Related Tips & Info

Allow Public Printing via iPrint

Geoffrey Carman
0 Likes

Problem:

If you want to allow public printing via iPrint, and thought about setting up a user without a password on the account you will run into a snag.



At the backend, iPrint authenticates the client against eDirectory via LDAP. (If you know look at the ipp.conf file for Apache, you will see a line that specifies which server to do the LDAP queries against).



If you enable DStrace with -ALL LDAP options you should be able to see some of the events happening. (You may need to use ConsoleOne to enable the Screen options on the LDAP server Group object first. Specifically the display Search requests).




Solution:

The reason an account with no password is an issue, is due to a 'feature' of the LDAP specification. LDAP considers a bind with a DN (Username) but no password, the same as an anonymous bind.



So even though you pass it a DN, iPrint tries to validate you as an anonymous bind. Which will not allow the account to print.



Your best bet is to create a service account that you can tell everyone the password for.

Labels:

How To-Best Practice
Comment List
Related
Recommended

Resources

Support
Documentation
Learning Services
Partner Programs
Privacy
Compliance
Help
Company
Privacy Policy
Terms of Use
Accessibility
Anti-Slavery Statement
Support
Contact Us
Careers
Code of Business Conduct and Ethics
The opinions expressed above are the personal opinions of the authors, not of OpenText. By using this site, you accept the Terms of Use. Certain versions of content ("Material") accessible here may contain branding from Hewlett-Packard Company (now HP Inc.), Hewlett Packard Enterprise Company, or Micro Focus. As of January 31, 2023, the Material is now offered by OpenText, a separately owned and operated company. Any reference to the HP, Hewlett Packard Enterprise/HPE, and Micro Focus marks is historical in nature and the HP, Hewlett Packard Enterprise/HPE, and Micro Focus marks are the property of their respective owners.