JP2023003870A - Information processing system, communication terminal device and setting information supplying method - Google Patents

Abstract

To improve security when supplying setting information to an information processing device.SOLUTION: An information processing system 1 transmits setting data from a setting terminal device 3 used by an installation contractor to an information processing device 2 via NFC 7, and a relay terminal device 4 used by an employee of a company acquires a certificate file from a server device 6 and transmits it to the information processing device 2 via Wi-Fi 8. Accordingly, in the information processing system 1, since it is possible to eliminate direct handling of the certificate file and related information by the installation contractor outside the company, necessary device settings can be made to the information processing device 2, and a certificate can be imported while ensuring security of important information on information network inside the company.SELECTED DRAWING: Figure 12

Description

The present invention relates to an information processing system, a communication terminal device, and a setting information supply method, and is suitable for application, for example, when setting information is supplied from a communication terminal to an information processing device.

Conventionally, as an information processing device, in addition to performing various arithmetic processing on information, it has communication functions such as wireless LAN (Local Area Network, so-called Wi-Fi), etc., and communicates with external devices via various networks. What can be done is widespread. In recent years, for example, image forming apparatuses that form images on paper (so-called printers) have arithmetic processing functions, communication functions, etc., and information such as print data is received from host devices via various networks. Acquisition is becoming popular. Therefore, hereinafter, the image forming apparatus is also called an information processing apparatus.

When a user starts using such an information processing device, it is supplied with setting information suitable for the usage environment of the user, thereby enabling connection to various networks and realizing the purpose of the user. It becomes possible to perform processing (for example, print processing) that meets the requirements. However, the work of appropriately applying such setting information is troublesome for the user, and takes time and effort.

Therefore, an information processing apparatus is provided with a short-range wireless communication function, a short-range wireless medium (for example, an RFID) in which setting information is stored in advance is prepared, and the short-range wireless medium is brought close to the information processing apparatus ( A method has been proposed in which setting information is transmitted from the short-range wireless medium to the information processing device by holding the device over the device (for example, see Patent Document 1).

JP 2007-160903 A

By the way, in recent years, from the viewpoint of ensuring security, such as preventing unauthorized access to networks by third parties, individual certificates are issued and stored in each information processing device connected to the network. may be left.

Specifically, for example, in an in-house network of a company, a certificate for each information processing device is created in advance and stored in a predetermined server device, and using a terminal device or the like connected to the in-house network, A method of acquiring the certificate from the server device and transmitting the certificate together with the setting information to the information processing device for storage is conceivable.

In addition, for example, when a company newly introduces a large number of information processing equipment, a professional installer (so-called SIer: Systems Integrator) who is familiar with the information processing equipment is commissioned by the company to install the certificate. They may be in charge of tasks such as work and provision of setting information. However, in this case, since the installation company accesses the company's server device and obtains the certificate, there is a problem in terms of security from the company's point of view.

SUMMARY OF THE INVENTION The present invention has been made in consideration of the above points, and proposes an information processing system, a communication terminal device, and a setting information supply method capable of improving security when supplying setting information to an information processing device. is.

In order to solve this problem, an information processing system of the present invention includes a communication terminal device, an information storage device, and an information processing device. The information processing device has a storage unit that stores information, and the information processing device has a first acquisition unit that acquires second setting information including connection information for establishing wireless communication with the communication terminal device from the external device. , an output unit for outputting the second setting information, and a first wireless communication unit for performing wireless communication with the communication terminal device, and the communication terminal device receives the second setting information output from the information processing device. a second acquisition unit that acquires the first setting information from the information storage device based on the address information of the information storage device and the identification information for identifying the first setting information; and a second wireless communication unit for establishing wireless communication with the information processing device and transmitting the first setting information to the information processing device.

Further, in the communication terminal device of the present invention, a communication terminal device capable of communicating with an information storage device and an information processing device, respectively, includes a second communication terminal device including connection information for establishing wireless communication output from the information processing device. and the address information of the information storage device that stores the first setting information to be set in the information processing device and the identification information for identifying the first setting information. A wireless communication unit acquires the first setting information from the storage device, establishes wireless communication with the information processing device based on the connection information, and transmits the first setting information to the information processing device.

Further, in the setting information providing method of the present invention, the second setting information including connection information for establishing wireless communication between the information processing device and the communication terminal device, which is output from the information processing device, is obtained by the acquisition unit. Based on the first step of acquiring, the address information of the information storage device storing the first setting information to be set in the information processing device, and the identification information for identifying the first setting information, the information storage device and a third step of establishing wireless communication with the information processing device based on the connection information and transmitting the first setting information to the information processing device. and

According to the present invention, a communication terminal device obtains first setting information from an information storage device and establishes wireless communication with the information processing device using second setting information obtained from the information processing device. , the first setting information is transmitted to the information processing apparatus. Therefore, according to the present invention, the access to the information storage device and the handling of the first setting information can be limited to the communication terminal device. can do.

According to the present invention, it is possible to realize an information processing system, a communication terminal device, and a setting information supply method capable of improving security when supplying setting information to an information processing device.

1 is a block diagram showing the overall configuration of an information processing system according to a first embodiment; FIG. It is a block diagram which shows the hardware constitutions of an information processing apparatus. It is a block diagram which shows the software configuration of an information processing apparatus. 4 is a schematic diagram showing the configuration of a device setting table; FIG. 4 is a schematic diagram showing the configuration of a device setting storage unit; FIG. 2 is a schematic diagram showing the configuration of an NFC tag; FIG. 3 is a block diagram showing the hardware configuration of a setting terminal device; FIG. 3 is a block diagram showing the software configuration of the setting terminal device; FIG. 4 is a schematic diagram showing the configuration of a setting data table; FIG. 3 is a block diagram showing the hardware configuration of the relay terminal device according to the first embodiment; FIG. 3 is a block diagram showing the software configuration of the relay terminal device according to the first embodiment; FIG. 4 is a sequence chart showing the overall sequence of relay setting processing according to the first embodiment; FIG. 10 is a flow chart showing a setting data preparation processing procedure of the setting terminal device; FIG. FIG. 5 is a schematic diagram showing the configuration of each screen displayed in setting data preparation processing; FIG. 5 is a schematic diagram showing the configuration of each screen displayed in setting data preparation processing; 4 is a flow chart showing a setting data write processing procedure of the setting terminal device; 4 is a flow chart showing a procedure of start-up processing of the information processing apparatus according to the first embodiment; 4 is a flow chart showing a relay processing procedure of the relay terminal device according to the first embodiment; FIG. 5 is a schematic diagram showing the configuration of each screen displayed in relay processing; FIG. 5 is a schematic diagram showing the configuration of each screen displayed in relay processing; 4 is a flow chart showing a certificate reception processing procedure of the information processing apparatus; It is a block diagram which shows the whole structure of the information processing system by 2nd Embodiment. FIG. 11 is a block diagram showing the hardware configuration of a relay terminal device according to the second embodiment; FIG. FIG. 11 is a block diagram showing a software configuration of a relay terminal device according to a second embodiment; FIG. FIG. 11 is a sequence chart showing the overall sequence of relay setting processing according to the second embodiment; FIG. 10 is a flow chart showing a procedure of start-up processing of the information processing device according to the second embodiment; 9 is a flow chart showing a relay processing procedure of the relay terminal device according to the second embodiment; FIG. 11 is a schematic diagram showing the configuration of a screen displayed in relay processing according to another embodiment;

EMBODIMENT OF THE INVENTION Hereinafter, the form (it is mentioned as embodiment below) for implementing invention is demonstrated using drawing.

[1. First Embodiment]
[1-1. Configuration of information processing system]
As shown in FIG. 1, an information processing system 1 according to the first embodiment includes an information processing device 2, a setting terminal device 3, a relay terminal device 4, an access point 5 and a server device 6. FIG.

The information processing apparatus 2 is, for example, an electrophotographic image forming apparatus, a so-called printer, and has a printing function of forming an image on paper as a medium. Incidentally, the information processing apparatus 2 does not have an image scanner function for reading documents, a communication function using a telephone line, or the like, and is a single-function SFP (Single Function Printer) having only a printing function.

The setting terminal device 3 and the relay terminal device 4 are, for example, portable information terminal devices having communication functions, such as smartphones. An access point (hereinafter also referred to as AP) 5 is, for example, a Wi-Fi base station. The server device 6 preliminarily stores a certificate file, which will be described later.

The information processing device 2 and the setting terminal device 3 can mutually transmit and receive information by NFC (Near Field Communication, near field communication) 7 . The information processing device 2 and the relay terminal device 4 can mutually transmit and receive information via Wi-Fi 8, which is a wireless LAN (Local Area Network). Further, the relay terminal device 4 and the access point 5 can mutually transmit and receive information via Wi-Fi 9 which is a wireless LAN different from Wi-Fi 8 . Also, the access point 5 and the server device 6 can mutually transmit and receive information via a network 10 formed by a wired LAN.

Furthermore, in this embodiment, the access point 5 and the server device 6 are installed in advance, for example, at a predetermined company. The relay terminal device 4 is used by employees of the company, and is set in advance so that it can be connected to the server device 6 via the access point 5 . That is, the Wi-Fi 9 and network 10 are part of the internal network constructed by the company. Further, in this embodiment, it is assumed that the information processing device 2 is about to be newly installed in the company, and the setting terminal device 3 is used by an external installer who is in charge of this installation work.

[1-1-1. Configuration of information processing device]
The information processing device 2 includes a CPU (Central Processing Unit) 11, a ROM (Read Only Memory) 12, a RAM (Random Access Memory) 13, a storage 14, a Wi- It has an Fi unit 15, an NFC unit 16, a display panel 17, operation buttons 18, a printing unit 19, and the like.

The CPU 11 reads various programs from the ROM 12 and the storage 14 and performs various arithmetic processing while using the RAM 13 as a work area, thereby executing various processes.

The storage 14 is a nonvolatile information storage medium such as a hard disk drive or flash memory, and stores various programs, various setting information, or various data. The storage 14 also includes a device setting storage unit 14A for storing setting information, which is information related to various settings of the information processing device 2, and a certificate storage unit 14B for storing a certificate indicating legitimacy on the network. are doing. Incidentally, the storage 14 also stores factory shipment values and the like set at the time of shipment from the factory.

The Wi-Fi unit 15 as a first wireless communication unit is a wireless communication device conforming to standards such as IEEE (Institute of Electrical and Electronics Engineers) 802.11 (IEEE802.11a/b/g/n/ac/ax). LAN interface. The Wi-Fi unit 15 can switch between a plurality of operation modes such as an infrastructure mode (hereinafter also referred to as infrastructure mode) and an access point mode (hereinafter also referred to as AP mode).

In the infrastructure mode, the information processing device 2 becomes a so-called child device, wirelessly connects to a predetermined base station (access point or master device), and exchanges information with other devices, etc. via the base station. This is the operation mode for transmission and reception. On the other hand, the AP mode is an operation mode in which the information processing apparatus 2 functions as a so-called parent device, wirelessly connects the relay terminal device 4 or the like as a so-called child device, and transmits/receives information to/from the relay terminal device 4 or the like.

The NFC unit 16 as a first acquisition unit is an NFC wireless interface defined by international standards such as ISO/IEC 18092. The NFC unit 16 has an antenna for wireless communication, a circuit (not shown) for various signal processing, and a non-volatile NFC tag 16T for storing information. Further, a predetermined mark indicating that the antenna of the NFC unit 16 is installed is provided near the NFC unit 16 on the exterior surface of the information processing device 2 .

Even if the information processing device 2 is in a non-energized state (a state in which the power is not turned on), the NFC unit 16 operates when the setting terminal device 3 is held over by the user. When moved to a position close to the antenna of the NFC unit 16 in , it can operate using the current flowing through the antenna. At this time, when information is transmitted from the setting terminal device 3, the NFC unit 16 can store this information in the NFC tag 16T.

The display panel 17 is, for example, a liquid crystal display panel, and has a relatively small display area capable of displaying up to 20 characters, symbols, etc. in up to two lines. The operation buttons 18 as an information processing operation unit are composed of a relatively small number of buttons such as direction buttons indicating up, down, left, and right directions, an OK button indicating affirmation, and a cancel button indicating negation. there is

The printing unit 19 as an output unit has an exposure device, a fixing device, a paper transport mechanism, and the like (not shown). Among these, the exposure device has an LED (Light Emitting Diode) head, a photosensitive drum, a toner cartridge, and the like. An electrostatic latent image is formed on the surface and toner is applied thereto to form a toner image. The printing unit 19 has four exposure devices corresponding to four colors of cyan (C), magenta (M), yellow (Y), and black (K), which form toner images of each color. A color image can be formed on the paper by transferring and fixing the toner onto the paper, that is, color printing can be performed.

Further, the CPU 11 reads and executes a predetermined image forming program from the ROM 12, the storage 14, etc., thereby forming a plurality of functional blocks centered around the control unit 21, as shown in FIG. The control unit 21 includes an initialization processing unit 22, a display processing unit 23, a device setting management unit 24, a tag information analysis unit 25, a print processing unit 26, a two-dimensional code generation unit 27, an NFC processing unit 28, Wi-Fi A control unit 29 and a data analysis unit 30 are connected respectively.

The control unit 21 comprehensively controls the information processing device 2 . The initialization processing unit 22 performs processing for initializing each unit when the information processing apparatus 2 is powered on and activated. The display processing unit 23 causes the display panel 17 to display various information. The device setting management unit 24 manages device settings stored in the device setting storage unit 14A (FIG. 2) of the storage 14. FIG.

The tag information analysis unit 25 analyzes the contents of the NFC tag 16T (FIG. 2). The print processing unit 26 performs print processing for causing the print unit 19 to form an image on a medium (that is, print). The two-dimensional code generation unit 27 generates a two-dimensional code (for example, QR code (registered trademark), etc.) representing the designated character string.

The NFC processing unit 28 is a part that performs processing related to the NFC unit 16 (FIG. 2). The NFC processing unit 28 includes an NFC communication unit 28A that performs processing related to communication by the NFC7 (FIG. 1), an NFC tag control unit 28B that reads and writes information on the NFC tag 16T (FIG. 2), and the like. there is

The Wi-Fi control unit 29 switches the operation mode of the Wi-Fi unit 15 (FIG. 2) to the infrastructure mode or AP mode, and then communicates with the setting terminal device 3 via Wi-Fi 8 (FIG. 1). Controls transmission and reception of information. The data analysis unit 30 performs analysis processing for setting requests, which will be described later, analysis processing for certificate files, which will be described later, and the like.

By the way, the information processing apparatus 2 is provided with various setting items that can be adjusted or changed regarding print processing, communication processing, and the like, such as paper size and SSID (Service Set Identifier) for Wi-Fi connection. Therefore, in the information processing device 2, a device setting table T1 shown in FIG. 4 is stored in the storage 14 (FIG. 2) as information regarding this setting item.

In this device setting table T1, a plurality of setting items are classified into a plurality of categories, respectively, and can function as a menu with a systematic tree structure. In the device setting table T1, each setting item is associated with a device setting and a setting key. Among these, the device settings have names such as "device setting 1" to "device setting 9", and are stored in the device setting storage unit 14A (FIG. 2) in association with the respective setting values. The setting key is an identifier of information used in the NFC tag 16T, and has names such as "setting key 1" to "setting key 9".

The certificate information category includes setting items such as "certificate file", "protection release password", and "certificate management server". The file name of the certificate file (hereinafter also referred to as identification information) is stored in the "certificate file" setting value. This certificate file is created in an encrypted state using a preset unlocking password. This protection release password is stored in the "protection release password" setting item. The "certificate management server" setting item stores the address of the server device 6 (FIG. 1) on the network (hereinafter also referred to as address information) for acquiring the certificate file.

The Wi-Fi setting category includes setting items such as "Wi-Fi function setting", "Wi-Fi connection SSID", and "Wi-Fi connection passphrase". In the setting value of “Wi-Fi function setting”, “valid” or “invalid” is stored as a setting value indicating whether or not the Wi-Fi unit 15 is operated. The setting item “Wi-Fi connection SSID” stores the Wi-Fi SSID as a setting value. In the setting item "Wi-Fi connection passphrase", a passphrase required for Wi-Fi connection is stored as a setting value. Hereinafter, the “Wi-Fi connection SSID” and the “Wi-Fi connection passphrase” are also referred to as connection information.

For example, when the information processing device 2 is manufactured and shipped from a factory (at the time of shipment from the factory), the device setting storage unit 14A stores device settings 1 to 3 as shown in FIG. 5A. While the setting values are stored, the setting values are not stored in the device settings 4 to 9 and are blank. Hereinafter, the state in which such setting values are stored in the device setting storage section 14A will be referred to as an initial state or a factory shipment state.

In the information processing device 2, for example, when the user performs a predetermined operation via the operation button 18 (FIG. 2), the menu tree according to the device setting table T1 (FIG. 4) is hierarchically traced and displayed. The panel 17 can display the name of the setting item, the current setting value (that is, the setting value stored in the device setting storage section 14A), and the like. Further, when the user performs an operation input to change the setting value in this state, the information processing device 2 can store the changed setting value in the device setting storage unit 14A.

On the other hand, the NFC tag 16T (FIG. 2) of the NFC unit 16 stores device information F1 regarding the information processing device as shown in FIG. 6A at the stage of shipment from the factory. The device information F1 is written, for example, by the information processing device 2 performing a predetermined writing process during manufacturing at a factory. The device information F1 includes information for identifying the information processing device, such as the model name and serial number of the information processing device 2, for example.

Also, information is written from the setting terminal device 3 to the NFC tag 16T when, for example, an operation of bringing the setting terminal device 3 close to the NFC unit 16 is performed. At this time, the setting terminal device 3 can write a plurality of setting keys and corresponding values as the setting information F2, for example, as shown in FIG. 6B.

Further, the information processing apparatus 2 considers that a setting change request has been made if the setting information F2 is written in the NFC tag 16T when the power is turned on. Specifically, when the information processing device 2 reads out the setting information F2 from the NFC tag 16T, it refers to the device setting table T1 (FIG. 4), associates each setting key with the corresponding device settings and setting values, and sets the device settings. By overwriting the storage unit 14A, the device settings are updated as shown in FIG. 5B.

After that, the information processing device 2 performs various processes and operations based on the updated device settings. In particular, setting keys 7 to 9 of the setting information F2 are device settings of setting items belonging to the Wi-Fi setting category, as can be seen from the device setting table T1 (FIG. 4). Therefore, the information processing device 2 can operate the Wi-Fi unit 15 (FIG. 2) according to the set values of these device settings.

[1-1-2. Configuration of setting terminal device]
The setting terminal device 3 (FIG. 1) as an external device is, as described above, a portable or portable information communication terminal device such as a smart phone, and is used by an installer who installs the information processing device 2. It is The setting terminal device 3 has a CPU 31, a RAM 32, a storage 34, an NFC unit 36, a touch panel 37, etc., as shown in a schematic hardware configuration diagram of FIG.

The CPU 31 reads various programs from the storage 34 and performs various arithmetic processing while using the RAM 32 as a work area, thereby executing various processing.

The storage 34 is a non-volatile information storage medium such as a flash memory, and stores various programs, various setting information, various data, etc., like the storage 14 (FIG. 2) of the information processing apparatus 2 . The storage 34 is provided with a setting data storage unit 34A for storing setting data (details will be described later) in which a plurality of pieces of information to be set in the information processing apparatus 2 are collected.

The NFC unit 36 is configured similarly to the NFC unit 16 (FIG. 2) of the information processing device 2 . The touch panel 37 has a configuration in which, for example, a liquid crystal display panel and a touch sensor are combined, and can display various types of information and can accept operation input from the user (that is, the installer).

Further, the CPU 31 reads out a predetermined setting program from the storage 34 and executes it, thereby forming functional blocks such as the NFC processing unit 41 and the setting application 42 as shown in FIG. Furthermore, inside the setting application 42, a control unit 51, a display processing unit 52, an input processing unit 53, a setting data analysis unit 54, a tag information analysis unit 55, a tag information generation unit 56, and a setting data editing unit 57 are formed. there is

The NFC processing unit 41 performs various processes related to NFC, like the NFC processing unit 28 (FIG. 3) of the information processing device 2 . The setting application 42 performs various processes for supplying setting data to the information processing device 2 .

The control unit 51 comprehensively controls the setting application 42 . The display processing unit 52 performs processing related to the display screen displayed on the touch panel 37 (FIG. 4). The input processing unit 53 performs processing related to input operations on the touch panel 37 (FIG. 4) by the user (that is, the setting company). The setting data analysis unit 54 analyzes setting data specified by the user.

When the NFC unit 36 (FIG. 4) reads information from the NFC tag 16T of the NFC unit 16 in the information processing device 2 (FIG. 2), the tag information analysis unit 55 analyzes the information. The tag information generation unit 56 generates information to be written to the NFC tag 16T of the NFC unit 16 in the information processing device 2 (FIG. 2) by the NFC unit 36 (FIG. 4). The setting data editing unit 57 performs an editing process of editing a part of the setting data stored in the setting data storage unit 33A of the storage 34. FIG.

In addition, in the setting terminal device 3, the setting data table T2 shown in FIG. 9 is stored in the setting data storage section 34A of the storage . The setting data table T2 has a configuration corresponding to the device setting table T1 (FIG. 4) stored in the storage 14 (FIG. 2) of the information processing device 2 and each device setting (FIG. 5).

More specifically, the setting data table T2 has a setting value column and a setting key column in addition to the same category and setting item columns as the device setting table T1. Among these, in the setting value column, each setting value to be set as the device setting in the information processing device 2 is stored. The setting value column stores device settings to be set for each of the plurality of information processing devices 2 (denoted as device A, device B, and device C in the drawing). A set of device settings corresponding to one information processing device 2 is hereinafter referred to as setting data. That is, the setting data table T2 stores a plurality of setting data corresponding to the plurality of information processing apparatuses 2, respectively. Each setting data is identified by an identification name such as "setting data 1".

Each setting data has a different setting value for each information processing apparatus 2 in many setting items belonging to the categories of certificate information and Wi-Fi setting. The setting key field stores the setting key, which is an identifier to be written in association with each setting value when writing to the NFC tag 16T of the information processing device 2 (FIG. 2). The certificate information is hereinafter also referred to as second setting information.

Incidentally, each setting data does not necessarily store setting values for all setting items, and there are cases where setting values do not exist (blank) for some setting items. Specifically, in some setting data, for example, all setting items belonging to the category of certificate information are blank, or all setting items belonging to the Wi-Fi setting category are blank. There may be

Further, the storage 34 is provided with a designation information storage section 34B. This specified information storage unit 34B stores an identification name already specified by the operation of the user (that is, the installation company) among a plurality of setting data, and if the setting data is not specified, It is blank.

[1-1-3. Configuration of relay terminal device]
The relay terminal device 4 (FIG. 1) as a communication terminal device is, as described above, a portable or portable information communication terminal device such as a smart phone, and is equipped with, for example, an access point 5, a server device 6, and the like. used by employees of companies that The relay terminal device 4 has a CPU 61, a RAM 62, a storage 64, a Wi-Fi unit 65, a touch panel 67, a camera unit 68, etc., as shown in a schematic hardware configuration diagram of FIG.

The CPU 61 reads various programs from the storage 64 and performs various arithmetic processing while using the RAM 62 as a work area, thereby executing various processes. The storage 64 is a non-volatile information storage medium such as a flash memory, and stores various programs, various setting information, various data, etc. like the storage 14 (FIG. 2) of the information processing apparatus 2 and the like. The storage 64 is provided with a certificate file storage section 64A for storing a certificate file to be imported into the information processing apparatus 2 (details will be described later).

A Wi-Fi unit 65 as a second wireless communication unit is configured in the same manner as the Wi-Fi unit 15 of the information processing device 2 (FIG. 2). A touch panel 67 as a communication terminal operation unit is configured in the same manner as the touch panel 37 (FIG. 7) of the setting terminal device 3, and can display various information and accepts operation input from the user (that is, an employee of the company). obtain. A camera unit 68 as a second acquisition unit and an imaging unit has, for example, a lens, an imaging device, an image processing circuit, and the like (none of which are shown), and captures surrounding scenery to generate an image. .

Further, the CPU 61 reads out a predetermined setting program from the storage 64 and executes it, thereby creating functional blocks such as a Wi-Fi control unit 71, a two-dimensional code reading processing unit 72, and a relay application 73 as shown in FIG. Form. Furthermore, inside the relay application 73, a control unit 81, a display processing unit 82, an input processing unit 83, a decoding processing unit 84, an information editing unit 85, a setting value analysis unit 86, and a setting value transmission unit 87 are formed.

The Wi-Fi control unit 71, like the Wi-Fi control unit 29 (FIG. 3) of the information processing device 2, performs various processing related to Wi-Fi. A two-dimensional code reading processing unit 72 serving as a second acquisition unit and analysis unit extracts a two-dimensional code from an image captured by the camera unit 68, and performs a predetermined decoding process on the two-dimensional code. Convert to string. The relay application 73 performs various processes for relaying certificate files between the server device 6 ( FIG. 1 ) and the information processing device 2 .

The control unit 81 comprehensively controls the relay application 73 . The display processing unit 82 performs processing related to the display screen displayed on the touch panel 67 (FIG. 10). The input processing unit 83 performs processing related to an input operation on the touch panel 67 (FIG. 10) by a user (that is, an employee of the company). The decryption processing unit 84 performs processing for decrypting encrypted data.

The information editing unit 85 edits various types of information based on the content input by the user. The setting value analysis unit 86 analyzes the value specified by the user. The setting value transmission unit 87 performs processing for transmitting setting values to the information processing device 2 via the Wi-Fi control unit 71 .

[1-1-4. Configuration of Access Point and Server Device]
As described above, the access point 5 (FIG. 1) is installed in a predetermined company, and has a Wi-Fi unit 5W, a network unit 5N, and a control unit (not shown). The Wi-Fi unit 5W has the same configuration as the Wi-Fi unit 15 (FIG. 2) of the information processing device 2, etc., but always operates in the AP mode. This Wi-Fi unit 5W establishes wireless communication by Wi-Fi 9 with the relay terminal device 4, and transmits and receives various information.

The network unit 5N is a part that performs processing related to the wired LAN, establishes a connection with the server device 6 via the network 10, and transmits and receives various information. The access point 5 can also mutually exchange information between the Wi-Fi unit 5W and the network unit 5N.

With such a configuration, the access point 5 can mutually exchange information between the Wi-Fi 9 and the network 10, and various information can be mutually transmitted and received between the relay terminal device 4 and the server device 6. .

The server device 6 as an information storage device is installed in a predetermined company, as described above, and has a network unit 6N, a storage 6S, a control section (not shown), and the like. The network unit 6N is configured similarly to the network unit 5N of the access point 5, establishes a connection with the access point 5 via the network 10, and transmits/receives various information.

The storage 6S as a storage unit is configured in the same manner as the storage 14 (FIG. 2) of the information processing device 2, and stores (that is, stores) various information such as various programs and various data. Further, the storage 6S is provided with a certificate file storage section 6C. A previously created certificate file is stored in the certificate file storage unit 6C. Incidentally, the certificate file is encrypted (that is, protected) using the unprotection password as described above. The certificate file is hereinafter also referred to as first setting information.

Incidentally, the server device 6 operates as a server compatible with protocols such as FTP (File Transfer Protocol) and HTTP (Hypertext Transfer Protocol), and is assigned a unique address on the network 10 . For this reason, the server device 6 transmits the certificate file when receiving an acquisition request specifying the address, the file name of the certificate file, and the like.

[1-2. Relay setting process]
By the way, in the information processing system 1 (FIG. 1), as described above, in order to newly install the information processing device 2 in a company, it is assumed that the installer appropriately sets the device settings of the information processing device 2. ing. From the viewpoint of work efficiency, the installer can easily set up the device by transmitting setting data created in advance from the setting terminal device 3 to the information processing device 2 .

On the other hand, in addition to the device settings, the information processing device 2 needs to import a certificate file in order to prove its legitimacy in the in-house network of the company. This certificate file is stored in the certificate file storage unit 6C of the server device 6 in advance. However, the setting terminal device 3 used by the installation company cannot be connected to the in-house network for reasons such as security, and cannot obtain the certificate file.

Therefore, in the information processing system 1 , device settings are transmitted from the setting terminal device 3 to the information processing device 2 via the NFC 7 by the operation of the installer. Next, in the information processing system 1, the relay terminal device 4 is connected to the access point 5 via Wi-Fi 9 by the operation of an employee of the company regarding the certificate file, and receives the certificate file from the server device 6 via the network 10. I tried to get it. Furthermore, in the information processing system 1, the relay terminal device 4 is connected to the information processing device 2 via the Wi-Fi 8 and imports the certificate file into the information processing device 2. FIG.

In the information processing system 1, a sequence chart and a plurality of flow charts will be described below for a relay setting process of performing device settings in the information processing device 2 and importing a certificate while using the setting terminal device 3 and the relay terminal device 4. It will be explained in detail while using.

[1-2-1. Overall sequence of relay setting process]
FIG. 12 shows an overall view of extracted main processes, communications, or exchanges of information performed among the information processing device 2, the setting terminal device 3, and the relay terminal device 4 in the relay setting processing of the information processing system 1. sequence chart.

In the information processing system 1, the setting terminal device 3 first performs the setting data preparation processing procedure RT11, whereby the setting data to be transmitted to the information processing device 2 is selected based on the operation of the setting agent, and the information processing device 2 is set to the AP. AP information for operating in the mode is generated as needed.

Subsequently, in the information processing system 1, the setting terminal device 3 performs the setting data write processing procedure RT12, thereby communicating with the information processing device 2 using the NFC 7 (FIG. 1). The setting data is written to the NFC tag 16T (FIG. 2) of the processing device 2. This setting data includes AP information for operating the Wi-Fi unit 15 in the AP mode in addition to various device settings of the information processing device 2 .

Next, in the information processing system 1, the information processing device 2 performs the activation processing procedure RT21 when the power is turned on, thereby activating the Wi-Fi unit 15 in the AP mode, and based on the operation of the installer, two-dimensional Print the code on paper. This two-dimensional code includes information for connecting with the Wi-Fi unit 15 operating in AP mode.

Furthermore, in the information processing system 1, the relay terminal device 4 performs the relay processing procedure RT31, so that it first connects to the access point 5 via Wi-Fi 9 and obtains the certificate file from the server device 6 based on the operation of the employee of the company. do. Next, the relay terminal device 4 continues to perform the relay processing procedure RT31 to connect to the information processing device 2 via Wi-Fi 8 using the information obtained from the two-dimensional code, and transmit the certificate file.

In parallel with this, the information processing device 2 performs the certificate reception processing procedure RT22 to store the certificate file received from the relay terminal device 4, and then restores the device settings related to the Wi-Fi unit 15 to the factory settings. Restore the setting value. Thus, in the information processing system 1, device settings can be made to the information processing device 2, and a certificate file can be stored.

[1-2-2. Setting data preparation processing of setting terminal device]
Next, details of the setting data preparation processing procedure RT11 executed by the setting terminal device 3 will be described with reference to the flowchart of FIG. The CPU 31 (FIG. 7) of the setting terminal device 3 operates a predetermined OS (Operating System) in advance. 7) and executes it to form each functional block such as the control unit 51 (FIG. 8). After that, the control unit 51 starts the setting data preparation processing procedure RT11 (FIG. 13), and moves to the first step SP1.

In step SP1, the control unit 51 refers to the designation information storage unit 34B of the storage 34, and proceeds to the next step SP2. In step SP2, the control unit 51 determines whether or not any designation data has been set, that is, whether or not the identification name of any setting data is stored in the designation information storage unit 34B. If a negative result is obtained here, this means that it is necessary to let the user (that is, the installer) specify some setting data. At this time, the control unit 51 proceeds to the next step SP3.

In step SP3, the control unit 51 causes the display processing unit 52 (FIG. 8) to display the setting data designation screen S1 shown in FIG. 14A on the touch panel 37 (FIG. 7), and proceeds to the next step SP4. This setting data designation screen S1 is a screen for allowing the user (that is, the installer) to designate selection data.

Specifically, on the setting data designation screen S1, a message M1 with a character string such as "Please select setting data" is displayed on the upper side, and a plurality of settings are displayed in the setting data list field L1 provided in the central wide range. Data identification names are arranged vertically and displayed, and a cancel button B1 is displayed below. Incidentally, FIG. 14A shows an example in which three pieces of setting data (setting data 1, setting data 2, and setting data 3) are displayed in the setting data list field L1.

In step SP4, the control unit 51 receives a touch operation on the touch panel 37 by the input processing unit 53 (FIG. 8), and proceeds to the next step SP5. In step SP5, the control unit 51 determines whether or not any setting data has been specified. Determine whether or not it has been done. If a positive result is obtained here, this means that the setting data has been properly designated. At this time, the control unit 51 proceeds to the next step SP6.

On the other hand, if a positive result is obtained in step SP2, this means that some setting data has already been designated and there is no need to set the setting data again. At this time, the control unit 51 proceeds to the next step SP6.

In step SP6, the control unit 51 reads each setting value of the designated setting data from the setting data storage unit 34A (FIG. 7) of the storage 34, and the setting data analysis unit 54 (FIG. 8) analyzes each setting value. and move to the next step SP7.

In step SP7, the control unit 51 determines whether or not the setting data contains certificate information as a result of the analysis processing. Specifically, each setting value is stored in each setting item belonging to the category of certificate information (FIG. 9). Determine whether or not If a positive result is obtained here, this means that the certificate file needs to be imported into the information processing device 2, for which purpose the Wi-Fi unit 15 (FIG. 2) of the information processing device 2 is temporarily set to the AP. Since it is necessary to operate in this mode, it indicates that the setting data must include Wi-Fi settings. At this time, the control unit 51 proceeds to the next step SP8.

In step SP8, the control unit 51 determines whether or not the setting data includes Wi-Fi information as a result of the analysis processing. It is determined whether or not each is stored. If a negative result is obtained here, the control section 51 proceeds to the next step SP9.

In step SP9, the control unit 51 adds each setting item belonging to the Wi-Fi setting category (FIG. 9) among the setting data using the setting data editing unit 57 (FIG. 8), and proceeds to the next step SP10. . Specifically, the setting data editing unit 57 generates two types of random character strings, assigns them to the setting items “Wi-Fi connection SSID” and “Wi-Fi connection passphrase” of the setting data, and further Set the setting value of the setting item “Setting of Wi-Fi function” to “Valid”. Incidentally, each setting value added at this time is stored in the setting data table T2.

On the other hand, if a negative result is obtained in step SP7, this means that there is no need to import the certificate file into the information processing device 2, and accordingly each setting item of Wi-Fi setting is unnecessary. there is At this time, the control unit 51 proceeds to the next step SP10.

If a positive result is obtained in step SP8, this means that appropriate setting values have already been stored for each setting item of Wi-Fi setting and there is no need to generate them again. At this time, the control unit 51 proceeds to the next step SP10.

In step SP10, the control unit 51 causes the display processing unit 52 (FIG. 8) to display the setting data display screen corresponding to the designated setting data, for example, the setting data display screen S2 shown in FIG. ) and go to the next step SP12. When the setting data 1 of the setting data table T2 (FIG. 9) is specified, the setting data display screen S2 allows the user (that is, the installer) to confirm the contents of the setting data 1, and also displays the setting terminal device 3. is brought close to (that is, hold) the NFC unit 16 ( FIG. 2 ) of the information processing device 2 .

Specifically, on the setting data display screen S2, a predetermined title and a folder button B2 are displayed at the top, and three page display fields PG are displayed below it. In the display field L2, a plurality of setting items are associated with setting keys and displayed side by side in the vertical direction. However, the setting value display column L2 displays only a part of the range of setting keys and setting values due to size restrictions. Further, a message M2 of a character string such as "please hold over the information processing apparatus" is arranged on the lower side of the setting data display screen S2.

Further, the control unit 51 can receive a user's touch operation and swipe operation by the input processing unit 53 (FIG. 8) while the setting data display screen S2 is displayed on the touch panel 37 . For example, when a swipe operation is performed in the vertical direction on the setting data display screen S2, the control unit 51 scrolls the setting value display field L2 in the vertical direction and appropriately changes the range of setting keys and setting values to be displayed.

Furthermore, when a swipe operation in the left and right direction is performed on the setting data display screen S2, the control unit 51 receives an instruction to switch to other setting data. At this time, the swipe operation in the left direction means switching to the setting data one level higher in the setting data list field L1 of the setting data designation screen S1 (FIG. 14A). A swipe operation in the right direction means switching to the setting data one level lower in the setting data list column L1.

Further, the central page display field PG in the upper part of the screen indicates the order of the setting data and the total number of setting data in the setting data designation screen S1 (FIG. 14A) in the form of fractions. The page display field PG on the left indicates the order of setting data that is switched when a right swipe operation is performed, and the page display field PG on the right indicates when a left swipe operation is performed. It represents the order of setting data to be switched. Furthermore, when the page display field PG on the left or right side is blank, the setting data at the top or bottom in the setting data list field L1 is selected. It means you can't get it. When the setting data is switched by these swipe operations, the control unit 51 returns to step SP6 and repeats a series of processing.

In this case, when reaching step SP10 again, the control unit 51 displays the setting data display screen S3 of FIG. 14(C) or the setting data display screen S4 of FIG. 14(D) instead of FIG. 14(B). The setting data display screen S3 and the setting data display screen S4 are screens corresponding to the setting data 2 and the setting data 3, respectively. Or L4 is displayed.

Furthermore, when the upper folder button B2 is touched, the control unit 51 accepts this as an operation for reselecting the setting data. At this time, the control unit 51 returns to step SP3, displays the setting data designation screen S1 (FIG. 14A) again, and repeats the series of processes.

On the other hand, if a negative result is obtained in step SP5, this means that the cancel button B1 has been touched without designating the setting data on the setting data designation screen S1 (FIG. 14A). represents. At this time, the control unit 51 proceeds to the next step SP11.

In step SP11, the control unit 51 causes the display processing unit 52 (FIG. 8) to display the designation error screen S5 shown in FIG. 15A on the touch panel 37 (FIG. 7). In this designation error screen S5, the setting data designation screen S1 (FIG. 14A) is grayed out, and a sub-window W5 is superimposed in the vicinity of the center thereof. In the sub-window W5, a message M5 with a character string such as "the application will be terminated because there is no setting data" is displayed, and an OK button B5 is displayed below the message M5. When the input processing unit 53 (FIG. 8) receives a touch operation on the OK button B5 from the user, the control unit 51 erases the sub-window W5 and returns to the previous display screen, and proceeds to the next step SP12. .

In step SP12, the control section 51 ends the setting data preparation processing procedure RT11. Thus, the setting terminal device 3 completes preparations for writing the setting data to the NFC tag 16T (FIG. 2) of the information processing device 2. FIG. The setting data prepared in this manner is hereinafter referred to as prepared setting data.

[1-2-3. Setting data writing process of setting terminal device]
Next, the details of the setting data write processing procedure RT12 executed by the setting terminal device 3 will be described with reference to the flowchart of FIG. After completing the above-described setting data preparation procedure RT11 (FIG. 13), the setting terminal device 3 performs the setting data writing procedure RT12 (FIG. 16) while forming the functional blocks of the setting application 42 (FIG. 8). and move to the first step SP21.

In step SP21, the control unit 51 confirms the status of the communication connection with the information processing device 2 by NFC7 (FIG. 1) using the NFC processing unit 41 (FIG. 8) and the NFC unit 36 (FIG. 7), and proceeds to the next step. Move to SP22. In step SP22, the control unit 51 determines whether or not the NFC unit 36 is connected to the NFC unit 16 (FIG. 2) of the information processing device 2 via NFC7 (FIG. 1). It is determined whether or not it is approached (held up). If a negative result is obtained here, the control unit 51 returns to step SP21 again and waits for communication connection between the setting terminal device 3 and the information processing device 2 by the NFC7.

On the other hand, when a positive result is obtained in step SP22, the control section 51 proceeds to the next step SP23. In step SP23, the control unit 51 causes the NFC processing unit 41 (FIG. 8) to read information from the NFC tag 16T (FIG. 2) in the NFC unit 16 of the information processing device 2 via the NFC unit 36 and NFC7, and the next step Go to SP24. The information read at this time is hereinafter referred to as tag read information. In step SP24, the control section 51 analyzes the tag read information by the tag information analysis section 55 (FIG. 8), and proceeds to the next step SP25.

At step SP25, the control unit 51 determines whether information has already been written to the NFC tag 16T based on the analysis result of the tag read information. If a positive result is obtained here, this means that since some information has already been written to the NFC tag 16T, new information should not be written to the NFC tag 16T at this stage. At this time, the control unit 51 proceeds to the next step SP26.

In step SP26, the control unit 51 causes the display processing unit 52 (FIG. 8) to display the write error screen S6 shown in FIG. 15B on the touch panel 37 (FIG. 7). In this write error screen S6, the screen that was displayed immediately before, for example, the setting data designation screen S1 (FIG. 14A) is grayed out, and a sub-window W6 is superimposed in the vicinity of its center. In the sub-window W6, a message M6 with a character string such as "the setting has already been written" is displayed, and an OK button B6 is displayed below it. When the input processing unit 53 (FIG. 8) receives the user's touch operation on the OK button B6, the control unit 51 erases the sub-window W6 and returns to the previous display screen, and then returns to step SP21.

On the other hand, if a negative result is obtained in step SP25, this means that the setting data can be written to the NFC tag 16T. At this time, the control unit 51 proceeds to the next step SP27. In step SP27, the control unit 51 causes the tag information generation unit 56 (FIG. 8) to generate tag write information, which is information for writing to the NFC tag 16T, based on the preparation setting data, and proceeds to the next step SP28. move. Specifically, the tag information generation unit 56 refers to the setting data table T2 (FIG. 9), and sequentially aligns each setting value of the preparation setting data and the corresponding setting key to generate tag write information. .

In step SP28, the control unit 51 causes the NFC processing unit 41 (FIG. 8) to write the tag write information to the NFC tag 16T of the information processing device 2 via the NFC unit 36 and the NFC 7 (FIG. 1). Go to SP29. As a result, the NFC tag 16T is in a state in which a plurality of setting keys and respective values are written in association with each other, as shown in FIG. 6B, for example. That is, the NFC tag 16T may be written with certificate information and Wi-Fi settings (FIG. 9) in addition to device initial settings according to the preparation setting data.

At step SP29, the control section 51 determines whether or not the Wi-Fi setting is included in the preparation setting data by referring to the setting data table T2 (FIG. 9). If a positive result is obtained here, this means that the Wi-Fi unit 15 (FIG. 2) of the information processing device 2 must be operated in a state based on the Wi-Fi settings. Indicates that the power must be turned on. At this time, the control unit 51 proceeds to the next step SP30.

In step SP30, the control unit 51 causes the display processing unit 52 (FIG. 8) to display the writing completion notification screen S7 shown in FIG. 15C on the touch panel 37 (FIG. 7). The writing completion notification screen S7 has a setting data display area A7 arranged in a relatively wide range in the upper and central portions, and a message M7 arranged in the lower side thereof. The setting data display area A7 represents the contents of the preparation setting data, and is configured in the same manner as the upper and central portions of the setting data display screen S2 shown in FIG. 14B, for example. The message M7 is, for example, a character string such as "NFC writing is completed. Please turn on the power of the device."

On the other hand, if a negative result is obtained in step SP29, this means that there is no need to turn on the power of the information processing apparatus 2 at this stage. At this time, the control unit 51 proceeds to the next step SP31.

At step SP31, the control unit 51 ends the setting data write processing procedure RT12. Thus, the setting terminal device 3 can write the preparation setting data to the NFC tag 16T (FIG. 2) of the information processing device 2. FIG.

[1-2-4. Startup processing of information processing device]
Next, the details of the startup processing procedure RT21 executed by the information processing device 2 will be described with reference to the flowchart of FIG. When the power is turned on, the CPU 11 (FIG. 2) of the information processing device 2 reads out and executes a predetermined basic program to form functional blocks such as the control unit 21 (FIG. 3). After that, the control unit 21 starts the startup processing procedure RT21 (FIG. 17), and moves to the first step SP41.

In step SP41, the control unit 21 accesses the NFC tag 16T of the NFC unit 16 by the NFC tag control unit 28B (FIG. 3) of the NFC processing unit 28, reads information from the NFC tag 16T, and proceeds to the next step SP42. . In step SP42, the control section 21 analyzes the contents of the read information by the tag information analysis section 25 (FIG. 3), and proceeds to the next step SP43.

At step SP43, the control unit 21 determines whether or not the setting information F2 (FIG. 6B) is written in the NFC tag 16T. If a positive result is obtained here, this means that it is necessary to apply the setting values written as the setting information F2 to the device settings to operate each section. At this time, the control unit 21 proceeds to the next step SP44.

In step SP44, the control unit 21 causes the device setting management unit 24 (FIG. 3) to apply the setting information F2 (FIG. 6B) to the device setting, and proceeds to the next step SP45. Specifically, the device setting management unit 24 converts each value associated with each setting key of the setting information F2 into the setting value of the setting item associated with the setting key in the device setting table T1 (FIG. 4). , is stored in the device setting storage unit 14A (FIG. 2) and updated. Thereby, the information processing device 2 can operate each part based on each setting value of the updated device setting storage part 14A.

In step SP45, the control unit 21 causes the NFC tag control unit 28B (FIG. 3) of the NFC processing unit 28 to erase the setting information F2 of the NFC tag 16T (FIG. 2), thereby causing the setting information F2 shown in FIG. , leaving only the device information F1, the process proceeds to the next step SP46.

In step SP46, the control unit 21 causes the device setting management unit 24 to refer to the device setting table T1 (FIG. 4) and the device setting storage unit 14A (FIGS. 2 and 5), and select the setting item "Wi-Fi function setting". is "valid" or not. If a positive result is obtained here, this means that it is necessary to operate the Wi-Fi unit according to each setting value of the device setting storage section 14A. At this time, the control unit 21 proceeds to the next step SP47.

In step SP47, the control unit 21 causes the Wi-Fi control unit 29 (FIG. 3) to activate the Wi-Fi unit 15 and start the operation according to each setting value of the device setting storage unit 14A, and the next step Go to SP48. As a result, the Wi-Fi unit 15 starts operating in AP mode and becomes an access point in Wi-Fi 8 (FIG. 1). At this time, the Wi-Fi unit 15 determines that the SSID and passphrase required for connection to the Wi-Fi 8 are included in the setting information F2 (FIG. 6B) written from the setting terminal device 3 via the NFC 7. It was value for money.

In step SP48, when receiving an instruction to print the menu map from the user via the operation button 18 (FIG. 2), the control section 21 prints the menu map including the two-dimensional code, and proceeds to the next step SP49. Specifically, the control unit 21 first generates an encrypted character string by performing a predetermined encryption process on the character string representing the SSID and password necessary for connecting to the Wi-Fi 8 . Subsequently, the control unit 21 causes the two-dimensional code generation unit 27 to generate a two-dimensional code representing this encrypted character string. Further, the control unit 21 causes the print unit 19 (FIG. 2) to print the image including the menu map and the two-dimensional code on paper via the print processing unit 26 and the device setting management unit 24 . Here, the menu map means that the current device settings are displayed by associating the device setting categories and setting items included in the device setting table T1 (FIG. 4) with the setting values stored in the device setting storage unit 14A. It is represented in a list format.

On the other hand, if a negative result is obtained in step SP43, this means that the setting information F2 has not been written to the NFC tag 16T and there is no need to update the device settings. At this time, the control unit 21 proceeds to the next step SP49. Also, if a negative result is obtained in step SP46, this means that the Wi-Fi unit 15 need not be activated. At this time, the control unit 21 proceeds to the next step SP49. In step SP49, the control unit 21 terminates the activation procedure RT21.

[1-2-5. Relay processing procedure of relay terminal device]
Next, the details of the relay processing procedure RT31 executed by the relay terminal device 4 will be described with reference to the flowchart of FIG. The CPU 61 (FIG. 10) of the relay terminal device 4 operates a predetermined OS in advance. The relay program is read from and executed to form each functional block such as the control unit 81 (FIG. 11). After that, the control unit 81 starts the relay processing procedure RT31 (FIG. 18) and moves to the first step SP51.

In step SP51, the control unit 81 first causes the display processing unit 82 (FIG. 11) to display the processing selection screen S11 shown in FIG. 19A on the touch panel 67 (FIG. 10). A device information acquisition button B11A and a device information selection button B11B are displayed on the process selection screen S11. The device information acquisition button B11A is a button for performing processing for acquiring device information such as a certificate file. The device information selection button B11B is a button for selecting one of a plurality of already acquired device information.

Subsequently, when the input processing unit 83 (FIG. 11) accepts that the device information acquisition button B11A has been touched on the process selection screen S11, the control unit 81 displays the reading instruction screen S12 shown in FIG. 19B. It is displayed on the touch panel 67 (FIG. 10). In this reading instruction screen S12, a message M12 of a character string such as "Please read the two-dimensional code" is displayed on the upper side, an image display field P12 is displayed in the center, and a cancel button for returning to the previous screen is displayed on the lower side. A button B12 is displayed. In the image display field P12, images picked up by the camera unit 68 are sequentially displayed, and a guide frame F12 indicating the position where the two-dimensional code should be stored is displayed. At this time, the control unit 81 causes the two-dimensional code reading processing unit 72 (FIG. 11) to try to detect a two-dimensional code from the captured image. After converting, it moves to the next step SP52. Hereinafter, the character string obtained at this time will be referred to as a read character string.

In step SP52, the control unit 81 causes the display processing unit 82 (FIG. 11) to display the password input screen S13 shown in FIG. 19C on the touch panel 67 (FIG. 10). In the password entry screen S13, a character string message M13 such as "Please enter a password" is displayed on the upper side, an input character display field C13 is displayed on the lower side, and an input completion button B13 is displayed on the lower side. A character input field K13 for accepting character input is displayed below it. The control unit 81 causes the display processing unit 82 and the input processing unit 83 (FIG. 11) to display characters input using the character input field K13 in the input character display field C13, and the input completion button B13 is touch-operated. Then, the process moves to the next step SP53.

In step SP53, the control unit 81 causes the decryption processing unit 84 (FIG. 11) to decrypt the read character string using the input password, and based on the obtained information, the display processing unit 82 (FIG. 11) The information display screen S14 shown in FIG. 19(D) is displayed on the touch panel 67 (FIG. 10), and the process proceeds to the next step SP54.

In the information display screen S14, an information display field L14 for displaying information is displayed in the upper part or the center, and a download button B14A, an import button B14B, a save button B14C and a cancel button B14D are displayed in the lower part thereof. The download button B14A displays a character string such as "download certificate from server", and is a button for connecting to the server device 6 and acquiring (downloading) a certificate file. The import button B14B is a button for sending (importing) a certificate to the information processing apparatus 2, on which a character string such as "import certificate" is displayed. The save button B14C is a button for saving the downloaded certificate file in the storage 64. FIG. The cancel button B14D is a button for returning to the previous screen. Incidentally, if the entered password is incorrect and the decryption fails, the control unit 81 displays a predetermined error screen, returns to step SP52, and prompts the user to enter the password again.

In step SP54, the control unit 81 determines whether or not the decrypted character string has certificate information related to the certificate by the setting value analysis unit 86 (FIG. 11). It is determined whether or not the password for releasing the protection and the address of the server device 6 for downloading the certificate file are included. If a negative result is obtained here, this means that the certificate information was not included in the read two-dimensional code, and it is necessary for the user (employee of the company) to enter the certificate information. . At this time, the control unit 81 proceeds to the next step SP55.

In step SP55, the control unit 81 causes the display processing unit 82 (FIG. 11) to display a predetermined input screen on the touch panel 67 to input the certificate information, and the information editing unit 85 (FIG. 11) inputs the certificate information. After storing the obtained value in the storage 64 (FIG. 10) as certificate information, the process proceeds to the next step SP56.

On the other hand, if a positive result is obtained in step SP54, this means that there is no need to enter certificate information. At this time, the control unit 81 proceeds to the next step SP56.

In step SP56, when the input processing unit 83 (FIG. 11) receives a touch operation on the download button B14A on the information display screen S14 (FIG. 19D), the control unit 81 connects to the access point 5 via Wi-Fi. , the process proceeds to the next step SP57. Specifically, the control unit 81 controls the Wi-Fi unit 65 (FIG. 10) by the Wi-Fi control unit 71 (FIG. 11), and establishes a connection by Wi-Fi9 with the access point 5 (FIG. 1). do. This enables the relay terminal device 4 to transmit and receive information to and from the server device 6 via the Wi-Fi 9, the access point 5 and the network 10 (FIG. 1).

At step SP57, based on the certificate information included in the two-dimensional code or the certificate information input by the user, the control unit 81 extracts the certificate from the certificate file storage unit 6C of the server device 6 (FIG. 1). Acquire the file and move to the next step SP58. At this time, the Wi-Fi control unit 71 can use various protocols, such as FTP and HTTP, that enable file transmission/reception. By the way, when the input processing unit 83 (FIG. 11) accepts a touch operation on the save button B14C of the information display screen S14 (FIG. 19D), the control unit 81 stores the downloaded certificate file in the storage 64 It can be saved in the storage unit 64A (FIG. 10).

In step SP58, the control unit 81 causes the Wi-Fi control unit 71 (FIG. 11) to control the Wi-Fi unit 65 (FIG. 10) to establish the Wi-Fi established with the access point 5 (FIG. 1). - Disconnect the connection by Fi9 and move to the next step SP59.

In step SP59, when the input processing unit 83 (FIG. 11) receives a touch operation on the import button B14B of the information display screen S14 (FIG. 19D), the control unit 81 changes the settings of the Wi-Fi unit 65. , the process proceeds to the next step SP60. Specifically, the control unit 81 controls the Wi-Fi unit 65 (FIG. 10) by the Wi-Fi control unit 71 (FIG. 11), and sets the current Wi-Fi settings (SSID and password) for connecting to the access point 5. phrase, etc.) is stored in the storage 64, and then the Wi-Fi settings (SSID, passphrase, etc.) included in the two-dimensional code are applied.

Incidentally, when the control unit 81 receives a touch operation on the device information selection button B11B on the process selection screen S11 (FIG. 19A), the display processing unit 82 (FIG. 11) displays the device information shown in FIG. A selection screen S<b>15 is displayed on the touch panel 67 . In the device information selection screen S15, a device information display field L15 is displayed on the upper side or the center, and a cancel button B15 is displayed on the lower side. In the device information display field L15, a plurality of pieces of device information are displayed in a list format such as "device information 1", "device information 2", . ing. The control section 81 moves to step SP59 also when any device information is selected. Further, when the cancel button B15 is touch-operated, the control unit 81 returns to the previous process selection screen S11 (FIG. 19A) without selecting the device information.

If the certificate file has not been downloaded when the touch operation of the import button B14B is accepted, the control unit 81 displays the certificate error screen shown in FIG. 20B by the display processing unit 82 (FIG. 11). S16 is displayed on the touch panel 67. In the certificate error screen S16, the screen that was displayed immediately before, for example, the information display screen S14 (FIG. 19D) is grayed out, and a sub-window W16 is superimposed in the vicinity of its center. In the sub-window W16, a message M16 with a character string such as "certificate not downloaded" is displayed, and an OK button B16 is displayed below it. When the input processing unit 83 (FIG. 11) receives a touch operation on the OK button B16 from the user, the control unit 81 erases the sub window W16 and returns to the previous display screen.

In step SP60, the control unit 81 determines whether or not the SSID of the Wi-Fi unit 15 of the information processing device 2 is detected by the Wi-Fi control unit 71 (FIG. 11) and the Wi-Fi unit 65 (FIG. 10). do. If a negative result is obtained here, the control unit 81 waits for detection of the SSID by repeating step SP60.

On the other hand, when a positive result is obtained in step SP60, the control unit 81 proceeds to the next step SP61, and the Wi-Fi control unit 71 (FIG. 11) and the Wi-Fi unit 65 (FIG. 10) operate the information processing device 2. A connection is established with the Wi-Fi unit 15 by Wi-Fi 8 (FIG. 1), and the process proceeds to the next step SP62.

By the way, if the control unit 81 fails to establish a connection with the information processing device 2 via Wi-Fi 8 due to reasons such as an incorrect passphrase, the display processing unit 82 (FIG. 11) causes the display processing unit 82 (FIG. 11) to display the is displayed on the touch panel 67. In the connection error screen S17, the screen displayed immediately before, for example, the information display screen S14 (FIG. 19(D)) is grayed out, and a sub-window W17 is superimposed in the vicinity of its center. In the sub-window W17, a message M17 with a character string such as "Wi-Fi connection failed" is displayed, and an OK button B17 is displayed below it. When the input processing unit 83 (FIG. 11) receives the user's touch operation on the OK button B17, the control unit 81 erases the sub-window W17 and returns to the previous display screen.

In step SP62, the control unit 81 transmits a certificate file, protection release password, etc. to the information processing device 2 by the setting value transmission unit 87, the Wi-Fi control unit 71 (FIG. 11), and the Wi-Fi unit 65 (FIG. 10). is transmitted, and the process proceeds to the next step SP63. At this time, the Wi-Fi control unit 71 can use various protocols, such as FTP and HTTP, that enable file transmission/reception. If the certificate file, protection release password, and the like have been successfully transmitted (imported), the control unit 81 causes the display processing unit 82 (FIG. 11) to display the import completion screen S18 shown in FIG. display. In the import completion screen S18, the screen displayed immediately before, for example, the information display screen S14 (FIG. 19(D)) is grayed out, and a sub-window W18 is superimposed near the center thereof. In the sub-window W18, a message M18 with a character string such as "Certificate import completed" is displayed, and an OK button B18 is displayed below it. When the input processing unit 83 (FIG. 11) receives a touch operation on the OK button B18 from the user, the control unit 81 erases the sub window W18 and returns to the previous display screen.

In step SP63, the control unit 81 transmits a Wi-Fi setting initialization request to the information processing device 2 through the Wi-Fi control unit 71 (FIG. 11) and the Wi-Fi unit 65 (FIG. 10), It moves to next step SP64. In step SP64, the control unit 81 causes the Wi-Fi control unit 71 (FIG. 11) to control the Wi-Fi unit 65 (FIG. 10) to establish a connection with the information processing device 2 (FIG. 1). Disconnect the connection by Wi-Fi8, and move to the next step SP65.

In step SP65, the control section 81 restores the setting of the Wi-Fi unit 65 to the previous value, and proceeds to the next step SP66. Specifically, the control unit 81 reads and applies the Wi-Fi settings (SSID, passphrase, etc.) stored in the storage 64 in step SP59, thereby allowing the access point 5 (FIG. 1) to access the Wi-Fi again. Fi9 makes it possible to connect.

At step SP66, the control unit 81 erases the certificate file, protection cancellation password, etc. stored in the certificate file storage unit 64A of the storage 64, and proceeds to the next step SP67. At step SP67, the control unit 81 terminates the relay processing procedure RT31. Thus, the relay terminal device 4 acquires the certificate file from the server device 6 while connected to the access point 5 via Wi-Fi 9, and then connects to the information processing device 2 via Wi-Fi 8. You can send the certificate file at

[1-2-6. Certificate Receiving Process of Information Processing Device]
Next, certificate reception processing executed by the information processing device 2 will be described with reference to the flowchart of FIG. After completing the startup processing procedure RT21 (FIG. 17), the CPU 11 (FIG. 2) of the information processing device 2 performs the certificate reception processing procedure RT22 (FIG. 21) while maintaining each functional block such as the control unit 21 (FIG. 3). ) and move to the first step SP71.

Here, it is assumed that the Wi-Fi unit 15 is operating in AP mode in the activation procedure RT21 (FIG. 17).

In step SP71, the control unit 21 confirms the state of connection via the Wi-Fi 8 (FIG. 1) by the Wi-Fi control unit 29 (FIG. 3) and the Wi-Fi unit 15 (FIG. 2), and the next step Go to SP72. At step SP72, the control unit 21 determines whether communication connection has been established from any device via Wi-Fi8. If a negative result is obtained here, the control unit 21 returns to step SP71 and waits for connection via Wi-Fi 8 from any device.

On the other hand, if a positive result is obtained in step SP72, this means that there is a connection from any device via Wi-Fi8. At this time, the control unit 21 proceeds to the next step SP73. Incidentally, in this case, the device that knows the Wi-Fi settings (SSID, passphrase, etc.) for connecting to the Wi-Fi unit 15 operating in AP mode is the relay terminal device 4 that read the two-dimensional code. Conceivable. Therefore, the control unit 21 assumes that the relay terminal device 4 is connected via the Wi-Fi 8, and continues the subsequent processing.

In step SP73, the control unit 21 confirms the data reception status via the Wi-Fi 8 by the Wi-Fi control unit 29 (FIG. 3) and the Wi-Fi unit 15 (FIG. 2), and proceeds to the next step SP74. move. At step SP74, the control unit 21 determines whether data has been received from the relay terminal device 4 or not. If a negative result is obtained here, the control unit 21 proceeds to the next step SP75.

At step SP75, the control unit 21 determines whether or not the Wi-Fi 8 connection has been disconnected by the Wi-Fi control unit 29 (FIG. 3) and the Wi-Fi unit 15 (FIG. 2). If a negative result is obtained here, this means that the connection with the relay terminal device 4 via Wi-Fi 8 is continued, and data reception should be awaited. At this time, the control unit 21 returns to step SP73.

On the other hand, if a positive result is obtained in step SP75, this means that connection with the relay terminal device 4 should be made again via Wi-Fi 8 in order to receive data. At this time, the control unit 21 returns to step SP71.

On the other hand, if a positive result is obtained in step SP74, this indicates that data has been received and that the data may contain a certificate file or the like. At this time, the control unit 21 proceeds to the next step SP76. In step SP76, the control section 21 analyzes the received data by the data analysis section 30 (FIG. 3), and proceeds to the next step SP77.

At step SP77, the control unit 21 determines whether or not the received data includes a certificate file and a protection release password. If a positive result is obtained here, the control unit 21 proceeds to the next step SP78, decrypts the certificate file using the protection release password, and stores it in the certificate storage unit 14B (FIG. 2) of the storage 14. Then, the process proceeds to the next step SP79.

On the other hand, if a negative result is obtained in step SP77, this means that the received data does not include at least part of the certificate file, etc., and the certificate file cannot be imported. At this time, the control unit 21 proceeds to the next step SP79.

At step SP79, the control unit 21 determines whether or not the data received from the relay terminal device 4 includes an instruction to initialize the Wi-Fi settings. If a negative result is obtained here, this means that the current state in which the Wi-Fi unit 15 is operating in AP mode, that is, the state in which connection with the relay terminal device 4 is possible via Wi-Fi 8 should be continued. represents. At this time, the control unit 21 returns to step SP73 and repeats the series of processes.

On the other hand, if a positive result is obtained in step SP79, this means that the relay terminal device 4 has finished transmitting the necessary information such as the certificate file and the protection release password, and therefore connection via Wi-Fi 8 is no longer necessary. represent. At this time, the control unit 21 proceeds to the next step SP80.

In step SP80, the control section 21 initializes the settings related to the Wi-Fi connection by the device setting management section 24 (FIG. 3), and proceeds to the next step SP81. In step SP81, the control section 21 causes the Wi-Fi control section 29 (FIG. 3) to stop the operation of the Wi-Fi unit 15 (FIG. 2), and proceeds to the next step SP82.

At step SP82, the control unit 21 terminates the certificate reception processing procedure RT22. As a result, the information processing device 2 is properly set, the certificate is correctly imported, and both the NFC unit 16 and the Wi-Fi unit 15 are initialized.

[1-3. effects, etc.]
In the above configuration, the information processing system 1 according to the first embodiment transmits setting data from the setting terminal device 3 to the information processing device 2 via NFC 7 when the information processing device 2 is introduced into a company. At the same time, the relay terminal device 4 acquires the certificate file from the server device 6 and transmits it to the information processing device 2 via Wi-Fi 8 .

For this reason, in the information processing system 1, the certificate information for accessing the certificate file stored in the server device 6 is known to the installer who operates the setting terminal device 3. Access and handling of the certificate file itself to be imported into the information processing apparatus 2 can be eliminated. As a result, in the information processing system 1, there is no need to inform persons outside the company of important information in the company's information network, and security can be ensured.

From another point of view, in the information processing system 1, an employee of the company operates the relay terminal device 4 to perform the minimum work for information that should not be known to people outside the company. is performed by an external installer using the setting terminal device 3 . Therefore, in the information processing system 1, it is possible to minimize the work burden on company employees while ensuring security.

From a different point of view, in the information processing system 1, the information processing device 2 does not need to be directly connected to the same network as the server device 6. FIG. That is, in the information processing system 1, the relay terminal device 4 can read the two-dimensional code printed on the paper, the relay terminal device 4 can be connected to the access point 5 by Wi-Fi 9, and then the relay terminal device 4 can be connected to the information processing device 2 via Wi-Fi 8 . Therefore, in the information processing system 1, for example, even if the information processing device 2 is installed far from the access point 5, the user (employee of the company) using the relay terminal device 4 may By appropriately moving to the vicinity of the access point 5, the certificate can be properly imported.

Further, in the information processing system 1, Wi-Fi 8 is used instead of NFC 7 when transmitting a certificate file or the like from the relay terminal device 4 to the information processing device 2 (FIG. 12, etc.). Therefore, in the information processing system 1, even if the size of the certificate file is relatively large, the entire certificate file can be reliably transmitted without being affected by the limitation of the storage capacity of the NFC tag 16T.

Furthermore, in the information processing system 1, when the power of the information processing device 2 is not turned on, setting data is written to the NFC tag 16T using the NFC 7 from the setting terminal device 3, so that when the power of the information processing device 2 is turned on, the setting data is written to the NFC tag 16T. The setting data of the NFC tag 16T is read and immediately applied to the device settings. Therefore, in the information processing system 1, by including information about Wi-Fi connection in the setting data, time-consuming setting change work using the relatively small display panel 17 and the relatively few operation buttons 18 of the information processing apparatus 2 can be performed. , the Wi-Fi unit 15 of the information processing device 2 can be operated in the AP mode.

In addition, in the information processing system 1, the Wi-Fi settings (SSID, passphrase, etc.) for connecting to the Wi-Fi unit 15 of the information processing device 2 operating in AP mode are printed on paper as a two-dimensional code. is read by the relay terminal device 4 (FIG. 12, etc.). Therefore, in the information processing system 1, the troublesome work of having the user (employee of the company) input the Wi-Fi setting in the relay terminal device 4 can be avoided.

In addition to this, in the information processing system 1, a two-dimensional code generated after encrypting a character string such as certificate information is printed on a sheet. Therefore, in the information processing system 1, even if the paper on which the two-dimensional code is printed is left unattended and a third party who does not know the password reads the two-dimensional code with another terminal device (smartphone, etc.), the encryption You can stop it until it extracts the string that has been decrypted and prevent it from being decrypted. That is, the information processing system 1 can effectively prevent a third party from illegally obtaining the certificate information or the certificate file itself.

Further, in the information processing system 1, the certificate information regarding the certificate file can be included in the setting data transmitted from the setting terminal device 3 to the information processing device 2 (FIG. 9). Therefore, in the information processing system 1, the certificate information can be included in the two-dimensional code generated by the information processing device 2, and the two-dimensional code can be passed to the relay terminal device 4 that reads the two-dimensional code. As a result, in the information processing system 1, the user (employee of the company) of the relay terminal device 4 does not have to perform troublesome work such as inputting the certificate information.

On the other hand, in the information processing system 1, it is also allowed to omit the certificate information from the setting data transmitted from the setting terminal device 3 to the information processing device 2. FIG. For this reason, in the information processing system 1, for example, when it is desired not to expose the certificate information to the installer, it is possible to intentionally not include the certificate information in the setting data. In this case, in the information processing system 1, a negative result is obtained in step SP54 in the relay processing procedure RT31 (FIG. 18) executed by the relay terminal device 4. employee) to enter.

In the information processing system 1, after the import of the certificate from the relay terminal device 4 to the information processing device 2 is normally completed, the Wi-Fi setting of the relay terminal device 4 is returned to the original state (connected to Wi-Fi 9). state), and the Wi-Fi setting of the information processing device 2 is initialized. As a result, in the information processing system 1, the information regarding the Wi-Fi 8 can be deleted from the relay terminal device 4 and the information processing device 2, and security problems can be avoided.

Further, in the information processing system 1, after the import of the certificate from the relay terminal device 4 to the information processing device 2 is normally completed, the certificate file stored in the storage 64 of the relay terminal device 4 is deleted. bottom. As a result, the information processing system 1 can eliminate the risk of the certificate file leaking from the relay terminal device 4 to others.

According to the above configuration, the information processing system 1 according to the first embodiment transmits setting data from the setting terminal device 3 used by the installer to the information processing device 2 via the NFC 7, obtains the certificate file from the server device 6 and transmits it to the information processing device 2 via the Wi-Fi 8 . Therefore, in the information processing system 1, it is possible to eliminate direct handling of the certificate file and related information by an external installer. You can configure the necessary device settings for it and import the certificate.

[2. Second Embodiment]
As shown in FIG. 22 corresponding to FIG. 1, the information processing system 201 according to the second embodiment has the information processing device 2 and the relay terminal device 4 as compared with the information processing system 1 according to the first embodiment. Although the difference is that an information processing device 202 and a relay terminal device 204 are provided instead, the other points are configured in the same manner. This relay terminal device 204 can be connected to the information processing device 202 by NFC 207 .

[2-1. Configuration of information processing device and relay terminal device]
The information processing device 202 (FIGS. 2 and 3) differs from the information processing device 2 according to the first embodiment in that it has a storage 214 and a control unit 221 instead of the storage 14 and the control unit 21. , are otherwise constructed in the same way. The storage 214 is a non-volatile information storage medium such as a hard disk drive, flash memory, etc., similar to the storage 14 according to the first embodiment, but stores information, programs, etc. that are partly different from the storage 14. there is The control unit 221 performs partially different processing compared to the control unit 21 according to the first embodiment.

23 and 24 corresponding to FIGS. 10 and 11, the relay terminal device 204 has a storage 264 and a relay application 273 instead of the storage 64 and the relay application 73, unlike the relay terminal device 4. differ in The relay application 273 differs from the relay application 73 in that it has a control unit 281 that replaces the control unit 81, but is otherwise configured in the same manner. The relay terminal device 204 is different in that the camera unit 68 and the two-dimensional code reading processing unit 72 are omitted, while the NFC unit 266 and the NFC processing unit 272 are provided. there is

The storage 264 is a non-volatile information storage medium such as a flash memory like the storage 64 according to the first embodiment, but stores information, programs, etc. that are partly different from those of the storage 64 . The control unit 281 executes partially different processing compared to the control unit 81 according to the first embodiment. The NFC unit 266 and the NFC processing section 272 are configured similarly to the NFC unit 36 and the NFC processing section 41 (FIGS. 7 and 8) of the setting terminal device 3, respectively.

[2-2. Relay setting processing]
In the information processing system 201 according to the second embodiment, relay setting processing is performed according to the sequence chart shown in FIG. 25 corresponding to FIG. In this relay setting process, as compared with the first embodiment, instead of the information processing device 2 executing the startup processing procedure RT21 and the relay terminal device 4 executing the relay processing procedure RT31, the information processing The difference is that the device 202 executes the startup processing procedure RT221 and the relay terminal device 204 executes the relay processing procedure RT231.

Among these, in the activation process procedure RT221, instead of the process of "printing the two-dimensional code", the process of "transmitting Wi-Fi settings by NFC" is performed. In addition, in the relay processing procedure RT231, instead of the process of "reading the two-dimensional code", the process of "receiving Wi-Fi setting by NFC" is performed. Below, the details of the startup processing procedure RT221 and the relay processing procedure RT231 will be described respectively.

[2-2-1. Startup processing of information processing device]
The control unit 221 (FIG. 3) of the information processing device 202 executes the startup processing procedure RT221 shown in FIG. 26 corresponding to FIG. When starting the startup processing procedure RT221, the control unit 221 performs the same processing as steps SP41 to SP44 (FIG. 17) in steps SP241 to SP244, thereby applying the device settings read from the NFC tag 16T. to step SP245.

In step SP245, the control unit 221 accesses the NFC unit 16 by the NFC tag control unit 28B (FIG. 3) of the NFC processing unit 28, and confirms connection from each device to the NFC unit 16 by NFC7 (FIG. 22). Then, the process proceeds to the next step SP246. At step SP246, the control unit 221 determines whether or not there is a connection to the NFC unit 16 using NFC7. If a negative result is obtained here, the control unit 221 returns to step SP245 again and waits for NFC connection.

On the other hand, if a positive result is obtained in step SP246, this means that it can be considered that the relay terminal device 204 has established a connection via the NFC207. At this time, the control unit 221 proceeds to the next step SP247. At step SP247, the control unit 221 reads the content of the NFC tag 16T based on the request from the relay terminal device 204 in the NFC unit 16, and transmits it to the relay terminal device 204 via the NFC 207, and proceeds to the next step SP248.

In step SP248, the control unit 221 causes the NFC tag control unit 28B (FIG. 3) of the NFC processing unit 28 to erase the setting information F2 (FIG. 6B) of the NFC tag 16T (FIG. As shown in (A), only the device information F1 is left, and the process proceeds to the next step SP249. In step SP249, the control unit 221 terminates the activation procedure RT221.

[2-2-2. Relay processing procedure of relay terminal device]
The control unit 281 (FIG. 24) of the relay terminal device 204 executes the relay processing procedure RT231 shown in FIG. 27 corresponding to FIG. After starting this relay processing procedure RT231, the control unit 281 performs the same processing as steps SP21 to SP23 in the setting data writing processing procedure RT12 (FIG. 16) in steps SP251 to SP253, thereby enabling NFC communication via the NFC 207. Read information from tag 16T (FIG. 2). At this time, the setting data written by the setting terminal device 3 remains in the NFC tag 16T as it is, part of which is certificate information.

After that, the control unit 281 uses the certificate information read from the NFC tag 16T to execute each process after step SP254 in the same manner as each process after step SP54 of the relay processing procedure RT31 (FIG. 18). . As a result, the relay terminal device 204 can acquire the certificate file from the server device 6 (FIG. 22), transmit it to the information processing device 202, and import it.

[2-3 Effects, etc.]
In the above configuration, the information processing system 201 according to the second embodiment transmits setting data from the setting terminal device 3 to the information processing device 202 via NFC 7 as in the first embodiment. , the relay terminal device 204 acquires the certificate file from the server device 6 and transmits it to the information processing device 202 via Wi-Fi8.

Therefore, in the information processing system 201, as in the first embodiment, it is possible to eliminate the need for the installer who operates the setting terminal device 3 to access the server device 6 and the certificate file. As a result, in the information processing system 201, similarly to the first embodiment, there is no need to notify persons outside the company of important information in the company's information network, and security can be ensured.

Further, unlike the first embodiment, the information processing system 201 uses the NFC 207 to pass the certificate information from the information processing device 202 to the relay terminal device 204 . Therefore, in the information processing system 201, the trouble of printing the two-dimensional code on paper can be omitted, and the risk of being read by a third party due to the paper being left unattended can be eliminated.

In other respects, the information processing system 201 can achieve the same effects as the information processing system 1 according to the first embodiment.

According to the above configuration, the information processing system 201 according to the second embodiment transmits setting data from the setting terminal device 3 used by the installer to the information processing device 202 via NFC7. Further, in the information processing system 201, the relay terminal device 204 used by the employee of the company receives the certificate information from the information processing device 202 using the NFC 207, acquires the certificate file from the server device 6, and obtains the certificate file via Wi-Fi8. It transmits to the information processing device 202 . Therefore, in the information processing system 201, it is possible to eliminate direct handling of the certificate file and related information by an external installer. You can configure the necessary device settings for it and import the certificate.

[3. Other embodiments]
In the above-described first embodiment, the case where the two-dimensional code is used when passing the certificate information from the information processing device 2 to the relay terminal device 4 has been described (FIG. 12). Also, in the second embodiment, the case where the NFC 207 is used when passing the certificate information from the information processing device 202 to the relay terminal device 204 has been described (FIGS. 22 and 25). However, the present invention is not limited to this. Certificate information may be acquired by the relay terminal device 4 or the like by various methods such as manual input of the certificate information.

Furthermore, in these cases, instead of predetermining any one method, the user may be allowed to select any method from a plurality of methods such as two-dimensional code, NFC, WPS, and manual input. good. Specifically, for example, immediately after the start of the relay processing procedure RT31 (FIG. 18), the device information When the acquisition button B11A is touch-operated, the acquisition method selection screen S31 shown in FIG. 28 may be displayed on the touch panel 67 (FIG. 10). On this acquisition method selection screen S31, an acquisition method list L31 is displayed at the top or center, and a cancel button B31 is displayed at the bottom. In the acquisition method list L31, methods such as "two-dimensional code", "NFC", "WPS" and "manual input" are displayed in each row, and each method can be selected by touch operation. can.

Further, in the first embodiment described above, if each setting item of the category of certificate information in the setting data (FIG. 9, etc.) is already set, the value is used, and if not set, the relay process is performed. The case where certificate information is input in step SP55 of procedure RT31 (FIG. 18) has been described. However, the present invention is not limited to this, and for example, each setting item in the category of certificate information may always be set in advance in the setting data, or may be left unset. The same applies to the second embodiment.

Further, in the above-described first embodiment, if each setting item in the Wi-Fi setting category in the setting data (FIG. 9, etc.) has been set, the value is used, and if not set, the setting The case of generating the Wi-Fi settings in step SP9 of the data preparation procedure RT11 (FIG. 13) has been described. However, the present invention is not limited to this, and for example, each setting item in the Wi-Fi setting category may always be set in advance in the setting data, or may be left unset. Also, the Wi-Fi settings may be generated by the information processing device 2 . The same applies to the second embodiment.

Furthermore, in the above-described first embodiment, when the information processing device 2 generates the two-dimensional code, the certificate information is encrypted, and in the relay terminal device 4 that has read the two-dimensional code, the encrypted character We have described the case of extracting a string and decrypting it using a password entered by the user. However, the present invention is not limited to this. For example, when the information processing device 2 requests the input of a password when printing the two-dimensional code, and only when the password is verified, the two-dimensional code is printed by converting the plaintext character string. can be This allows only authorized users to obtain certificate information. Alternatively, a two-dimensional code may be generated by converting a plaintext character string without requiring the input of a password at any time. Also in the second embodiment, for example, the certificate information may be transmitted by the NFC 207 only when the correct password is input to the information processing apparatus 202 .

Furthermore, in the above-described first embodiment, the case where the information processing apparatus 2 prints the two-dimensional code on paper together with the menu map has been described. However, the present invention is not limited to this, and for example, a two-dimensional code may be printed on paper alone. Alternatively, for example, when the display panel 17 of the information processing device 2 has a sufficient resolution, the two-dimensional code may be displayed on the display panel.

Furthermore, in the above-described first embodiment, the information processing device 2 generates a two-dimensional code, which is a QR code (registered trademark), based on the certificate information and prints it on a sheet of paper. I mentioned the case of reading. However, the present invention is not limited to this. (referred to as an information image) may be printed on paper and read by the relay terminal device 4 .

Furthermore, in the first embodiment described above, the case where the relay terminal device 4 connects to the access point 5 via Wi-Fi 9 when acquiring the certificate file from the server device 6 has been described. However, the present invention is not limited to this. can be In this case, the access point 5 can be omitted. The same applies to the second embodiment.

Furthermore, in the above-described first embodiment, the case where the content of the setting data is displayed on the setting data display screen S2 (FIG. 14B) or the like has been described. However, the present invention is not limited to this. For example, the set value of the certificate information in the setting data may be displayed with substitute characters such as "*" or "·", or only the certificate information may not be displayed. Also good. As a result, the certificate information can be transmitted from the setting terminal device 3 to the information processing device 2 without showing it to the installer. The same applies to the second embodiment.

Furthermore, in the first embodiment described above, the case where the certificate file stored in the server device 6 is imported into the information processing device 2 has been described. However, the present invention is not limited to this, and may be applied when various files stored in the server device 6 are imported into the information processing device 2 . The same applies to the second embodiment.

Furthermore, in the above-described first embodiment, the case where both the setting terminal device 3 and the relay terminal device 4 are smartphones has been described. However, the present invention is not limited to this, and the setting terminal device 3 and the relay terminal device 4 may be various information devices such as a tablet terminal and a notebook computer device. In this case, a necessary communication unit such as an NFC unit or a Wi-Fi unit may be installed. However, the setting terminal device 3 may be in any form as long as it can be brought close to (held over) the NFC unit 16 of the information processing device 2 . The same applies to the second embodiment.

Furthermore, in the above-described first embodiment, the relay terminal device 4 reads out and executes a program pre-stored in the storage 64 (FIG. 10) to execute the relay processing procedure RT31 (FIG. 18). Stated. However, the present invention is not limited to this. For example, the relay terminal device 4 may download a predetermined program from the server device 6 and execute the relay processing procedure RT31. The same applies to the information processing device 2 and the setting terminal device 3, and also to the second embodiment.

Furthermore, in the first embodiment described above, the case where the server device 6 transmits the certificate file to the relay terminal device 4 in response to a request from the relay terminal device 4 has been described. However, the present invention is not limited to this. A certificate file may be transmitted to the relay terminal device 4 . The same applies to the second embodiment.

Furthermore, in the first embodiment described above, the case where the present invention is applied to the information processing apparatus 2, which is an image forming apparatus configured as a single-function printer, has been described. However, the present invention is not limited to this, and may be applied to an information processing apparatus, which is an image forming apparatus having various other functions, such as an MFP (Multi Function Peripheral) having the functions of a copier or a facsimile machine. The same applies to the second embodiment.

Furthermore, in the first embodiment described above, the case where the information processing apparatus 2 (FIG. 2) is an image forming apparatus having the printing unit 19 has been described. However, the present invention is not limited to this, and may be applied when the information processing device 2 is other various electronic devices. The same applies to the second embodiment.

Furthermore, the present invention is not limited to the embodiments described above and other embodiments. In other words, the scope of the present invention extends to embodiments obtained by arbitrarily combining part or all of each of the above-described embodiments and other embodiments described above, and to embodiments in which a part is extracted. is.

Furthermore, in the above-described first embodiment, the relay terminal device 4 as a communication terminal device, the server device 6 as a server device, and the information processing device 2 as an information processing device are used as an information processing system. A case of configuring the processing system 1 has been described. Among them, the server device is configured by a storage 6S as a storage unit. Further, the information processing apparatus is configured by an NFC unit 16 as a first acquisition section, a printing section 19 as an output section, and a Wi-Fi unit 15 as a first wireless communication section. Further, the communication terminal device is composed of a camera unit 68 and a two-dimensional code reading processing section 72 as a second acquisition section, and a Wi-Fi unit 65 as a second wireless communication section. However, the present invention is not limited to this, and an information processing system may be configured by a communication terminal device, a server device, and an information processing device having various configurations. In this case, the server device is composed of a storage unit having various other configurations, and the information processing device is composed of a first acquisition unit, an output unit, and a first wireless communication unit having various other configurations. However, the communication terminal device may be composed of a second acquisition section and a second wireless communication section having various other configurations.

The present invention can be used, for example, when applying device settings to an information processing device and importing a certificate file.

Reference Signs List 1, 201 Information processing system 2 202 Information processing device 3 Setting terminal device 4 204 Relay terminal device 5 Access point 6 Server device 6S Storage , 6C... certificate storage unit, 7... NFC, 8, 9... Wi-Fi, 10... network, 14, 214... storage, 14A... device setting storage unit, 14B... certificate storage unit , 15... Wi-Fi unit, 16... NFC unit, 16T... NFC tag, 17... Display panel, 18... Operation button, 19... Printing part, 21, 221... Control part, 27... Two-dimensional code generation unit 28 NFC processing unit 29 Wi-Fi control unit 64, 264 Storage 64A Certificate file storage unit 65 Wi-Fi unit 67 Touch panel , 68... camera unit, 71... Wi-Fi control unit, 72... two-dimensional code reading processing unit, 81, 281... control unit, 264... storage, 266... NFC unit, 272... NFC processing Section, F1...device information, F2...setting information, T1...device setting table, T2...setting data table.

Claims (9)

In an information processing system having a communication terminal device, an information storage device, and an information processing device,
The information storage device is
a storage unit that stores first setting information to be set in the information processing device;
The information processing device is
a first acquisition unit that acquires second setting information including connection information for establishing wireless communication with the communication terminal device from an external device;
an output unit that outputs the second setting information;
a first wireless communication unit that performs wireless communication with the communication terminal device,
The communication terminal device
a second acquisition unit that acquires the second setting information output from the information processing device;
acquiring the first setting information from the information storage device based on the address information of the information storage device and the identification information for identifying the first setting information, and connecting the information processing device based on the connection information; and a second wireless communication unit that establishes the wireless communication between and transmits the first setting information to the information processing device. The information processing system according to claim 1, wherein the first acquisition unit of the information processing device acquires the second setting information from the external device via short-range wireless communication. 3. The first acquisition unit of the information processing device acquires the address information and the identification information of the information storage device from the external device in addition to the second setting information. 1. The information processing system according to 1. The communication terminal device has a communication terminal operation unit that receives input of the address information and the identification information of the information storage device by a user's operation,
Based on the address information and the identification information of the information storage device input by the user via the communication terminal operation unit, the second wireless communication unit of the communication terminal device transmits the information from the information storage device to the second wireless communication device. 2. The information processing system according to claim 1, wherein the setting information of No. 1 is acquired. The second wireless communication unit of the communication terminal establishes wireless communication with a predetermined access point, connects to the information storage device, acquires the first setting information, and then sets the second wireless communication unit. establishing the wireless communication with the information processing device based on the connection information included in the setting information of the above, transmitting the first setting information to the information processing device, and then again via the access point 2. The information processing system according to claim 1, wherein said wireless communication is established with an information storage device. The information processing device has an information processing operation unit that receives a user's operation,
the output unit of the information processing device is a printing unit that prints an image on a medium;
The second acquisition unit of the communication terminal device has an imaging unit that captures the image and an analysis unit that analyzes the image,
When the information processing device receives a predetermined operation from the user on the information processing operation unit, the information processing device causes the printing unit to print a setting information image representing the second setting information on the medium,
The second acquisition unit of the communication terminal device captures the setting information image printed on the medium by the imaging unit, and analyzes the setting information image by the analysis unit to obtain the second setting information. The information processing system according to claim 1, wherein information is acquired. The communication terminal device has a communication terminal operation unit that receives an input operation of the user,
The printing unit prints the setting information image representing the encrypted second setting information on the medium by the printing unit;
The communication terminal device causes a password to be entered via the communication terminal operation unit,
The second acquisition unit of the communication terminal device captures the setting information image printed on the medium by the image capturing unit, analyzes the setting information image by the analysis unit, and obtains information obtained by the 7. The information processing system according to claim 6, wherein the second setting information is obtained by decrypting using a password. A communication terminal device capable of communicating with an information storage device and an information processing device,
an acquisition unit configured to acquire second setting information including connection information for establishing wireless communication output from the information processing device;
Based on the address information of the information storage device that stores the first setting information to be set in the information processing device and the identification information for identifying the first setting information, the first setting is performed from the information storage device. a wireless communication unit that acquires information, establishes the wireless communication with the information processing device based on the connection information, and transmits the first setting information to the information processing device. Device. a first step of acquiring, by an acquisition unit, second setting information including connection information for establishing wireless communication between the information processing device and the communication terminal device, which is output from the information processing device;
Based on the address information of the information storage device storing the first setting information to be set in the information processing device and the identification information for identifying the first setting information, the first setting information is retrieved from the information storage device. a second step of obtaining
and a third step of establishing the wireless communication with the information processing device based on the connection information and transmitting the first setting information to the information processing device. Method.

Images