ControlSuite ClientsUnified Clients OverviewKofax Unified Clients for RicohKofax Ricoh PCC for EquitracUsing Ricoh PCCTypical user workflowsLogging inAzure AD authentication with card registration

Azure AD authentication with card registration

This topic describes options for using Azure AD authentication with card registration.

When Azure AD is enabled with ControlSuite and is selected as an authentication method with card registration for the Unified Client for Ricoh, users can log in by authenticating against Azure AD.

Depending on the login configuration, a user can select between more than one authentication method.

  • If Azure AD is the only configured method for unknown card registration, when the user swipes their card for the first time, the device screen displays a QR code and an alphanumeric code. The user scans the QR code to open the Microsoft login site, or enters the URL in a browser not on the device, enters the code, and selects their account. When returning to the device, the card is registered to the user.
  • If Azure AD is used with another form of authentication, such as PIN or username/password, after swiping their card for the first time, the user is prompted to choose their authentication method and can then select Azure AD as the Authentication Method. When the user clicks Login, the QR code and alphanumeric code appears.
  • If you do not complete the authentication within 5 minutes, the Equitrac server closes the user session and ends the card registration. The alphanumeric code resets after 5 minutes.
  • If the authentication is not performed within that time, the registration ends and a new alphanumeric code is issued during the next attempt at registration.
  • Azure AD can only be used for card registration. Users cannot log on directly using Azure AD.