Home / Solution / Configuring Distributed Scan Server on Windows Server 2012 R2

Configuring Distributed Scan Server on Windows Server 2012 R2

Network scanning is likely one of the companies that’s hardly ever managed centrally even in massive infrastructures. In Windows Server 2008 R2 or larger there’s a separate position of distributed community scanning (Distributed Scan Server — DSM) that permits to simplify doc workflow and processing of scanned paperwork within the Active Directory area. In this text we’ll look on learn how to configure the distributed community scanning service on Windows Server 2012 R2.

The Distributed Scan Server is a separate service of the Print and Document Service position that means that you can obtain scanned paperwork from the community scanners and saving them to the precise community shared folders on the file servers and SharePoint websites or sending them to sure recipients through SMTP in line with the configured insurance policies.

The distributed community scanning permits to prepare a single level to handle community scanners supporting WSD — Web Services on Devices (TCP/IP or native USB scanners should not supported as scanning gadgets). As a rule, community scanners with WSD help are massive enterprise-level gadgets.

To set up the community scanning service, choose Print and Document Service position. Then choose Print Server and Distributed Scan Server companies in it.

install Distributed Scan Server role

You also can set up this position utilizing this PowerShell command:

Install-WindowsCharacteristic -Name Print-Scan-Server -IncludeAllSubFeature

Install-WindowsFeature -Name Print-Scan-Server

As you possibly can see, you will need to restart the server.

After the position has been put in, a brand new scanning service seems within the system — Distributed Scan Server service (ScanServer): C:WindowsSystem32svchost.exe -k WSDScanServer.

To handle Distributed Scan Server, a separate mmc snap-in is used: Scan ManagementScanManagement.msc, which manages community scanners, settings and scanning duties.

Scan Management mmc snap-in

Run the Scan Management snap-in. As you possibly can see, there are three sections:

  • Managed Scanners;
  • Scan Processes;
  • Scan Servers.

First of all, you will need to configure your scan server. To do it, right-click Scan Servers part and choose Configure native scan server.

Configure local scan server

In the configuration wizard, specify the account underneath which the scan server will run (this account is used to entry native and shared folders on different servers) By default, the LocalSystem account is used, nevertheless, it’s endorsed to create a separate service account for handy entry administration in your AD area and specify it right here.

specify service account to run scan server

Then you will need to specify the situation and most measurement of person momentary folders for scanned paperwork.

DSM scan temporary folder limit per user

After that specify your e mail server handle and an SSL certificates for community site visitors encryption (a is appropriate for check atmosphere).

select Distributed Scan Server SSL certificate

Then choose the kind of person authentication. You can allow person authentication (utilizing Kerberos or consumer certificates) or disable it (nameless entry to the scan server).

scan server configuration - authentication settings

If you allow the authentication, just remember to are a member of Scan Operators native group and you might be allowed writing to a pc object of your server within the AD.

local group Scan Operators

If throughout scan server configuration the next error seems:
Scan Server Configuration Wizard failed to use setting, error code 0x800706fc, just remember to have specified the account underneath which the distributed scan service is operating (with ample privileges), the trail to the default scan folder and have granted the write privilege for the folder to this account.

Scan Server Configuration Wizard failed to apply setting, error code 0x800706fc

Now you’ll want to add your scan server to the console. To do it, right-click the Scan Servers, choose Add a Scan server and enter the identify of your server. If you might be utilizing a self-signed certificates, the identify of the server should match its identify within the certificates, but it surely have to be typed UPPERCASE (unusual…). You should additionally add the self-signed certificates to the , or errors will seem when attempting so as to add the server:

Windows didn’t contact the scan server you specified. This may be prompted when the server identify you specified odes not match the identify within the server certificates. If the server identify from the certificates matches the server you need to connect with and also you belief the community you might be on, click on Retry to restart the search with the certificates identify.


The following gadgets couldn’t be accessed as a result of they’re offline, there’s a community problem, the names are incorrect, or the certificates wanted to contact the system has not been chosen: tor-scandsm1.

In order your scan server can discover printers and scanners supporting Web Services on Devices (WSD) in your community, do the next:

  1. Turn on community discovery;
  2. Run the Device Association Service.

Turn on network discovery

Now you possibly can add the community scanners. Right-click Managed Scanners and choose Manage. Specify the IP handle or a DNS identify of a community scanner. WSD help (Microsoft Services for Devices or Web Services Print) have to be enabled within the scanner settings.

add network scanner device

Now you possibly can create a brand new scan course of – PSP. Select Scan Processes -> Add a Scan Process.

Add a Scan Process

Specify the identify and outline of the scan course of, choose scanning settings and specify the identify of the Distributed Scan server.

Then enter the doc prefix and choose the place will probably be saved. It may be a number of community shares (UNC paths are used), URLs on the SharePoint website or e mail addresses.

create scan process task - PSP

In the final step, you’ll want to choose customers and the teams allowed to entry this PSP and configure the entry permissions.

Now we nonetheless have AD integration to be configured on the community scanners facet (relies upon on the seller). Users could use a password or a smartcard to authenticate on the scanners.

DSM operation scheme is proven under.

ditributed scan management service on windows server 2012 r2

After a person has authenticated on the scanner, they’ll choose an acceptable PSP accessible for his or her accounts (in line with their privileges). PSPs are saved within the Active Directory, and include the principles with scan settings and doc routing. The community scanner scans a doc and sends it to the server for processing. The Distributed Scan Server processes the duty and ship the scanned doc alongside the route specified within the PSP job.

Scan and job processing logs are situated on the DSM server, and you’ll examine the knowledge on the finished duties any time.

Check Also

PowerShell: Generating QR Code for Wi-Fi Network in Windows 10

You can use PowerShell to generate QR codes to share with your mates or colleagues. …

Leave a Reply

Your email address will not be published. Required fields are marked *