1703, the IC card authentication server 200 receives the new password and user information (user name, user authentication destination) transmitted in step S1702.

  In step S1704, the IC card authentication server 200 changes the password of the corresponding user in the IC card authentication table 5 to a new password.

  In step S <b> 1705, the IC card authentication server 200 transmits a password change result (change success, change failure) to the multi-function device 100.

  The multi-function device 100 receives the password change result in step S1706.

  The multifunction device 100 determines the received password change result in step S1707.

  If the password change result is successful, a password change success screen is displayed (step S1708).

  If the password change fails due to a system failure or the like and the password change result is a change failure, a password change failure screen is displayed (step S1709).

  Next, a process when the lost card information deletion screen is displayed in step S908 in the authentication information management system 1 of the present embodiment will be described with reference to FIG.

  FIG. 20 is a flowchart showing an example of a control procedure when deleting lost card information in the authentication information management system 1 of the present invention.

  When the deletion of lost card information is selected in step S907 described above, the lost card information deletion mode (lost storage medium deletion mode) is entered, and in step S908, the lost card information deletion screen shown in FIG. 19 is displayed.

  FIG. 19 is a view showing a lost card information deletion screen 1900 in the authentication information management system 1 of the present invention.

  The lost card information deletion screen 1900 has a card information display unit 1901 for displaying card information owned by the user, a return button 1903 for returning to the previous screen, and confirms the lost card information and transmits it to the IC card authentication server 200. An OK button 1905 is provided. The card information display unit 1901 displays all the card information owned by the user in a selected state.

  In addition, a message for confirming lost card information is displayed. The message is, for example, “Delete the lost card information. Touch all the cards you have on the card reader. The card information touched on the card reader will change from selected to unselected. The card information is sent as a lost card. Please press the OK button. "

  In step S2101, the multi-function device 100 transmits a card information acquisition request including the user information (user name, user authentication destination) acquired in step S601 to the IC card authentication server 200.

  In step S2102, the IC card authentication server 200 receives the card information acquisition request.

  Then, in step S2103, the IC card authentication server 200 searches for card information associated with the received user information (user name, user authentication destination).

  In step S2104, the IC card authentication server 200 transmits the card information searched in step S2103 to the multifunction peripheral 100 (authentication information transmission). The card information includes a card number, validity information, and a card name.

  In step S2105, the multifunction peripheral 100 receives the card information (authentication information reception), and in step S2106, displays a list of all received card information in a selected state (authentication information list display).

  In step S2107, the card number held by the card reader by the user operation is acquired, and it is determined whether or not there is card information that matches the acquired card number and the card number of the card information displayed in a list (first display). Authentication information identification). If there is card information with matching card numbers, the matching card information is changed to an unselected state on the list display and displayed. Thereby, the matched card information and the mismatched card information are displayed in an identifiable manner.

  When the lost card information deletion is executed by a user operation (when the OK button 1905 is pressed in FIG. 19), the multifunction peripheral 100 is selected in the list display designated as the deletion target in step S2107 in step S2108. Card information (card number, validity information, card name) and user information (user name, user authentication destination) are transmitted to the IC card authentication server 200 as a lost card information deletion request (deletion request transmission).

  In step S2109, the IC card authentication server 200 receives a lost card information deletion request (deletion request reception).

  Next, in step S2110, the IC card authentication server 200 deletes card information that matches the card information corresponding to the user name included in the lost card information deletion request from the IC card authentication table 5. At this time, the deleted card information is output to a log. The administrator can also manage and confirm lost card information from this log.

  In step S <b> 2111, the IC card authentication server 200 transmits the card information deletion result (successful deletion and deleted card information, deletion failure) to the multifunction peripheral 100.

  The multifunction device 100 receives the card information deletion result in step S2112.

  Subsequently, the multifunction peripheral 100 determines the card information deletion result in step S2113, and if the deletion is successful, outputs a lost notice describing the card information deleted in step S2114 (output means). Thereafter, in step S2115, a card information deletion success screen (not shown) is displayed.

  If the deletion has failed due to a system failure or the like, a card information deletion failure screen (not shown) is displayed (step S2116).

  Note that the lost notification in step S2114 is stored in advance in the MFP 100 in the form of the lost notification (not shown) in the external storage device 304. This form includes the card number and the card number included in the card information deletion result. The name of the user who has logged in to the multifunction device 100 (the name of the user whose card has been deleted) is input, and lost notification data is generated. The lost notification data is converted into image data by the image processing unit 317 and printed by the printer unit 312. The loss notification form has an area for filling in the reason for loss.

  In the present embodiment, the lost notification form is held in the MFP 100 and the lost notification form is printed. However, the lost notification form is held in the IC card authentication server 200, and the IC card is used. Lost notification data may be generated by the authentication server 200. In this case, the lost notification data is transmitted to the MFP 100 that has requested deletion via the printer driver stored in the IC card authentication server 200.

  According to the embodiment of the present invention, by deleting an IC card (storage medium) owned by a user, a plurality of IC cards (storage media) registered for one user can be deleted (multi-function machine (image forming)). Device).

  Further, since the IC card information can be deleted and a loss notification for applying for the loss of the IC card can be output from the multi-function device 100, the application at the time of the loss can be facilitated. In particular, it is easy for the administrator to identify which IC card has been lost when the user does not know the card number of the IC card because the IC card has been lost. It becomes easy.

  Further, since the card number of the lost IC card can be easily identified and stored as an unusable IC card, it is possible to prevent other users from using it illegally.

  Next, the processing when the card inventory screen is displayed in step S910 in the authentication information management system 1 of the present embodiment will be described with reference to FIG.

  FIG. 22 is a flowchart showing an example of a control procedure for card inventory in the authentication information management system 1 of the present invention.

  When the card inventory is selected in the above-described step S909, the card inventory mode (storage medium inventory mode) is set, and in step S910, the card inventory screen shown in FIG. 21 is displayed.

  FIG. 21 is a diagram showing a card inventory screen 2100 in the authentication information management system 1 of the present invention.

  The card inventory screen 2100 is for confirming the card information display unit 2101 for displaying the card information owned by the user, the return button 2103 for returning to the previous screen, and the lost card information and transmitting them to the IC card authentication server 200. OK button 2105 is provided. The card information display unit 2101 displays all the card information owned by the user in a selected state.

  In addition, a message for confirming card information for inventory is displayed. The message is, for example, “Inventory of card information. Touch all the cards you have on the card reader. The card information touched on the card reader will change from the selected state to unselected. The card information of "I will send the information as not taking stock. Please press the OK button."

  In step S2201, the multi-function device 100 transmits a card information acquisition request including the user information (user name, user authentication destination) acquired in step S601 to the IC card authentication server 200.

  In step S2202, the IC card authentication server 200 receives a card information acquisition request.

  Then, in step S2203, the IC card authentication server 200 searches for card information associated with the received user information (user name, user authentication destination).

  In step S2204, the IC card authentication server 200 transmits the card information searched in step S2203 to the multi function device 100. The card information includes a card number, validity information, and a card name.

  In step S2205, the MFP 100 receives the card information, and displays a list of the received card information in step S2206 (authentication information list display).

  In step S2207, the card number held over the card reader by the user operation is acquired, and it is determined whether there is card information that matches the acquired card number and the card number of the card information displayed in a list (second display). Authentication information identification). If there is card information with matching card numbers, the matching card information is changed to an unselected state on the list display and displayed. Thereby, the matched card information and the mismatched card information are displayed in an identifiable manner.

  When the card information inventory is executed by a user operation (when the OK button 2105 is pressed in FIG. 21), the multifunction peripheral 100 is selected in the list display designated as the inventory target in step S2207 in step S2208. Card information (card number, validity information, card name) and user information (user name, user authentication destination) are transmitted to the IC card authentication server 200 as a card information inventory request (inventory request transmission).

  In step S2209, the IC card authentication server 200 receives a card information inventory request.

  Next, in step S2210, the IC card authentication server 200 sets the inventory execution flag of the card information designated as the inventory target of the user name included in the card information inventory request to ON.

  In step S2226, the IC card authentication server 200 confirms the card inventory execution flag for the card information corresponding to the user name included in the card information inventory request, and the card inventory execution flag for all card information is ON. The inventory is completed. If there is one or more card information whose card inventory execution flag is OFF, the inventory is not completed.

  In step S2211, the IC card authentication server 200 transmits the card information inventory result (inventory completion or card information for which inventory has not been completed and the card inventory execution flag is OFF) to the multi function device 100.

  The multifunction peripheral 100 receives the card information inventory result in step S2212.

  Subsequently, the multifunction peripheral 100 determines the card information inventory result in step S2213, and if the inventory of all the card information is completed (the card information inventory result is inventory completed), the inventory completion screen is displayed in step S2214 ( Not shown).

  If inventory of all card information has not been completed (card information inventory result is card information with inventory not completed and card inventory execution flag is OFF), a card information deletion confirmation screen (FIG. 19) is displayed. In step S2215, the card information display unit 1901 on the card information deletion confirmation screen displays the card information included in the card inventory result received in step S2212.

  Subsequently, in step S2216, the multifunction peripheral determines the user operation in step S2215, and when the card information deletion is executed by the user operation (when the OK button 1905 is pressed in FIG. 19), the multifunction peripheral 100 performs step S2217. In step S2216, the card information (card number, validity information, card name) designated as the deletion target and the user information (user name, user authentication destination) are sent to the IC card authentication server 200 as a lost card information deletion request. Send.

  In other words, the card information included in the lost card deletion request is card information that has not been requested for inventory in step S2208.

  In step S2218, the IC card authentication server 200 receives the lost card information deletion request.

  Next, in step S2219, the IC card authentication server 200 deletes the card information that matches the card information corresponding to the user name included in the card information deletion request from the IC card authentication table 5. At this time, the deleted card information is output to a log. The administrator can also manage and confirm lost card information from this log.

  In step S2220, the IC card authentication server 200 transmits the card information deletion result (successful deletion and deleted card information or deletion failure) to the multi-function peripheral 100.

  The multifunction peripheral 100 receives the card information deletion result in step S2221.

  Subsequently, the multi-function device 100 determines the card information deletion result in step S2222, and if the deletion is successful, outputs a lost notification in which the card information deleted in step S2223 is described (output means). Thereafter, a card information deletion success screen (not shown) is displayed in step S2224.

  If the deletion has failed due to a system failure or the like, a card information deletion failure screen (not shown) is displayed (step S2225).

  Note that the lost notification in step S2223 is stored in advance in the multifunction device 100 in the form of the lost notification (not shown) in the external storage device 304. This form contains the card number and the card number included in the card information deletion result. The name of the user who has logged in to the multifunction device 100 (the name of the user whose card has been deleted) is input, and lost notification data is generated. The lost notification data is converted into image data by the image processing unit 317 and printed by the printer unit 312.

  In this embodiment, the lost notification form is held in the MFP 100 and the lost notification form is printed. However, the lost notification form is held in the IC card authentication server 200, and the IC card is printed. Lost notification data may be generated by the authentication server 200. In this case, the lost notification data is transmitted to the MFP 100 that has requested deletion via the printer driver stored in the IC card authentication server 200.

  Next, with reference to FIG. 23, an inventory notification process of the IC card authentication server 200 and a process of confirming card information that has not been inventoried will be described.

  This process is a process periodically executed in the background.

  In step S2301, the IC card authentication server 200 confirms the inventory execution time from the setting information, and determines whether the current date has passed the inventory execution.

  In step S2302, if the inventory execution time has elapsed, the inventory execution flag of all card information registered in the database of the IC card authentication server 200 is set to OFF,

  In step S2303, the inventory execution time, which is the setting information of the IC card authentication server 200, is set to the next date and time.

  In step S2304, the inventory execution flag is confirmed, and an inventory notification is sent to a user who has card information whose inventory execution flag is OFF.

  As described above, according to the embodiment of the present invention, a plurality of IC cards (storage media) registered for one user are deleted by reading an IC card (storage media) owned by the user. Can be easily performed from a multifunction peripheral (image forming apparatus).

  In addition, inventory of a plurality of IC cards (storage media) registered for one user can be easily performed from the multifunction peripheral (image forming apparatus).

  In addition, the IC card information is deleted at the time of card inventory, and a loss notification for applying for the loss of the IC card can be output from the multi-function device 100. Therefore, the application at the time of loss can be facilitated. In particular, it is easy for the administrator to identify which IC card has been lost when the user does not know the card number of the IC card because the IC card has been lost. It becomes easy.

  Further, since the card number of the lost IC card can be easily identified and stored as an unusable IC card, it is possible to prevent other users from using it illegally.

  It should be noted that the configuration and contents of the various data described above are not limited to this, and it goes without saying that the various data and configurations are configured according to the application and purpose.

  Although one embodiment has been described above, the present invention can take an embodiment as, for example, a system, apparatus, method, program, or recording medium, and specifically includes a plurality of devices. The present invention may be applied to a system including a single device.

  In addition, the program according to the present invention is a program that can be executed (readable) by the computer with the processing methods of FIGS. 6, 8, 9, 11, 14, 14, 17, 20, 22, and 23. The storage medium of the present invention stores a program that allows a computer to execute the processing methods of FIGS. 6, 8, 9, 11, 14, 17, 20, 22, and 23. Note that the program according to the present invention may be a program for each processing method of each apparatus in FIGS. 6, 8, 9, 11, 14, 17, 20, 22, and 23.

As described above, a recording medium that records a program that implements the functions of the above-described embodiments is supplied to a system or apparatus, and a computer (or CPU or MPU) of the system or apparatus stores the program stored in the recording medium. It goes without saying that the object of the present invention can also be achieved by executing the reading.

  In this case, the program itself read from the recording medium realizes the novel function of the present invention, and the recording medium storing the program constitutes the present invention.

  As a recording medium for supplying the program, for example, a flexible disk, hard disk, optical disk, magneto-optical disk, CD-ROM, CD-R, DVD-ROM, magnetic tape, nonvolatile memory card, ROM, EEPROM, silicon A disk or the like can be used.

  Further, by executing the program read by the computer, not only the functions of the above-described embodiments are realized, but also an OS (operating system) operating on the computer based on an instruction of the program is actually It goes without saying that a case where the function of the above-described embodiment is realized by performing part or all of the processing and the processing is included.

  Furthermore, after the program read from the recording medium is written to the memory provided in the function expansion board inserted into the computer or the function expansion unit connected to the computer, the function expansion board is based on the instructions of the program code. It goes without saying that the case where the CPU or the like provided in the function expansion unit performs part or all of the actual processing and the functions of the above-described embodiments are realized by the processing.

  Further, the present invention may be applied to a system composed of a plurality of devices or an apparatus composed of a single device. Needless to say, the present invention can be applied to a case where the present invention is achieved by supplying a program to a system or apparatus. In this case, by reading a recording medium storing a program for achieving the present invention into the system or apparatus, the system or apparatus can enjoy the effects of the present invention.

  Furthermore, by downloading and reading a program for achieving the present invention from a server, database, etc. on a network by a communication program, the system or apparatus can enjoy the effects of the present invention.

  In addition, all the structures which combined each embodiment mentioned above and its modification are also included in this invention.

1 ... Authentication information management system 100 ... Multifunction machine 200 ... IC card authentication server 300 ... Directory service server 400 LAN
500 ......... WAN
600 ... Authentication server

Claims (13)

An authentication information management system including an authentication server and an image forming apparatus including a storage unit that stores user information for identifying a user in association with an authentication information group,
The image forming apparatus includes:
Authentication information receiving means for receiving an authentication information group associated with user information from the authentication server;
Authentication information selection means for selecting authentication information that does not match the authentication information of the storage medium obtained by reading the storage medium used for user authentication owned by the user, among the authentication information group received by the authentication information receiving means; ,
A deletion request transmission unit that transmits a deletion request including the authentication information selected by the authentication information selection unit to the authentication server;
The authentication server is
Authentication information transmitting means for transmitting an authentication information group associated with user information to the image forming apparatus;
A deletion request receiving means for receiving a deletion request including the authentication information from the image forming apparatus;
An authentication information management system comprising: deletion means for deleting authentication information of a storage medium to be deleted from the storage means in accordance with a deletion request received by the deletion request receiving means. The image forming apparatus includes:
An authentication information list display means for displaying a list of authentication information groups received by the authentication information receiving means;
The authentication information list display means includes authentication information of the authentication information group received by the authentication information receiving means that matches the authentication information of the storage medium obtained by reading the storage medium used for user authentication owned by the user, and the user The authentication information of the authentication information group received by the authentication information receiving means that does not match the authentication information of the storage medium obtained by reading the storage medium used for user authentication owned by The authentication information management system according to claim 1. The authentication information list display means unselected authentication information of the authentication information group received by the authentication information receiving means that matches the authentication information of the storage medium obtained by reading the storage medium used for user authentication owned by the user The authentication information of the authentication information group received by the authentication information receiving means that does not match the authentication information of the storage medium obtained by reading the storage medium used for user authentication owned by the user is displayed in the selected state. The authentication information management system according to claim 2 , wherein the authentication information management system is displayed. The authentication server is
An output unit that outputs an output request for a notification document of authentication information to be deleted by the deletion unit to the image forming apparatus;
The image forming apparatus includes:
The authentication information management system according to any one of claims 1 to 3, further comprising a printing unit that prints a notification document in response to an output request output by the output unit.   The authentication information management system according to claim 1, wherein the authentication server and the image forming apparatus are separate housings. The authentication information group associated with the user information is received from the authentication server, and the received authentication information group matches the authentication information of the storage medium obtained by reading the storage medium used for user authentication owned by the user The authentication information group is associated with user information for identifying a user that can communicate with the image forming apparatus that selects the authentication information that is not to be transmitted and transmits the deletion request including the selected authentication information to the authentication server. An authentication server comprising storage means for storing,
Authentication information transmitting means for transmitting an authentication information group associated with user information to the image forming apparatus;
A deletion request receiving means for receiving a deletion request including the authentication information from the image forming apparatus;
An authentication server comprising: deletion means for deleting authentication information of a storage medium to be deleted from the storage means in accordance with a deletion request received by the deletion request receiving means. An image forming apparatus capable of communicating with an authentication server including a storage unit that stores user information for identifying a user in association with an authentication information group,
Authentication information receiving means for receiving an authentication information group associated with user information from the authentication server;
Authentication information selection means for selecting authentication information that does not match the authentication information of the storage medium obtained by reading the storage medium used for user authentication owned by the user, among the authentication information group received by the authentication information receiving means; ,
Deletion request transmission means for transmitting to the authentication server a deletion request including the authentication information selected by the authentication information selection means in order to delete the authentication information stored in the storage means of the authentication server. An image forming apparatus. An authentication information management system processing method including an authentication server and an image forming apparatus including a storage unit that stores user information for identifying a user and an authentication information group in association with each other,
The image forming apparatus includes:
An authentication information receiving step of receiving an authentication information group associated with user information from the authentication server;
An authentication information selection step of selecting authentication information that does not match the authentication information of the storage medium obtained by reading the storage medium used for user authentication owned by the user from the authentication information group received in the authentication information reception step; ,
A deletion request transmission step of transmitting a deletion request including the authentication information selected in the authentication information selection step to the authentication server,
The authentication server is
An authentication information transmission step of transmitting an authentication information group associated with user information to the image forming apparatus;
A deletion request receiving step of receiving a deletion request including the authentication information from the image forming apparatus;
And a deletion step of deleting authentication information of the storage medium to be deleted from the storage unit in accordance with the deletion request received in the deletion request receiving step. The authentication information group associated with the user information is received from the authentication server, and the received authentication information group matches the authentication information of the storage medium obtained by reading the storage medium used for user authentication owned by the user The authentication information group is associated with user information for identifying a user that can communicate with the image forming apparatus that selects the authentication information that is not to be transmitted and transmits the deletion request including the selected authentication information to the authentication server. An authentication server processing method comprising a storage means for storing,
The authentication server is
An authentication information transmission step of transmitting an authentication information group associated with user information to the image forming apparatus;
A deletion request receiving step of receiving a deletion request including the authentication information from the image forming apparatus;
And a deletion step of deleting authentication information of the storage medium to be deleted from the storage unit in accordance with the deletion request received in the deletion request receiving step. A processing method of an image forming apparatus capable of communicating with an authentication server including a storage unit that stores user information for identifying a user and an authentication information group in association with each other,
An authentication information receiving step of receiving an authentication information group associated with user information from the authentication server;
An authentication information selection step of selecting authentication information that does not match the authentication information of the storage medium obtained by reading the storage medium used for user authentication owned by the user from the authentication information group received in the authentication information reception step; ,
A deletion request transmission step of transmitting a deletion request including the authentication information selected in the authentication information selection step to the authentication server in order to delete the authentication information stored in the storage means of the authentication server. Characteristic processing method. A program of an authentication information management system including an authentication server and an image forming apparatus including a storage unit that stores user information for identifying a user in association with an authentication information group,
The image forming apparatus;
Authentication information receiving means for receiving an authentication information group associated with user information from the authentication server;
Authentication information selection means for selecting authentication information that does not match the authentication information of the storage medium obtained by reading the storage medium used for user authentication owned by the user, among the authentication information group received by the authentication information receiving means; ,
Function as a deletion request transmission unit that transmits a deletion request including the authentication information selected by the authentication information selection unit to the authentication server;
The authentication server,
Authentication information transmitting means for transmitting an authentication information group associated with user information to the image forming apparatus;
A deletion request receiving means for receiving a deletion request including the authentication information from the image forming apparatus;
A program that functions as a deletion unit that deletes authentication information of a storage medium to be deleted from the storage unit in accordance with a deletion request received by the deletion request reception unit. The authentication information group associated with the user information is received from the authentication server, and the received authentication information group matches the authentication information of the storage medium obtained by reading the storage medium used for user authentication owned by the user The authentication information group is associated with user information for identifying a user that can communicate with the image forming apparatus that selects the authentication information that is not to be transmitted and transmits the deletion request including the selected authentication information to the authentication server. An authentication server program comprising storage means for storing,
The authentication server,
Authentication information transmitting means for transmitting an authentication information group associated with user information to the image forming apparatus;
A deletion request receiving means for receiving a deletion request including the authentication information from the image forming apparatus;
A program that functions as a deletion unit that deletes authentication information of a storage medium to be deleted from the storage unit in accordance with a deletion request received by the deletion request reception unit. An image forming apparatus capable of communicating with an authentication server including a storage unit that stores user information for identifying a user in association with an authentication information group,
The image forming apparatus;
Authentication information receiving means for receiving an authentication information group associated with user information from the authentication server;
Authentication information selection means for selecting authentication information that does not match the authentication information of the storage medium obtained by reading the storage medium used for user authentication owned by the user, among the authentication information group received by the authentication information receiving means; ,
In order to delete the authentication information stored in the storage means of the authentication server, to function as a deletion request transmission means for transmitting a deletion request including the authentication information selected by the authentication information selection means to the authentication server. A featured program.

Images